Privacy Policy

Information you give us

• Account data. When you sign in with Apple, Google, or another supported identity provider, we receive your provider-issued user identifier, your email address, and (for Apple) optionally your name. We do not receive or store passwords.
• Profile data. Display name, username, home city, optional bio, and privacy preferences you set inside the app.
• Ranked content. The S-tier lists you create, including the places you rank and the order you rank them in.
• Support communications. If you contact us, we keep a copy of the message so we can follow up.

Information collected automatically

• Device and session data. App version, iOS version, device model, language, and approximate region, used to keep the app working and to diagnose crashes.
• Diagnostics. Crash reports and error traces if you have diagnostics enabled. You can turn this off in Settings.
• Usage signals. Basic counters (for example: number of lists you have created) used to power aggregate features like City Consensus and to award badges. You can opt out of analytics in Settings; essential product counters still run because they are required for core features.

What we do not collect

• We do not collect precise GPS location.
• We do not track you across apps or websites owned by other companies.
• We do not buy data about you from third-party data brokers.
• We do not serve third-party advertising, and we do not share your data with advertising networks.

• Provide core features: sign-in, profiles, rankings, and City Consensus.
• Aggregate rankings anonymously so we can show community consensus across a city or category. Aggregates cannot be reversed to identify an individual ranker.
• Keep the service secure, prevent abuse, and enforce our Terms of Service.
• Respond to support requests and operational emails.
• Comply with legal obligations.

We do not use your data to train machine-learning models for anyone else.

We share personal data only with service providers that run Top Tier on our behalf, under written agreements that require them to protect it. Current providers include:

• Supabase (database and authentication)
• Railway (application hosting)
• Sentry (crash reporting, optional per your Settings)
• Apple / Google (authentication providers you choose to sign in with)
• Google Places (resolving restaurant information for the places you rank — we send the place name / query, not your identity)

We may disclose information if required by law, to respond to lawful requests, to protect the rights and safety of users and third parties, or in connection with a business transaction such as a merger or acquisition.

Your profile, username, and S-tier lists are public by default so that the community can see and learn from them. Your email address is never shown publicly. You can change your profile visibility in Settings. Aggregated City Consensus rankings are always public, but they do not identify who ranked what.

We keep your account data for as long as you have an account. If you delete your account, we remove your profile and your ranked content from the live service within 30 days. We may retain a minimal record for fraud prevention, security, legal, or financial purposes for a limited period after deletion.

• Access and export. You can request an export of your data from Settings → Your data → Export my data.
• Delete your account. You can delete your account from Settings → Your data → Delete my account. Deletion is permanent.
• Correct your profile. You can edit your name, username, and other profile details in Settings.
• Diagnostics and analytics opt-out. Toggle these in Settings → Preferences.
• California residents have the rights described in the CCPA / CPRA, including the right to know, delete, correct, and opt out of “sale” or “sharing” of personal information. We do not sell or share personal information in the sense defined by the CCPA.
• EU / UK residents have the rights described in the GDPR / UK GDPR, including access, rectification, erasure, restriction, portability, and objection. Our lawful bases are performance of a contract (to provide the service), legitimate interest (to keep the service safe and working), and consent (for optional diagnostics).

To exercise any right, email us at privacy@toptiereats.app or use the in-app tools.

Top Tier is not directed to children under 13. We do not knowingly collect personal information from children under 13. If you believe a child has created an account, contact us at privacy@toptiereats.app and we will delete it.

We protect your data with industry-standard measures, including encryption in transit (HTTPS/TLS) and at rest, least-privilege access, and routine credential rotation. No method of transmission or storage is 100% secure; we cannot guarantee absolute security.

Top Tier is operated in the United States. If you access the service from outside the United States, your information will be transferred to, processed, and stored in the United States and other countries where our service providers operate, which may have different data-protection laws than your country.

We may update this Privacy Policy from time to time. We will post the new policy here and update the “Last updated” date. For material changes, we will provide additional notice (for example, an in-app notice or email).

Top Tier · privacy@toptiereats.app