Privacy Policy
Last Updated: June 5, 2026
1. Overview
I Forgot the List ("the Service", "we", "us") helps you build smart grocery lists, clip digital coupons, and track your purchase history across our web site and mobile apps (I Forgot The List and I Forgot The Coupons). This policy explains what data we collect, who we share it with, how long we keep it, and the rights you have over it.
If you are a California resident, see Section 9 (California Privacy Rights).
2. Information We Collect
2.1 Account Information
- Email address — identifies your account and lets us reach you.
- Name — display name shown in the app.
- Authentication identifiers — tokens from our identity provider (WorkOS AuthKit).
2.2 Purchase and Shopping Data
- Receipts and transactions — date, store, totals, item lines, prices, and discounts.
- Grocery list items — what you add, check off, or delete.
- Coupons — which coupons you clip and their values.
2.3 Voice and Email Inputs
- Voice dictation — recordings you create are transcribed and added to your lists. Recordings are deleted within 24 hours of transcription.
- Inbound email forwarding — if you forward digital receipts to us, we parse the contents.
2.4 Connected Store Data
When you connect a store loyalty account (such as Fred Meyer) in our mobile app, we access:
- Coupon catalogs and clipped-coupon state on that store account, in order to clip on your behalf.
- Purchase history on that store account, in order to import receipts.
- Authentication tokens issued by the store's own sign-in, used only to call the store's APIs as you.
You sign in through the store's own login page in a secure in-app browser; we never see or store your store password. We only access the store accounts you explicitly connect.
2.5 Device and Usage Data
- Cookies and local storage — see Section 5.
- Analytics events — only with your consent. See Section 3.
- Crash and error logs — to diagnose problems.
3. Analytics and Tracking
On the web site, analytics is handled by Google Tag Manager (container
GTM-TQSZ4BK7), which deploys Google Analytics 4
(G-GFRLCG8ZNW). The mobile apps use PostHog
for product analytics.
On the web, neither Google Tag Manager nor Google Analytics loads until you grant analytics consent. Until you accept, no analytics scripts run. You can change your choice any time from the Your Privacy Choices page or the "Do Not Sell or Share My Personal Information" link in the footer.
Cross-domain measurement is configured so visits between iforgotthelist.com and our sister site iforgotthecoupons.com count as a single session.
What we capture when consent is granted:
- Page views and referrer / source-medium (so we can see organic traffic, direct, and cross-domain hops).
- Feature events (e.g. list created, coupon clipped, receipt imported) — without the contents of your lists.
- A pseudonymous device identifier so we can stitch sessions together.
We do not use Meta, TikTok, or Google Ads pixels. We do not deploy device fingerprinting.
4. How We Use Your Information
- Provide the Service — sync lists, import receipts, clip coupons, generate AI suggestions from your purchase history.
- Account security — authenticate sessions, prevent abuse.
- Product improvement — with consent, analyze usage to decide what to build.
- Customer support — respond to your requests.
- Legal compliance — when required by law.
5. Cookies and Similar Technologies
The web site uses these cookies and storage mechanisms:
| Name | Type | Purpose | Lifetime |
|---|---|---|---|
session, has_session | Strictly necessary | Keeps you signed in. | 30 days |
iftl_consent | Strictly necessary | Records your privacy preferences. | 1 year |
_ga, _ga_GFRLCG8ZNW | Analytics | Google Analytics 4 — distinguishes users and stitches sessions across iforgotthelist.com and iforgotthecoupons.com. Loaded only after consent. | Up to 2 years |
6. Third-Party Data Recipients
We use these processors. Each receives only the data needed for their function.
| Recipient | Role | What they receive |
|---|---|---|
| Google (Tag Manager + Google Analytics 4) | Web analytics | Page views, referrer, source/medium, events, IP, user agent — only with consent. Used to understand organic traffic and cross-domain flow between iforgotthelist.com and iforgotthecoupons.com. |
| PostHog | Mobile product analytics | Events and pseudonymous IDs from the mobile apps. Not loaded on the web today. |
| WorkOS | Authentication | Email, name, sign-in events. |
| Resend | Transactional email | Recipient email address and message content. |
| Stripe | Payments | Billing details for paid plans. |
| Apple, Google | In-app purchases | Subscription receipts for mobile. |
| Railway, Netlify | Hosting | All data we store, encrypted at rest. |
| Anthropic, OpenAI | AI features | Voice transcripts and item names you choose to process via AI features. Not used by the provider to train models. |
| RevenueCat | Subscription management | App Store / Google Play subscription state. |
| Connected stores (such as Fred Meyer) | Integrations | Only the access token issued by your store sign-in, used to act on your behalf on their site. |
We do not sell your personal information for money, share it with advertisers, or rent it to data brokers.
7. Data Retention
- Account data — kept while your account is active.
- Purchase history and lists — kept until you delete them or your account.
- Voice recordings — deleted within 24 hours of transcription.
- Session tokens — expire after 30 days of inactivity.
- Analytics events — up to 7 years in PostHog; Google's standard retention applies to GTM-managed events.
- Account deletion audit records — retained 7 years to comply with legal recordkeeping.
8. Your Rights
You can:
- Access and export your data — sign in and visit Your Privacy Choices to download a JSON copy of your account data.
- Delete your account and data — from the mobile apps, or sign in and use Your Privacy Choices. If you can't sign in, request deletion via the account deletion form.
- Withdraw or change consent — open Your Privacy Choices or the footer link any time.
- Disconnect store integrations — from app settings.
Authenticated deletion is immediate; the form-based path for non-signed-in users is processed within 7 business days.
9. California Privacy Rights (CCPA / CPRA)
California residents have the following rights:
- Right to know what we collect (Section 2), who we share it with (Section 6), and how we use it (Section 4).
- Right to access a copy of your data — use the export tool on Your Privacy Choices.
- Right to delete your data — use the delete tool on the same page or the mobile apps.
- Right to correct inaccurate data — contact us at privacy@iforgotthelist.com.
- Right to opt out of "sale" or "sharing" of personal information — use the Do Not Sell or Share My Personal Information link in the footer. We do not sell data for money, but analytics tags routed through Google may meet California's broad definition of "share" for cross-context behavioral advertising — opting out turns those off.
- Right to non-discrimination — we will not charge you a different price or provide a different level of service for exercising your privacy rights.
We do not knowingly sell or share the personal information of consumers under 16.
10. Connected Store Access
Our mobile app supports clipping coupons and importing receipts from connected store loyalty accounts (such as Fred Meyer). You sign in through the store's own login page in a secure in-app browser, and we receive an access token issued by that sign-in — never your store password. Those tokens are stored securely on your device and on our servers so the connection can be shared within your household, are used only to make API calls on your behalf to the stores you have explicitly connected, and are transmitted over HTTPS.
11. Data Security
- All data in transit uses TLS/HTTPS.
- Database is encrypted at rest.
- Session tokens use HMAC signing; JWTs from our identity provider are validated server-side.
- Access to production data is limited to authorized personnel.
12. Children's Privacy
The Service is not intended for users under 13 years of age. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, contact us at privacy@iforgotthelist.com and we will delete it.
13. International Users
We are based in the United States. If you access the Service from outside the U.S., you understand your information will be processed in the U.S.
14. Changes to This Policy
We may update this policy. Material changes will be announced in the app or by email. The "Last Updated" date at the top of this page always reflects the current version.
15. Contact
- Privacy questions: privacy@iforgotthelist.com
- General support: support@iforgotthelist.com
- GitHub: github.com/joelcloralt/grocery-app/issues