Privacy Policy
PRIVACY POLICY
Last Updated: March 2026
This Privacy Policy describes how Cedar & Fog Labs, LLC ("we", "us", or "our") collects, uses, and shares your information when you use the Settlewood application ("App").
1. INFORMATION WE COLLECT
Account Information: Email address and password (stored securely via Amazon Cognito).
Photos: Images you upload of rooms and storage areas. Photos are stored in Amazon S3, encrypted at rest and in transit, and are only visible to you.
Analysis Results: AI-generated analysis of your uploaded photos, including tidiness scores, zone assessments, and action item recommendations.
Device and Usage Data: We collect usage analytics through PostHog, including which screens you visit, actions you take in the App (such as uploading photos, running analyses, and managing rooms), your browser or device type, operating system, screen size, and referring URL. We do not collect precise location data. IP-based geolocation is disabled in our analytics configuration, though your IP address may be transiently processed by PostHog's servers. You can opt out of analytics tracking at any time in Settings > Privacy.
EXIF Metadata: Photos may contain EXIF metadata including GPS coordinates. We automatically strip EXIF metadata (including geolocation data) from all uploaded photos on our servers before permanent storage.
2. HOW WE USE YOUR INFORMATION
- To provide the room analysis service
- To store and display your photos and analysis history
- To maintain and improve the App
- To authenticate your identity and secure your account
3. THIRD-PARTY DATA SHARING
Anthropic (AI Analysis): When you request a room analysis, your photo is sent to Anthropic's Claude AI API for processing. Specifically: - The photo and an analysis prompt are sent to Anthropic's API - Anthropic processes the data to generate analysis results - Anthropic retains API data for up to 30 days for safety monitoring, then deletes it - Anthropic does not use API data for model training - You must provide explicit consent before any photo is sent to Anthropic
For more information, see Anthropic's privacy policy and API data usage policies.
PostHog (Analytics): We use PostHog to understand how the App is used and to improve the experience. PostHog receives usage events (such as screen views, feature interactions, and purchase activity), browser and device metadata, and a pseudonymous user identifier. PostHog does not receive your photos, analysis results, or email address. You can opt out of analytics tracking at any time in Settings > Privacy. For more information, see PostHog's privacy policy at posthog.com/privacy.
4. DATA STORAGE AND SECURITY
- Photos are stored in Amazon S3 in the US East (N. Virginia) region
- All data is encrypted at rest (AES-256) and in transit (TLS 1.2+)
- User authentication is handled by Amazon Cognito with SRP (no plaintext passwords transmitted)
- Access to photos is scoped to the uploading user — no other user can view your photos
5. DATA RETENTION
- Photos: Retained until you delete them or your account is terminated
- Analysis results: Retained until your account is terminated
- Account data: Retained until you request deletion
- Anthropic API data: Retained by Anthropic for up to 30 days per their policy
- Analytics data: Retained by PostHog per their data retention policy; anonymized after you opt out or delete your account
6. YOUR RIGHTS
Depending on your jurisdiction, you may have the following rights:
Under CCPA/CPRA (California residents): - Right to know what personal information we collect - Right to delete your personal information - Right to opt out of the sale or sharing of personal information - We do not sell or share your personal information
Under GDPR (EU residents): - Right of access to your personal data - Right to rectification - Right to erasure ("right to be forgotten") - Right to data portability - Right to object to processing - You may exercise these rights by contacting us
7. DO NOT SELL OR SHARE
We do not sell or share your personal information as defined by the CCPA/CPRA. Your photos are used solely to provide you with the analysis service.
8. CHILDREN'S PRIVACY
The App is not directed at children under 13. We do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided us with personal information, please contact us so we can delete it.
9. AUTOMATED DECISION-MAKING
The App uses AI to analyze photos and provide organizational recommendations. These are suggestions only and do not result in any automated decisions that have legal or similarly significant effects on you. You always have the choice to accept, modify, or ignore any recommendation.
10. DATA DELETION
To delete your account and all associated data: - Go to Settings > Privacy > Delete Account within the App - This will immediately and permanently delete your account, photos, analysis results, room data, and stored records - Account deletion is irreversible - Data previously sent to Anthropic's API will be retained per their retention policy (up to 30 days) before automatic deletion - Analytics data previously sent to PostHog will be anonymized upon account deletion
11. BIOMETRIC DATA
The App does not collect biometric identifiers or biometric information. We recommend photographing rooms without people to avoid incidental capture of facial features.
12. CHANGES TO THIS POLICY
We may update this Privacy Policy from time to time. We will notify you of material changes through the App or via email.
13. CONTACT US
For questions about this Privacy Policy or to exercise your data rights, please contact us at:
trust@cedarandfoglabs.com