Privacy policy

Who we are

Loaners.app is operated by Miguel Baptista. Contact: hello@loaners.app.

What we collect

• Account details: name, email, organization name, role
• Operational data you enter: customers, equipment, loaner assignments, photos, notes
• Audit log: timestamp + actor + before/after for state changes
• Usage analytics: pages visited, errors (no third-party trackers)

Where data is stored

All customer data is stored in Supabase (Frankfurt, EU). Photos in EU-region object storage. No data leaves the EU. We do not sell, share or rent your data to third parties.

Multi-tenant isolation

Your organization's data is isolated via row-level security policies in the database. We cannot access your data without your explicit permission (which we never request).

Your rights (GDPR)

You can request: a copy of your data, deletion of your account, correction of incorrect data, restriction of processing. Email hello@loaners.app — we'll respond within 30 days.

Subprocessors

• Supabase (database + auth + storage, Frankfurt)
• Netlify (web hosting + CDN)
• Resend (transactional email)

Cookies

The app uses functional cookies only (authentication session). No tracking, no third-party cookies.