privacy policy.

what we collect

To run the service we collect:

• Your email address, display name, and (if you sign in with Google) Google profile data scoped to email + name + avatar.
• Payment-rail handles you choose to connect (Venmo username, Cash App $cashtag, Zelle phone or email, Bitcoin / Ethereum / USDC addresses). We store these so we can render them on your chits.
• Chit contents you create — amount in cents, an optional short description, and an optional customer first name.
• Anonymous tap counts and a buyer-confirmed timestamp on each chit so you can tell which rails get used.
• IP address and user-agent string for fraud and abuse signals.
• A session cookie scoped to your subdomain. Required for sign-in.
• Product-analytics events (signup, chit minted, chit paid, page scan) so we can see what's working and fix what isn't. We send these to PostHog — see “Vendors” below.

what we do NOT collect

We never see or store:

• Credit or debit card numbers (PAN). We are not a card processor.
• Bank account or routing numbers.
• Social Security numbers or government IDs.
• Biometric data (no Face ID / fingerprint data leaves your device — those are local to your phone's secure enclave if you use Passkeys).
• The contents of payments made on Venmo / Cash App / Zelle / a crypto wallet — those happen outside our system entirely.

how we use what we collect

• Authenticate you and keep you signed in.
• Render your chits and personal /p/ page.
• Show you tap-count analytics on your own chits.
• Detect abuse (rate-limit signups, block obvious spam).

We do not sell or rent your data. We do not run ads. We do not share data with third parties for advertising.

vendors we use

• Vercel — application hosting and edge delivery.
• Neon — managed PostgreSQL database (US-East region).
• Resend — sends our receipt and reminder emails and our day-zero welcome email after you claim a handle.
• Auth.js + Google OAuth — sign-in providers.
• PostHog— product analytics. We record a small set of events (signup, chit minted, chit paid, page scan) so we can see what flows people complete and which ones break. Data lives in PostHog's US cloud. We do NOT use any third-party ad pixels (no Facebook Pixel, no Google Analytics, no TikTok Pixel).

Each vendor has their own privacy policy. We share only the minimum data needed for them to do their job — your email goes to Resend so it can deliver a receipt or reminder, your IP appears in Vercel access logs so we can investigate abuse.

cookies

We use functional cookies only:

• The Auth.js session cookie — scoped to your subdomain, HttpOnly + Secure + SameSite=Lax. Required for sign-in.
• A PostHog distinct-id cookie — first-party, scoped to our domain, so PostHog can stitch your events together without re-asking who you are on every page. No cross-site tracking, no advertiser audiences, no resale.

We do not use third-party tracking cookies or ad pixels. We do not sell or share these cookies with anyone.

your rights

You can view, export, or delete your data at any time. Use /cash/me to see what we have, and the “Delete my account” flow (coming next iteration — for now, email andy@yewsoftware.com and we will delete within 7 days). California (CCPA) and EU (GDPR) residents have all the standard rights — access, correction, deletion, portability, and the right to lodge a complaint with your local data-protection authority.

children

yew. is not for users under 13. We do not knowingly collect data from children under 13. If you believe a child has signed up, email us at andy@yewsoftware.com and we will delete the account.

changes to this policy

If we change anything material we will update the “last updated” date at the top, and email everyone with an active account. Trivial wording fixes will not trigger an email.

questions

Email andy@yewsoftware.com. Real person reads it.