Legal

Privacy Policy

Last updated 9 July 2026

Spotless shows public restaurant inspection records on a map. This page describes exactly what we collect, why we collect it, and how to get rid of it. It covers the Spotless iOS app, the website at spotless.fyi, and the Spotless browser extension.

What we collect

Your account. When you sign in with Apple or Google we receive your email address, your name, and your profile image, and we store them so we can show you your own saved data. We never see your password. If you sign in with Apple and choose to hide your email, we only ever see the relay address Apple gives us.

Your location. The iOS app asks for your location while you are using it, so it can show restaurants around you. Your coordinates are sent to our servers and on to the Google Places API to find nearby restaurants. We do not store a history of where you have been, and we do not track your location in the background.

Places you interact with. If you use the Spotless browser extension, the restaurants you order from are recorded against your account so the app can show you their inspection history. Places you bookmark in the iOS app are stored on your device only.

Nothing else. Spotless contains no advertising, no analytics software, no third-party trackers, and no crash reporting SDK. We do not build a profile of you, and we do not sell or rent your data to anyone, for any purpose.

Who your data reaches

We use a small number of service providers, each of which only receives what it needs to do its job:

An authentication provider handles sign-in and stores your account record. A backend and database host stores that account and the places associated with it. A maps and places provider receives the coordinates of the area you are looking at, so it can return the restaurants there — today that is the Google Places API.

We do not send your personal information to AI providers. The plain-English summaries you read on a restaurant’s page are generated from public inspection records alone — the restaurant’s name, its violation text, and the dates of its inspections. Nothing about you, your account, or your location is included. That is true whichever AI provider we use, and it will remain true unless this page says otherwise.

We publish the specific companies we currently use, and keep that list current, at spotless.fyi/subprocessors. Changing a provider within one of the categories above does not change what we collect or why, so it does not change this policy.

Inspection data itself comes from public open-data sources published by city and county health departments, including the New York City Department of Health and Mental Hygiene, the Chicago Department of Public Health, the San Francisco Department of Public Health, and the Los Angeles County Department of Public Health.

Deleting your account and your data

You can delete your account from inside the iOS app: open your profile, then Delete account. This permanently erases your account record, the places associated with it, and any score cards you generated, and it deletes your sign-in identity. It cannot be undone.

You can also email privacy@spotless.fyi and ask us to delete your account, or to send you a copy of what we hold about you.

How long we keep things

Your account data lives until you delete your account, at which point it is removed immediately rather than archived. Inspection records are public data and are kept indefinitely — they are not about you.

Children

Spotless is not directed at children under 13, and we do not knowingly collect personal information from them.

Changes

If we change how we handle your data, we will update this page and change the date at the top. If the change is significant, we will tell you in the app before it takes effect.

Contact

Questions, requests, or complaints: privacy@spotless.fyi.

Try a nameJoe's Pizza, COTE, Russ & Daughters, Lucali — anything you've ever ordered from in NYC.