Blurred.co Logo

Privacy Policy

Last update: 15 March 2026

1. Scope

This Privacy Policy describes how Blurred ("we," "us," or "our") collects, uses, and shares your personal information when you use the Blurred website (blurred.co), mobile application, and related services (collectively, the "Service"). By using the Service, you agree to the collection and use of information as described in this policy.

2. Information We Collect

2.1 Information You Provide

When you create an account and use the Service, we collect:

  • Account information: email address, username, first name, last name, phone number, country, and password.
  • Profile information: public profile settings and display preferences.
  • Content: photos, videos, PDFs, and other files you upload to the Service.
  • Financial information: bank account details (account number, routing number, holder name), payment method details (PayPal, Venmo, Cash App, Zelle, USDC addresses), and payout preferences. Payment card details are processed directly by Stripe and are never stored on our servers.
  • Identity verification documents: when required for payouts, we may collect government-issued ID photos, selfies, and proof of address documents through our identity verification provider (Stripe Identity).
  • Support requests: email address and message content when you contact us through our support form.

2.2 Information Collected Automatically

When you use the Service, we automatically collect certain information:

  • IP address and geolocation: we collect your IP address and use a third-party geolocation service (ipify) to determine your approximate location (country, city, coordinates, timezone, and ISP). This is collected during purchases, account creation, collaboration responses, and terms of service acceptance.
  • Browser and device information: browser type, operating system, device type, screen resolution, and user agent string.
  • Usage data: pages visited, features used, upload and purchase activity, and interaction patterns.

2.3 Information From Third-Party Services

We receive information from the following third-party services:

  • Stripe: payment confirmation, verification status, bank account details (name, last four digits), and payout status.

3. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve the Service.
  • Process payments and payouts between buyers and sellers.
  • Verify your identity for compliance with financial regulations.
  • Calculate applicable sales tax based on buyer location.
  • Send transactional emails (welcome emails, sale notifications, collaboration invites, password resets).
  • Monitor and diagnose technical issues, errors, and performance problems.
  • Prevent fraud, abuse, and unauthorized access.
  • Comply with legal obligations.

4. Third-Party Services

We use the following third-party services that may collect or receive your personal information:

4.1 Supabase (Infrastructure)

We use Supabase for authentication, database storage, and file storage. Your account data, uploaded content, and transaction records are stored on Supabase infrastructure. See Supabase Privacy Policy.

4.2 Stripe (Payments & Identity Verification)

We use Stripe to process payments, manage seller payouts, and verify seller identities. When you make a purchase or set up payouts, your financial information is processed by Stripe. Identity verification documents (ID photos, selfies) are processed and stored by Stripe Identity. See Stripe Privacy Policy.

4.3 Resend (Email)

We use Resend to send transactional emails including welcome emails, sale notifications, collaboration invites, and support messages. Your email address is shared with Resend for this purpose. See Resend Privacy Policy.

4.4 Google Analytics (Web Analytics)

We use Google Analytics 4 on the website to understand how visitors use the Service. Google Analytics collects information such as pages visited, time spent, browser type, and device information. See Google Privacy Policy.

4.5 Highlight.io (Session Recording & Error Tracking — Web)

We use Highlight.io on the website for session recording and error tracking. This service records your interactions with the website, including clicks, scrolls, page navigation, and network requests (including request and response headers and bodies). Session recordings help us identify and fix bugs. See Highlight.io Privacy Policy.

4.6 Sentry (Error Tracking & Performance — Mobile App)

We use Sentry in our mobile application for error tracking, performance monitoring, and session replay. Sentry may collect:

  • Device information (model, OS version, screen size).
  • Application errors and stack traces.
  • Performance traces and profiling data.
  • Session replays (visual recordings of app screens during errors).
  • User identifiers (email, username) to associate errors with accounts.
  • Structured log messages from the application.

See Sentry Privacy Policy.

4.7 ipify (IP Geolocation)

We use the ipify geolocation API to determine the approximate location of buyers during purchases and users during certain account actions. Your IP address is sent to ipify, which returns location data (country, city, coordinates, timezone, ISP). See ipify website.

4.8 Trigger.dev (Background Processing)

We use Trigger.dev for background media processing (generating previews, blurred versions, and watermarks of uploaded content). Your uploaded files are temporarily processed on Trigger.dev infrastructure.

5. Cookies and Local Storage

We use minimal cookies and browser storage:

  • Authentication: Supabase stores session tokens in browser local storage to keep you signed in.
  • UI preferences: a cookie is used to remember sidebar state (open/closed), expiring after 7 days.
  • Purchase history: local storage is used to remember which content you have purchased, so you can access it without re-authenticating.

We do not use advertising cookies or third-party tracking cookies for targeted advertising purposes.

6. Data Sharing

We do not sell your personal information. We share your information only in the following circumstances:

  • With third-party service providers listed in Section 4, solely to provide the Service.
  • With other users: your username and public profile (if enabled) are visible to other users. Sellers can see the country of buyers who purchase their content.
  • For legal compliance: when required by law, regulation, legal process, or governmental request.
  • To protect rights: to enforce our terms, protect our rights, privacy, safety, or property, or that of our users or the public.

7. Data Retention

We retain your personal information for as long as your account is active or as needed to provide the Service. Uploaded content, purchase records, and financial transaction data are retained for the duration of your account and as required by tax and financial regulations.

If you delete your account, we will delete or anonymize your personal information within 30 days, except where we are required to retain it for legal, tax, or regulatory purposes.

8. Data Security

We implement appropriate technical and organizational measures to protect your personal information, including:

  • Encryption of data in transit (TLS/HTTPS) and at rest.
  • Row-level security policies on our database to prevent unauthorized access.
  • Original uploaded files are kept private; only watermarked versions are served to buyers.
  • Payment card information is processed directly by Stripe and never touches our servers.

No method of transmission or storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

9. Your Rights

Depending on your location, you may have the right to:

  • Access the personal information we hold about you.
  • Correct inaccurate or incomplete information.
  • Delete your personal information and account.
  • Export your data in a portable format.
  • Object to or restrict certain processing of your data.

To exercise any of these rights, contact us at support@blurred.co.

10. Children's Privacy

The Service is not intended for children under 18 years of age. We do not knowingly collect personal information from children under 18. If we become aware that we have collected information from a child under 18, we will take steps to delete it promptly.

11. International Data Transfers

Your information may be transferred to and processed in countries other than your own, including the United States, where our service providers operate. By using the Service, you consent to the transfer of your information to these countries.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on the Service with a new "Last update" date. Your continued use of the Service after changes are posted constitutes acceptance of the updated policy.

13. Contact Us

If you have questions about this Privacy Policy or our data practices, contact us at:

Copyright © 2026 Cappuccino Apps, LLCTerms of Service (Creators)Terms of Service (Customers)Privacy Policy