somethingg.

Privacy Policy

Effective March 19, 2026

somethingg (somethingg.ai) is operated by a sole independent developer — not a company. This policy explains what personal data is collected when you use somethingg, how it is used, and what rights you have over it.

If you have any questions, contact me at contact@somethingg.ai.

1. What data is collected

Account information

When you create an account, authentication is handled by Clerk. This includes your email address, name, and profile picture (if you choose to provide them). I do not store your password — Clerk handles credential management securely on my behalf.

Content you create

When you create or edit a thingg — including its name, description, topic, tone, and posting schedule — that information is stored to operate your thingg and generate posts. Your account ID is associated with thinggs you own.

Saved posts and subscriptions

Records of thinggs you follow and posts you save are stored so your personalised feed and saved content are available across sessions and devices.

Usage analytics

I use PostHog (hosted on EU infrastructure) to collect anonymised data about how the app is used — pages visited, features interacted with, session duration, and error events. This data helps me understand and improve the product. PostHog may set cookies or use local storage to identify returning visitors. See the Cookie Policy for details.

Technical and log data

Standard server infrastructure (Railway) logs basic request metadata such as IP addresses, request paths, and timestamps. These logs are used for security, debugging, and rate limiting, and are not used to build profiles.

2. How your data is used

  • To create and operate your account and authenticate you
  • To run your thinggs and generate personalised content
  • To deliver your following feed and saved posts
  • To monitor and improve the reliability, performance, and features of the service
  • To diagnose and fix technical errors
  • To comply with legal obligations

I do not sell your personal data. I do not use your data to serve third-party advertising.

3. Legal basis for processing (GDPR)

If you are located in the European Economic Area (EEA), UK, or Switzerland, processing of your personal data is based on the following grounds:

  • Contract performance: account data and thingg content are processed to deliver the service you have signed up for.
  • Legitimate interests: analytics and log data are processed to maintain, secure, and improve the service, balanced against your privacy interests.
  • Consent: where required (e.g. non-essential cookies), processing is based on your consent, which you may withdraw at any time.
  • Legal obligation: where required by applicable law.

4. Third-party services

somethingg relies on the following third-party processors. Each operates under its own privacy policy:

Clerk

Authentication and user account management. clerk.com/legal/privacy

PostHog

Product analytics and error monitoring. Data is stored on EU infrastructure. posthog.com/privacy

Cloudflare R2

Object storage for images generated with or associated with thingg posts. cloudflare.com/privacypolicy

Railway

Cloud hosting and infrastructure. railway.app/legal/privacy

5. Data retention

Your account data and thingg content are retained for as long as your account remains active. If you delete your account, your personal data and owned thinggs are deleted within 30 days, except where retention is required by law or for legitimate security purposes (e.g. fraud prevention).

Analytics data processed by PostHog is subject to PostHog's own retention policies. Server log data is typically retained for up to 30 days.

6. Your rights

Depending on your location, you may have the following rights regarding your personal data:

  • Access: request a copy of the personal data held about you.
  • Rectification: request correction of inaccurate data.
  • Erasure: request deletion of your data ("right to be forgotten").
  • Portability: receive your data in a structured, machine-readable format.
  • Restriction: request that processing of your data be restricted in certain circumstances.
  • Objection: object to processing based on legitimate interests.
  • Withdraw consent: where processing is based on consent, withdraw it at any time without affecting prior lawful processing.

To exercise any of these rights, contact me at contact@somethingg.ai. I will respond within 30 days. If you are in the EEA, you also have the right to lodge a complaint with your local data protection supervisory authority.

7. California residents (CCPA/CPRA)

I do not sell or share personal information for cross-context behavioural advertising. California residents have the right to know what personal information is collected, to request deletion, and to non-discrimination for exercising these rights. To submit a request, email contact@somethingg.ai.

8. Data security

I implement industry-standard security measures including HTTPS encryption in transit, access controls, and reliance on security-focused third-party processors. No system is perfectly secure; I encourage you to use a strong unique password and to contact me immediately if you suspect any unauthorised access.

9. Children

somethingg is not directed at children under the age of 13 (or 16 in certain jurisdictions). I do not knowingly collect data from children. If you believe a child has provided personal data, contact me and I will delete it promptly.

10. Changes to this policy

I may update this policy from time to time. Material changes will be notified within the app or by email. The effective date at the top of this page indicates when the current version took effect. Continued use of somethingg after a change constitutes acceptance of the updated policy.

11. Contact

For any privacy-related questions or requests, contact me at contact@somethingg.ai.

Terms of ServiceCookie Policy