Privacy Policy

1. Information We Collect

1.1 Information You Provide

• Account data. When you create an account we collect your email address and a password. Passwords are hashed and stored securely by our authentication provider; we never have access to them in plain text.
• Wardrobe and preferences. Fragrances you add to your wardrobe or wishlist, personal ratings, and status labels (owned, tried, wishlist).
• Community contributions. Votes on fragrance performance, notes, seasons, sentiment, and other community polls. Reviews and comments you choose to submit.
• Communications. Messages you send to us at info@silloria.com.

1.2 Information Collected Automatically

• Device and browser data. Device type (mobile, tablet, desktop), browser name, viewport dimensions, and whether you are using the installed PWA version.
• Usage data. Pages visited, search queries (sanitized to remove any personal information before transmission), time spent on pages, and interactions with features such as voting or wardrobe management.
• Online status. Whether your device is connected to the internet, used solely to enable offline functionality.

1.3 Information We Do Not Collect

We do not collect your precise geolocation, access your camera or microphone, read your contacts or calendar, or track your browsing activity on other websites.

2. How We Use Your Information

• Provide and operate the service. Authenticate your account, store your wardrobe, and display community data.
• Improve the experience. Analyze aggregated usage patterns to understand which features are most useful and identify issues.
• Communicate with you. Respond to support inquiries and send service-related notices (e.g., security alerts). We do not send marketing emails.
• Ensure safety and security. Detect and prevent abuse, fraud, or violations of our Terms of Service.

3. Cookies and Local Storage

We use cookies and browser local storage for the following purposes:

• Authentication. Session tokens are stored in your browser's local storage to keep you signed in.
• Local votes. Your individual votes are stored on your device so the interface can reflect your selections without an extra server call.
• UI preferences. A single cookie stores your sidebar toggle state.
• Analytics. Our analytics provider may store a small identifier in local storage to distinguish unique visitors without identifying you personally.

You can clear local storage and cookies at any time through your browser settings. Doing so will sign you out and reset local preferences.

4. Third-Party Services

We use a limited number of third-party services to operate Silloria. Each has its own privacy policy:

• Supabase — database hosting and authentication. Your account data and wardrobe information are stored on Supabase's infrastructure with row-level security, meaning each user can only access their own data.
• PostHog — product analytics. We track a defined set of usage events (page views, search queries, votes) with autocapture disabled. Search queries are sanitized to remove email addresses and long numeric strings before transmission.

5. Data Sharing and Selling

We do not sell, rent, or trade your personal information to third parties. We do not serve advertising or share data with ad networks. We may share information only in the following limited circumstances:

• With the service providers listed above, solely to operate the platform.
• If required by law, regulation, or valid legal process (e.g., a court order or subpoena).
• To protect the rights, safety, or property of Silloria, our users, or the public.

6. Data Security

We implement reasonable technical and organizational measures to protect your data, including encrypted connections (HTTPS), hashed passwords, and row-level access controls on our database. However, no system is completely secure, and we cannot guarantee the absolute security of your information.

7. Data Retention

We retain your account data and associated content for as long as your account is active. If you delete your account, we will remove your personal data from our systems within 30 days. Aggregated, anonymized data that cannot identify you may be retained indefinitely for analytical purposes.

8. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

• Access. Request a copy of the personal data we hold about you.
• Correction. Ask us to correct inaccurate or incomplete data.
• Deletion. Request that we delete your personal data and account.
• Portability. Receive your data in a structured, commonly used format.
• Objection. Object to the processing of your data for specific purposes.

To exercise any of these rights, contact us at info@silloria.com. We will respond within 30 days.

9. Children's Privacy

Silloria is not directed at children under the age of 16. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us and we will promptly delete it.

10. International Data Transfers

Our services and infrastructure providers may operate in countries other than your own. By using Silloria, you acknowledge that your data may be transferred to and processed in these locations. We ensure that appropriate safeguards are in place to protect your data in accordance with this policy.

11. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by updating the effective date at the top of this page. We encourage you to review this policy periodically.

12. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, contact us at info@silloria.com.