Charmly logoCharmly

Privacy Policy

Privacy Policy

Last updated: March 5, 2026

This Privacy Policy explains how Charmly collects, uses, and shares information when you use the Charmly mobile app, keyboard features, and related services.

What We Collect

  • Device registration data. When you first connect the app to our API, we generate and store a device identifier, an API token (stored on your device), and a hashed version of that token on our server.
  • On-device personalization data. Your onboarding answers and style preferences, such as where you chat, your messaging goals, and tone preferences, are stored locally on your device and may be mirrored to shared iOS storage so the keyboard extension can use them.
  • Photos permission data. If you grant photo access, the app can access screenshots in your photo library so the keyboard can help draft replies from images you choose to use.
  • Submitted screenshots and prompt data. When you request AI-generated replies from a screenshot, the image data you submit, your selected tone, and your optional preferences are sent to our server for processing.
  • Subscription status data. We check whether your subscription is active using your device identifier with our billing provider.
  • Analytics and usage data. If analytics is enabled in the app build, we use PostHog to collect screen views, app lifecycle events, and product usage interactions.
  • Technical and request metadata. Our API may process and log metadata such as authorization status, request timestamps, IP-related headers, and user-agent information for security, debugging, and abuse prevention.

How We Use Information

We use this information to:

  • register your device and authenticate requests;
  • provide keyboard and AI reply generation features;
  • personalize suggestions based on your selected preferences;
  • verify premium access and manage subscription-gated features;
  • monitor reliability, rate-limit abuse, investigate failures, and improve the product;
  • understand app usage and performance through analytics.

How Screenshots Are Processed

When you submit a screenshot for reply generation, the screenshot is sent to our API and then to our AI processing provider, OpenRouter, so replies can be generated. This content is used to produce message suggestions. Because our current server implementation includes operational logging around generation requests, submitted image data and related request details may appear in server logs used for debugging and monitoring.

Third-Party Services

We use third parties to operate parts of the service, including:

  • OpenRouter to generate AI reply suggestions from submitted screenshots;
  • RevenueCat to verify subscription status;
  • PostHog for analytics

These providers may process information on our behalf as part of delivering the service.

Data Retention

We retain server-side device records, operational logs, and related technical records for as long as reasonably necessary to provide the service, maintain security, resolve disputes, enforce agreements, and comply with legal obligations. Data stored locally on your device remains there until you remove it, clear app data, or uninstall the app.

Your Choices

You can:

  • decline photo access, although some screenshot-based features may not work;
  • revoke app permissions in your device settings;
  • clear local app data by deleting the app or resetting stored data in the app where available;
  • stop using the service at any time.

Security

We use reasonable technical and organizational measures to protect information, but no system is completely secure and we cannot guarantee absolute security.

Children's Privacy

Charmly is not intended for children. You must be at least 18 years old to use the service.

Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will update the date above and post the revised version on this page.

Contact

For privacy questions, contact support@charmly.app.