Privacy Policy

Merchie · Last updated 2026-05-24

Summary

We collect your name, email, phone, date of birth, and transactions so we can run your loyalty account.
We do not sell or rent your data.
We do not track you across other apps or websites.
We do not collect medical information, precise location, biometrics, or other sensitive data.
You can delete your account at any time from inside the app or by emailing us at herrisellc@gmail.com.

This Privacy Policy explains how Herrise LLC (d/b/a Merchie) ("Merchie", "we", "us", or "our") collects, uses, stores, shares, and protects your personal information when you use any mobile application or related service powered by the Merchie platform (collectively, the "Service"). By using the Service, you agree to this Privacy Policy.

1. About Merchie and the Apps We Power

Merchie is a software platform operated by Herrise LLC, a Delaware limited liability company doing business as "Merchie". Merchie provides white-labeled loyalty and rewards mobile apps to local businesses (each, a "Merchant") such as med spas, salons, aesthetic clinics, and similar service providers.

Each app on the Merchie platform is branded for an individual Merchant — for example, the Merchant's name, logo, and color scheme appear throughout the app. The services, products, prices, bookings, and rewards offered through the app are controlled by the Merchant. However, the underlying technology, hosting, account management, payments infrastructure, push notifications, and data handling are all operated by Merchie. This Privacy Policy applies uniformly across every app on the Merchie platform.

For purposes of data-protection law, Merchie acts as a data controller for platform-level data (account, authentication, security, device telemetry) and as a data processor for Merchant-specific transaction data, on behalf of the relevant Merchant. The Merchant is the data controller of their loyalty program data. If you have a question that only the Merchant can answer (for example, about a specific purchase, refund, or appointment), please contact the Merchant directly through the app.

Privacy contact: herrisellc@gmail.com.

2. Definitions

Account — a unique account you create to access the Service.
App — any mobile application powered by the Merchie platform.
Merchant — the local business whose branding appears in the App you downloaded.
Personal Data — any information that identifies or could reasonably identify you.
Service — the App, related websites at merchie.app, and the supporting infrastructure operated by Merchie.
Service Provider — any third party that processes Personal Data on our behalf to operate the Service.
Usage Data — data collected automatically by the App or its infrastructure.
You — the individual using the Service.

3. Device Permissions We Request

The App requests the following permissions from your device. We only request a permission when you take an action that needs it, and you can change your answer at any time in your device settings. Denying a permission does not block you from using the rest of the App.

Permission	Why we need it	Required?
Camera	To scan check-in QR codes and let you take a profile photo.	Optional
Photo Library	To let you choose an existing photo as your profile picture.	Optional
Push Notifications	To send booking confirmations, reward updates, and (if you opt in) promotional messages.	Optional

We do not request access to your contacts, calendar, microphone, precise location, motion sensors, health data, HealthKit, fitness data, biometric identifiers (Face ID / Touch ID enrollment), or any other sensitive permission.

4. App Tracking Transparency

We do not track you across apps or websites owned by other companies. We do not use advertising identifiers (IDFA on iOS or AAID on Android), we do not share your activity with data brokers or advertising networks, and we do not participate in cross-context behavioral advertising. Because we do not engage in tracking as Apple defines it in its App Tracking Transparency framework, the App Tracking Transparency prompt is normally not shown. If a third-party payment SDK embedded in the App ever surfaces the prompt, denying it does not affect any feature of the App.

5. Information We Collect

5.1 Information You Provide

Account information: first and last name, email address, mobile phone number.
Authentication credentials: a password (stored only in hashed form by our authentication provider) and one-time codes (OTP) sent by SMS.
Profile information: date of birth (used for birthday rewards and age verification), gender, and any preferences you choose to share.
Photos: profile photos you upload or capture with your device camera.
Communications: messages, feedback, reviews, or support requests you send to us or the Merchant.

5.2 Information Collected Automatically

Transaction information: purchases, bookings, appointments, points balance, cash credits, memberships, redemptions, gift card balances, and check-ins.
Usage information: screens you visit, services you view, interactions with rewards and offers.
Device and diagnostic information: operating system, app version, runtime version, build identifier, language, and device identifiers used to keep the App functioning and secure.
Push notification token: a token issued by Apple or Google that allows us to deliver push notifications to your device.
Network information: IP address and connection metadata used for security, fraud prevention, and rate limiting.

5.3 Information from Third Parties

If you connect a payment method, our payment processor (Stripe) returns a token and limited card metadata (brand, last four digits, expiration). We do not see or store your full card number, CVV, or bank credentials.

