Who we are
Circa is the iOS app at withcirca.com. For anything in this policy you can reach the team at privacy@withcirca.com.
What we collect
Circa is deliberately narrow about what it asks for. Most of what the app uses to plan an evening lives on your device, not on our servers.
Information that stays on your device
- Your onboarding taste preferences (e.g. Quiet, Warm, Curious). Stored locally in app settings.
- The current plan you are working with, and any plans you have saved. Persisted in local app storage so they survive a relaunch.
- Optional inputs you have entered (last city, last vibe, budget, interests) so you do not have to retype them every time.
You can clear this local data from the app at any time from Profile, then Privacy. There is a confirmation step on each destructive action.
Information sent to our backend
- Your plan request. When you tap Create a plan, the app sends the brief you composed (city, date, start time, interests, vibe, budget, things to avoid, taste tags) to the Circa backend so it can generate a plan. The request is not stored on our servers in this version; the generated plan is returned to your device.
- An anonymous device identifier. The app generates a random opaque identifier on first launch and sends it on each plan request so the backend can enforce a fair-use limit (a small number of plans per day for guests). It is not tied to your identity, your Apple ID, or any device-level advertising identifier.
- A hashed form of your IP address. Our backend hashes your IP with a server-side secret so we can detect simple abuse patterns. We do not store the raw IP address.
- Premium-waitlist email, if you join. If you tap Notify me when Premium is ready and submit an email, that email is stored so we can contact you when Premium is available. You can ask us to remove it at any time (see below).
How AI plan generation works
Plans are generated by calling a third-party language model (Anthropic). Your brief is forwarded to that model along with our planning instructions. The model returns a structured plan, which the backend validates and sends back to your device. The brief is not retained by us once the plan is generated. Anthropic processes the request under its own privacy practices, which we link to below.
Third-party services
- Anthropic. Used to generate plan content. Anthropic privacy policy.
- Supabase. Stores the Premium-waitlist email and the short audit rows used for rate limiting. Supabase privacy policy.
- Vercel. Hosts our backend and serves these pages. Vercel privacy policy.
- Apple MapKit. The iOS app uses Apple Maps to display venue locations and walking routes inside a generated plan. Circa does not request your device location for this feature.
What we do not do
- We do not sell personal data.
- We do not use your data for third-party advertising.
- We do not run advertising trackers on you.
- We do not publish a public profile, swiping surface, or matching system. Circa is not a dating app.
- We do not share your saved plans publicly. Sharing a plan only happens when you tap Share inside the app.
Your rights
You can ask us to:
- Confirm what data we hold about you.
- Delete server-side data tied to you (for example a Premium-waitlist email).
- Correct data that is wrong.
For any of these requests, write to privacy@withcirca.com from the email address the data is associated with. We also keep a short public page at /delete-data with the exact steps.
Children
Circa is intended for adults. Do not use the app if you are under the age permitted by your jurisdiction to enter into a binding agreement.
Changes
We may update this policy as the product evolves. The Effective date above will move when we do. Material changes will be called out in the app or by email if we have one for you.
Contact
Questions about this policy go to privacy@withcirca.com. General support is at support@withcirca.com.