← Togi

Privacy Policy

Effective 15 May 2026

Togi is published by ByteBricks, a company based in Switzerland. This policy explains what Togi collects, why it is collected, and where it is stored. It applies to the Togi iOS app and to the marketing pages on gettogi.app. If anything here is unclear, write to [email protected].

1. What we collect

Togi collects only what the app needs to function and to stay reliable:

  • The email address you sign in with, or the opaque user identifier returned by Sign in with Apple if you choose that route.
  • A user identifier we generate for your account inside our database.
  • The knife records, sharpening sessions, and edge scores you create in the app.
  • Photographs of your knives, but only if you explicitly choose to attach a photo to a knife record, or if you trigger the steel-identification flow.
  • Product interaction events, such as "scan started," "session completed," "paywall viewed." These never include the content of your photos or free-text input.
  • Crash reports and performance traces, including the device model, iOS version, and a stack trace if the app misbehaves.

We do not request the IDFA, we do not run App Tracking Transparency prompts, and we do not collect contacts, location, microphone audio, or health data.

2. Why we collect it

Your email and user identifier exist so you can sign in across devices and so your knives and sessions follow your account. Knife records and sessions are the product. Photos attached to a knife are there because you chose to keep them. Interaction events let us see which features are used and where users get stuck; crash and performance data let us fix the app when it breaks.

We never sell your data. We never share your data with brokers, ad networks, or model training providers. We do not build advertising profiles. Togi has no ads.

3. Where it lives

All personal data is stored inside the European Union:

  • Account records, knives, sessions, and photos: Supabase, region eu-central-1 (Frankfurt, Germany).
  • Product analytics: PostHog EU cloud (Frankfurt).
  • Crash and performance traces: Sentry EU.

We selected EU-resident infrastructure on purpose. Your data does not need to leave the EU for Togi to work.

4. Photos and on-device processing

Most photo work in Togi runs on the phone. Edge scoring, blade detection in the viewfinder, and the geometry behind the sharpness number all execute on-device using Apple's Vision frameworks. Those photos never leave your phone.

There is one exception. The steel-identification flow, which you trigger by tapping "Scan it" when adding a knife, uploads a photo to our server so it can be examined. That upload is deleted within ten minutes of the response coming back. A sweeper job removes stragglers if anything fails.

When you save a new knife, a checkbox labelled "Save photo to my collection" lets you keep a compressed copy of the photo attached to the knife record. The checkbox is off by default. If you turn it on, the photo stays in our Supabase storage bucket until you delete the knife or your account.

5. Third parties

Togi uses a small set of named providers. Each receives the minimum it needs to do its job.

  • Anthropic Claude. Used for blade identification and for generating coaching plans. Claude receives the photo for steel identification, or a short structured prompt for coaching, and nothing else. It does not receive your email, your user ID, or your sharpening history.
  • RevenueCat. Manages subscription state and receipt validation. Receives an anonymous app user ID and the App Store transaction.
  • Apple. Provides Sign in with Apple, payment processing, and push notification delivery, under Apple's own terms.
  • Supabase. Provides authentication, database, storage, and the server functions that proxy to Claude.
  • PostHog and Sentry. Receive product event data and crash data respectively, both in the EU region.

6. Children

Togi is not directed at users under 17. We do not knowingly collect data from anyone in that group. If you believe a child has created a Togi account, write to [email protected] and we will close it.

7. Your rights

You can see, export, and delete your data without contacting us. Inside the app, the Account screen offers "Export my data," which produces a JSON archive of every knife, session, photo reference, and event we hold for you. The same screen has "Delete my account."

If you prefer email, write to [email protected] and we will fulfil access, rectification, export, restriction, and erasure requests within thirty days, as required under the Swiss Federal Act on Data Protection and the EU General Data Protection Regulation.

8. Account deletion

Deleting your account removes every record tied to it: knives, sessions, photos, events, and crash traces linked to your user identifier. Deletion is final. Anonymous aggregate counts (for example, "active users this month") may persist in our analytics but cannot be traced back to you.

One thing account deletion does not do: it does not cancel your subscription. App Store subscriptions are managed by Apple, not by us. Cancel in Settings › Apple ID › Subscriptions before you delete your account if you want billing to stop.

9. Changes to this policy

If we change this policy, the effective date at the top of the page changes. Material changes, such as adding a new category of data, are announced inside the app on next launch and by email if we have one on file for you.

10. Contact

ByteBricks, Switzerland. Reach the team at [email protected]. We answer within two working days.