5.4 Sensitive Personal Information

We do not knowingly collect any "sensitive personal information" as defined under the California Consumer Privacy Act (CCPA/CPRA) or similar laws, with one narrow exception described below. We do not collect government identifiers (Social Security number, driver's license, passport), precise geolocation, racial or ethnic origin, religious beliefs, union membership, genetic data, biometric identifiers for unique identification, health information, sex life or sexual orientation, or the contents of your communications.

Self-reported gender. We allow you to provide your gender (optional, with values such as "Female," "Male," "Non-binary," or "Prefer not to say") during signup for product personalization (e.g., addressing you correctly in marketing copy you opt into). Under the CPRA, gender identity is treated as sensitive personal information when collected alongside identifying data. We collect this only with your explicit choice — leaving it blank or selecting "Prefer not to say" is supported and does not block any feature — and we do not use it for cross-context advertising, profile-building, or inference about other sensitive characteristics. You may delete the value at any time from the App's profile settings or by deleting your account.

5.5 Automated Decision-Making and Profiling

We do not use your Personal Data to make automated decisions that produce legal or similarly significant effects about you. Loyalty point calculations, reward eligibility, and birthday offers are deterministic rules configured by the Merchant, not machine-learning models that profile you.

6. How This Maps to App Store Privacy Labels

For transparency, here is how the data we collect aligns with Apple's privacy label categories. All categories are "Data Linked to You" (tied to your account). None of this data is "Used to Track You". This section is the source of truth for both the App Store Connect "App Privacy" form the App displays on its store listing and the PrivacyInfo.xcprivacy manifest the App ships inside the iOS bundle — the three are kept in sync.

Contact Info: name, email, phone — for App Functionality and Customer Support.
Identifiers: account ID (your user UUID) — for App Functionality and Analytics.
Financial Info: payment-method token (brand + last 4 only), loyalty balance, transaction history — for App Functionality.
User Content — Photos: profile photos you upload or capture — for App Functionality.
User Content — Customer Support: messages, feedback, and reviews you send to us or the Merchant — for Customer Support and App Functionality.
Purchases: purchase history, memberships — for App Functionality and Analytics.
Usage Data: product interactions, check-ins, screen views — for App Functionality and Analytics.
Diagnostics: crash and error reports (which may include your account identifier when an authenticated session existed at the time of the error), app version — for App Functionality.
Other Data: date of birth (used for birthday rewards and age verification), gender (optional) — for App Functionality.

7. How We Use Your Information

Create and operate your Account and provide the Service.
Process bookings, purchases, refunds, memberships, points, cash credits, gift cards, and rewards on behalf of the Merchant.
Verify your identity by SMS one-time code and protect against fraud and unauthorized access.
Personalize your experience based on your preferences and history.
Send transactional notifications (booking confirmations, reward grants, order receipts).
Send promotional messages (such as birthday offers, win-back offers, and seasonal campaigns) where permitted by law. You can unsubscribe from promotional emails at any time using the unsubscribe link in any email.
Provide customer support and respond to your requests.
Monitor, debug, and improve the Service, including diagnosing crashes and performance issues.
Comply with legal obligations, enforce our agreements, and protect rights, property, and safety.

8. Third-Party Service Providers and SDKs

We share limited Personal Data with the following Service Providers and use the following third-party SDKs to operate the Service. Each provider processes data only on our behalf under contractual obligations of confidentiality and security.

Provider	Purpose	Data shared
Supabase	Hosting, database, authentication, file storage	Account, profile, transactions, photos
Vercel	Web hosting and edge functions	IP address, request metadata
Stripe, Inc.	Payment processing and (where applicable) Stripe Connect payouts to the Merchant	Payment method, billing details
Resend	Transactional and (where applicable) promotional email delivery	Email address, name, order/appointment details
Twilio	SMS one-time verification codes	Phone number, verification code
Apple Push Notification service (APNs)	Deliver push notifications on iOS	Push token, notification payload
Google Firebase Cloud Messaging (FCM)	Deliver push notifications on Android	Push token, notification payload
Expo (Expo Application Services)	App distribution, push routing, OTA updates	Device info, app version
Apple App Store / Google Play	App distribution	Whatever Apple/Google collect from app downloads (governed by their own policies)
Google Calendar (Merchant-side only)	Sync the Merchant's appointment calendar (only if the Merchant connects it)	Appointment time, attendee name/email

Stripe's privacy practices are described at stripe.com/privacy. We do not share your Personal Data with advertisers, data brokers, or AI-model training datasets. Some Merchant-facing back-office tools (such as generating weekly business reports for the Merchant) use AI services (OpenAI, Anthropic, Browserless); those tools receive only the Merchant's own business information (such as the Merchant's public website content or aggregated, non-identifying metrics), not your Personal Data.

9. Push Notifications

With your permission, we send push notifications about your account, bookings, rewards, promotions, and similar topics. We do not include sensitive medical information in a push notification. You can disable push notifications at any time in your device's system settings.

