✦ Embury

Privacy Policy

Last updated: May 11, 2026

The short version

Your specs, journal, and resume live on your device first. Sync to the cloud is opt-in. We share data with three companies that make this app work — Anthropic (AI), Stripe (payments), Supabase (sync). We don't sell your data. You can export or delete everything any time.

1. Who we are

Embury is a bartender's spec book and AI bar director, operated by Lockworks Tavern LLC ("Embury," "we," "us"). Reach us at joe@lockworkstavern.com.

2. What we collect

From every visitor

Standard server logs (IP address, browser, page paths) via Cloudflare for security and performance monitoring. Cloudflare retains logs for a short window per their Privacy Policy.
Error reports via Sentry (a debugging tool) when the app crashes. Reports include the page you were on and the error stack trace. We use this to fix bugs.

From signed-in users

Account email and password. Stored hashed (we can't see your password). Used for sign-in and account recovery.
Profile data — name, venue, tagline, bio, work history, certifications, signature drinks, etc. — only what you choose to enter.
Specs, Journal entries, Drafts, House cocktails — everything you create.
Settings — your active binding theme, sub-tab preferences, etc.

Everything in this category is stored both locally (IndexedDB on your device) and synced to our database via Supabase. Sync is automatic when you're signed in. You can sign out at any time and your local data stays.

From AI feature usage (Pro+AI tier)

When you use AI features — resume import, restyle, fill-missing-fields, cocktail builder, variations, menu writer — the text you submit is sent to Anthropic's Claude API to generate the response. Anthropic does not train on API customer data per their Commercial Terms. We do not retain the AI request body after the response is returned. Usage metadata (model, token count, success/failure) is logged for billing and rate-limiting.

From paying customers (Stripe)

Payment processing for Pro and Pro+AI subscriptions is handled by Stripe. We receive a subscription status flag (active / canceled / past_due) but never see your full card details. Stripe handles all card storage in compliance with PCI-DSS.

3. How we use your data

To make the app work — sync your specs across devices, log you in, deliver AI responses.
To improve the app — anonymous error reports help us fix bugs.
To send you transactional emails — password resets, payment receipts, important account notices. We don't send marketing emails unless you opt in (you can opt in / opt out at Settings).
To enforce subscription tiers — when you call an AI endpoint, we check your Pro+AI status.

4. Who we share data with

We share the minimum data required to deliver the app, with the following providers:

Supabase — database, authentication, and storage hosting. Your synced specs and profile live here. Their privacy policy.
Cloudflare — web hosting and CDN. Their privacy policy.
Anthropic — Claude API for AI features. Text submitted to AI features passes through their service. Their privacy policy.
Stripe — payment processing. Their privacy policy.
Sentry — error monitoring. Their privacy policy.

We do not sell your data. We do not share it with advertisers, marketers, or data brokers. We do not have ads. The above five companies are the entirety of who touches your data, and only for the specific operational purposes listed.

5. Your rights

Regardless of where you live, you have the right to:

Access your data. Settings → Export everything downloads your full account data as JSON.
Delete your data. Settings → Clear all data wipes your local copy. To delete your server-side account and all synced data, email joe@lockworkstavern.com from your account email and we'll process it within 7 business days.
Correct your data. Edit any field directly in the app.
Object to processing. Sign out to stop sync. Cancel your subscription to stop AI feature usage. Email us to opt out of error monitoring (Sentry).
Take your data elsewhere. The JSON export is yours; the format is documented and machine-readable.

If you're in the EU, UK, or California, you have specific rights under GDPR / UK-GDPR / CCPA. The above covers them all in plain language. To exercise a formal request, email joe@lockworkstavern.com.

6. Data retention

We keep your account data as long as your account is active. If you delete your account, all server-side data is removed within 30 days (some backups may persist for an additional 90 days before they roll over). Anonymous error reports and aggregated usage metrics may be retained longer.

7. Children

Embury is intended for adults of legal drinking age in their jurisdiction. We don't knowingly collect data from anyone under 18. If we learn we have, we'll delete it.

8. Security

Passwords are hashed (we can't read them). API keys, payment data, and webhook secrets live in encrypted environment variables (Cloudflare Pages encrypted secrets). We use HTTPS everywhere. We're a small team, so this isn't a Fortune 500-grade security program — but we follow industry-standard practices.

9. Cookies and similar

We don't use tracking cookies. The app uses browser storage (localStorage, IndexedDB, Service Worker cache) to keep your data on your device and make the PWA work offline. None of this storage is shared with anyone else.

10. International transfers

If you're outside the US, your data may be transferred to and processed in the US (where most of our infrastructure lives). We rely on the standard safeguards required by GDPR for international transfers.

11. Changes to this policy

If we change anything material about how we handle your data, we'll update this page and the "last updated" date. For substantial changes, we'll also email signed-in users.

12. Contact

Questions, data requests, complaints, or anything else: joe@lockworkstavern.com.