Skip to content

Privacy Policy

Last updated: July 17, 2026

Draft, pending legal review. This policy describes our current data practices in plain language and is not yet a final, legally reviewed document.

Who we are and who this policy is for

Aproplant is a permaculture plant database that helps growers discover plants and build curated lists. It is operated by [Full Name], an individual operator resident in [State], United States. We do not publish a street address; you can reach us using the contact details in the last section of this policy.

This service is operated from the United States and is directed at users in the United States. We do not offer the service in other languages, we do not price it in euros or pounds, we do not run advertising in the European Union, and we do not localize the service for any market outside the United States. We are not trying to reach users in other countries.

This policy explains what information we collect, why we collect it, how long we keep it, and which service providers help us run the service.

What we collect

Information you provide. If you create an account, we collect your email address and maintain an authentication session so you can sign in. This is handled through Supabase Auth. If you send us a message through our contact form, we collect the topic, your name, your email address, and the content of your message.

Information you create in the product. We store the data you create: your plant lists, the items and notes in those lists, and any plant suggestions you submit. This product data is stored in Supabase and is tied to your account.

Approximate location. When you enter a ZIP code to tune plant recommendations to your area, we derive and store an approximate location from that ZIP code, specifically its centroid. In an account-scoped profile record we store the Koppen climate code, the USDA zone, the state, the city, the source ZIP code you entered, and the latitude and longitude of the ZIP-code centroid. This is optional and user-initiated: you type a ZIP code, and there is no device-GPS collection anywhere in the service. We clear this approximate location on request or when you delete your account.

Information collected automatically. When you use the site, your IP address and basic device and browser information are processed so the service can load and function. For spam and abuse prevention on plant suggestions, we store a one-way HMAC hash of your IP address (an ip_hash) alongside the suggestion, not your raw IP address. Our service providers, including PostHog, Vercel, Cloudflare, and Resend, process IP addresses inherently in order to deliver their services. We also collect first-party product and usage analytics, described in the cookies and tracking section below.

How we use it

We use your account and product information to let you sign in, to save and display your lists, and to accept and review the suggestions you submit. We use your approximate location to tune plant recommendations to your climate. We use analytics and automatically collected information to understand how the product is used, to improve it, and to detect and prevent spam and abuse.

We do not sell personal data. We use no advertising networks, and we do no cross-site ad tracking.

Cookies and tracking

There is no cookie-consent banner on this site. That is not a marketing slogan; it is a factual statement about what we do not do. We do not engage in the activities that require opt-in consent under United States law, namely cross-site advertising tracking, selling personal data, or sharing it with advertisers. Below we name each cookie and identifier we use and its purpose.

  • An essential Supabase authentication and session cookie keeps you signed in during your session.
  • Short-lived first-party cookies (cm_zip and cm_override) remember your previewed location and interface preferences. They are first-party only and expire after about four hours.
  • PostHog uses identifiers and cookies, together with browser localStorage, for first-party product analytics. We do not claim to be cookieless: PostHog does set identifiers and cookies.
  • Cloudflare Turnstile uses bot-detection signals to tell humans from automated abuse. It protects sign-up, sign-in, password reset, and the contact and suggestion forms.

Session replay and autocapture. PostHog session replay is enabled. Session replay records a playback of your on-screen activity, including clicks, scrolling, and the state of the page, with form inputs masked so the text you type into fields is not captured. PostHog autocapture is also enabled, which automatically records click and interaction events as you use the site.

Do Not Track and Global Privacy Control. Because we do not sell or share personal data, a Do Not Track or Global Privacy Control signal from your browser does not change how we process your data; there is nothing to opt out of. PostHog is additionally configured to respect Do Not Track signals.

Service providers and content sources

A small number of service providers process personal data on our behalf to help us operate the service. Each of them processes IP addresses in the ordinary course of delivering its service.

  • Supabase hosts authentication, the database, and your account and location data.
  • PostHog provides first-party product analytics, session replay, and autocapture.
  • Vercel hosts the application and provides Vercel Analytics and Vercel Speed Insights (performance telemetry).
  • Cloudflare provides Turnstile, a privacy-friendly bot-detection check.
  • Resend sends us notification email when you submit the contact form or a plant suggestion.

Plant images and taxonomy come from iNaturalist and Wikimedia. These are content sources, not processors of your personal data.

How long we keep your information

We keep different categories of information for different periods. The two figures marked below as current default assumptions are being confirmed against our providers’ live settings before this policy is finalized.

  • Account and location data: retained while your account is active, and deleted within 30 days of a verified deletion request. Deletion is a manual process today, so we do not promise a real-time purge.
  • Contact form submissions: we retain the messages you send us through the contact form so we can answer your inquiry. These do not currently have an automated purge schedule; we delete them on request.
  • Backups: residual copies in automated backups persist up to 7 days (current default assumption, pending confirmation).
  • Analytics: PostHog analytics data is retained up to 12 months (current default assumption, pending confirmation).
  • Anti-abuse exception: plant-suggestion records and the ip_hash rate-limit record associated with them can persist beyond account deletion. When you delete your account, the link to your identity is removed, but the suggestion content and its rate-limit hash are retained for spam and abuse prevention.

Your choices and rights

These are rights we offer everyone who uses the service, regardless of where you live. You can request access to the personal data we hold about you, ask us to correct it, or ask us to delete it. To exercise any of these, contact us using the details in the last section of this policy.

We aim to acknowledge a request within about 10 days and to complete it within about 45 days. Before we act on a request, we may confirm the email address on your account so we know the request is genuinely yours.

Please note that when you share a list through a public presentation link (a /presents page), the contents you chose to share become public data for anyone who has the link, and are no longer private to your account.

Do Not Sell or Share

We do not offer a “Do Not Sell or Share My Personal Information” link because we do not sell or share your personal data with anyone, so there is nothing for such a link to control. We believe we do not meet the thresholds that would make the California Consumer Privacy Act apply to us, but if you are a California resident and ask us to honor its rights, we will do so as a matter of goodwill.

Data security

We protect your information with row-level security that scopes account data to its owner, we serve the site over HTTPS, and we avoid collecting data we do not need. No method of storage or transmission is perfectly secure, but we take reasonable steps to keep your information safe.

Children

The service is not directed at children under 13, and we do not knowingly collect personal data from them.

Changes to this policy

We may update this policy from time to time. The current version date is shown as “Last updated” at the top of this page.

How to contact us

Please direct privacy questions and data requests to hello@aproplant.com or through our contact page.