10. Text Messages (SMS)

When you sign up, we send a one-time verification code by SMS to confirm that you control the phone number. Standard message and data rates from your carrier may apply. We do not send marketing SMS, and we do not share your phone number with third parties for marketing.

11. Camera, Photo Library, and QR Codes

If you grant permission, the App uses your device's camera or photo library so that you can set a profile photo and scan QR codes at check-in. Photos you upload are stored securely (via Supabase Storage) and associated with your account. QR codes used in the Service contain only a customer identifier and a timestamp; they do not contain medical or financial information.

12. Payment Information

Payments are processed by Stripe. When you save a card or make a payment, your card details are submitted directly to Stripe; we receive a token and limited card metadata (brand, last four digits, expiration). We do not store your full card number, CVV, or bank account credentials. Stripe is certified as a PCI-DSS Level 1 service provider, the highest level of payment security certification available. Stripe processes your information in accordance with its own privacy notice at stripe.com/privacy.

13. Cookies and Similar Technologies

When you access web-based portions of the Service, we use a small number of necessary cookies and similar technologies (such as local storage and secure storage on your device) for authentication, security, and remembering your preferences. We do not use advertising cookies, cross-site tracking pixels, or third-party analytics that profile you across the internet. You can clear cookies and reset device identifiers in your browser or device settings; doing so may sign you out and reset preferences.

14. Data Retention

We retain your Personal Data for as long as your Account is active or as needed to provide the Service. When you delete your Account from inside the App, your personal identifiers are removed from our active systems immediately; when you delete by email request, they are removed within 7 business days (or the 30-day legal maximum if verification is delayed — see Section 19). We retain the following for the periods indicated, even after deletion:

Transaction records (orders, payments, refunds) — up to 7 years, to comply with tax, accounting, and anti-fraud obligations.
Communications (support emails, fraud reports) — up to 3 years, for dispute resolution and audit.
Authentication logs (sign-in events) — up to 1 year, for security investigations.
Encrypted backups — overwritten in the normal course of business within 90 days.

De-identified or aggregated data may be retained indefinitely.

15. International Transfers

Your information may be processed and stored on servers operated by our Service Providers in the United States and other countries where they or their sub-processors are located. By using the Service, you understand that your information may be transferred to countries with different data-protection laws than your home jurisdiction. When we transfer Personal Data from the European Economic Area, the United Kingdom, or Switzerland to the United States, we rely on Standard Contractual Clauses (SCCs) approved by the European Commission, the UK International Data Transfer Agreement, or other lawful transfer mechanisms.

16. Security

We use commercially reasonable administrative, technical, and physical safeguards designed to protect your Personal Data, including:

Encryption in transit using HTTPS/TLS for all client-server communication.
Encryption at rest for stored data, including database fields and uploaded files.
Hashed passwords using industry-standard algorithms (bcrypt or stronger).
Encrypted secure storage of authentication tokens on your device (iOS Keychain, Android Keystore).
Role-based access controls and the principle of least privilege for our team.
Rate limiting and brute-force protection on authentication and verification endpoints.
Routine security monitoring and dependency updates.

No method of transmission over the internet or electronic storage is 100% secure; we cannot guarantee absolute security.

17. Data Breach Notification

If we discover a data breach affecting your Personal Data, we will notify you and applicable regulators as required by law, generally within 72 hours of confirming the breach for individuals in the EEA/UK and without unreasonable delay for individuals in the United States. Notifications will describe the nature of the breach, the data affected, and the steps you can take to protect yourself.

18. Your Rights

Depending on where you live, you may have some or all of the following rights with respect to your Personal Data:

Access — request a copy of the Personal Data we hold about you.
Correction — ask us to correct inaccurate or incomplete information.
Deletion — request that we delete your Personal Data.
Portability — receive a copy of your information in a portable, machine-readable format.
Objection / restriction — object to or restrict certain uses of your information.
Withdrawal of consent — withdraw any consent you previously gave (this does not affect processing already carried out).
Non-discrimination — you will not be discriminated against (in price, service, or quality) for exercising any of these rights.
Complaint — lodge a complaint with your local data-protection authority.

To exercise any right, contact herrisellc@gmail.com from the email address associated with your account. We will verify your identity (typically by emailing a confirmation link or asking you to confirm details on file) and respond within the timeframe required by applicable law — typically 30 days, extendable by up to 60 additional days for complex requests.

18.1 California Residents (CCPA / CPRA)

If you are a California resident, you have the rights described above, plus the right to know what categories of Personal Data we collect, the purposes for which we use it, and the categories of third parties with whom we share it (see Sections 5 and 8 of this Policy). We do not "sell" or "share" your Personal Data for cross-context behavioral advertising as those terms are defined under California law, and we do not collect sensitive personal information requiring a right-to-limit. You may designate an authorized agent to make a request on your behalf; we may require proof of the agent's authorization.

18.2 Other U.S. State Privacy Rights

If you are a resident of Virginia, Colorado, Connecticut, Utah, Texas, Oregon, Montana, or another U.S. state with a comprehensive consumer privacy law, you have substantially similar rights to those described in Section 18.1. To exercise these rights, contact us at herrisellc@gmail.com. If we deny your request, you may appeal by replying to our response email; appeals are reviewed within 45 days.

18.3 European Economic Area, United Kingdom, and Switzerland

If you are in the EEA, UK, or Switzerland, we process your Personal Data on the following legal bases under the GDPR / UK GDPR:

Contract — to provide the Service you signed up for (Art. 6(1)(b)).
Legal obligation — to meet tax, accounting, anti-fraud, and other legal requirements (Art. 6(1)(c)).
Legitimate interests — to secure the Service, prevent fraud, debug issues, and improve our product, where those interests are not overridden by your rights (Art. 6(1)(f)).
Consent — for any processing that requires it, such as marketing communications in certain jurisdictions (Art. 6(1)(a)). You may withdraw consent at any time.

You may lodge a complaint with your local supervisory authority. A list of EEA authorities is available at edpb.europa.eu; the UK authority is the Information Commissioner's Office (ico.org.uk).

19. How to Delete Your Account and Data

You can delete your Account and the Personal Data associated with it in two ways:

From inside the App: Open the App, go to Profile → Settings → Delete Account, and confirm. Deletion takes effect immediately — your personal identifiers are removed from our active systems the moment you confirm, and you are signed out on every device.
By email request (web-accessible): Send an email to herrisellc@gmail.com from the email address linked to your account, with the subject line "Delete my account." We will verify the request and complete deletion within 7 business days. If we cannot verify your identity within that window (for example, you do not respond to a follow-up question), we will complete the deletion in any event within the legal maximum of 30 days from the original request.

What happens when you delete your Account: your profile, photos, push notification token, and personal identifiers are removed from our active systems. Transaction history, financial records, and other information that we are required to retain by law will be retained for the periods described in Section 14 and then deleted. Encrypted backups containing your data are overwritten within 90 days.

20. Children's Privacy

The Service is not directed to anyone under 16, and we do not knowingly collect Personal Data from anyone under 16. Individual Merchant apps on the Merchie platform set their own App Store / Google Play age ratings based on the services they offer; regardless of the rating, the underlying account-creation flow enforces a minimum age of 16. If you are a parent or guardian and you believe your child under 16 has provided us with Personal Data, please contact us at herrisellc@gmail.com and we will delete that information promptly. If your local law (for example, GDPR Article 8) sets a higher minimum age, that age applies in your jurisdiction.

21. Health Information Disclaimer

The Service is a loyalty and rewards application. It is not a health record, electronic medical record, or other healthcare-information system, and Merchie is not a "covered entity" or "business associate" under the U.S. Health Insurance Portability and Accountability Act (HIPAA). Please do not enter medical history, diagnoses, treatment notes, prescriptions, or other protected health information into the Service. If you believe a Merchant has invited you to share health information through the App, contact the Merchant or us before doing so.

22. Business Transfers

If Merchie is involved in a merger, acquisition, financing, reorganization, bankruptcy, or sale of all or a portion of its assets, your Personal Data may be transferred as part of that transaction. We will notify you (for example, by email or an in-app notice) before your information becomes subject to a different privacy policy.

23. Law Enforcement and Other Legal Disclosures

We may disclose your Personal Data if we believe in good faith that doing so is necessary to: (a) comply with a legal obligation, subpoena, court order, or government request; (b) protect and defend the rights or property of Merchie, a Merchant, or third parties; (c) prevent or investigate possible wrongdoing in connection with the Service; (d) protect the personal safety of users of the Service or the public; or (e) protect against legal liability.

24. Links to Other Sites

The Service may contain links to third-party websites or services that we do not operate. We are not responsible for the content, privacy policies, or practices of any third-party site or service. We encourage you to review the privacy policy of every site you visit.

25. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. The "Last updated" date at the top of this page reflects the most recent revision. Material changes will be communicated through the App, by email, or by a prominent notice posted in the Service. Your continued use of the Service after the effective date constitutes your acceptance of the changes.

26. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, you can contact:

Herrise LLC (d/b/a Merchie)
Email: herrisellc@gmail.com
State of formation: Delaware, United States

For questions about a specific purchase, appointment, refund, or other Merchant-controlled matter, please contact the Merchant whose branding appears in the App you are using.