Vinni
Legal

Privacy Policy

How Vinni collects, uses, and protects your information.

Last updated: April 22, 2026

1. Overview

This Privacy Policy describes how SanaView, LLC (“Vinni,” “we,” “us”) collects, uses, and shares information in connection with the Vinni winery management service (the “Service”). By using the Service you agree to the practices described here and in our Terms of Service.

Vinni is designed for use by licensed commercial wineries. We do not knowingly provide the Service to consumers for personal use and do not direct the Service to children.

2. Information we collect

2.1 Information you provide.

  • Account information — your name, email address, winery name, role (admin, winemaker, cellar assistant, viewer), and hashed password. Passwords are never stored in plaintext.
  • Billing information — billing contact details collected at checkout. Payment card details are entered directly into our payment processor (Stripe) and are not stored on our servers; we retain a tokenized customer reference and the card brand, last four digits, and expiration date for display.
  • Winery operational data — the batches, vessels, events, inventory items, work orders, production materials, packaging supplies, sanitation logs, batch costs, files, and TTB report drafts you create in the Service.
  • Feedback and support messages — any feedback, bug reports, or support requests you submit through the Service.
  • Integration credentials — encrypted tokens and configuration for optional third-party integrations you connect (for example Square or Vinoshipper).
  • AI chat content — the messages you send to the AI assistant and any context the Service attaches to help the assistant respond.

2.2 Information collected automatically.

  • Usage and diagnostic data — server logs, error messages, request IDs, route paths, timestamps, response statuses, and AI token counts. These are used for operations, security, and billing.
  • Device and connection data — IP address, user agent, referring page, and similar technical metadata collected by our hosting and edge providers.
  • Cookies and local storage — used for authentication, session management, and user preferences. See Section 10.

2.3 Information from third parties.

If you enable an integration (such as Square or Vinoshipper), we receive order, inventory, and webhook data from that provider in accordance with the permissions you grant. If you pay via Stripe, we receive billing status and invoice data from Stripe.

2.4 Information we do not collect.

We do not collect special categories of personal data (such as health or biometric data), and we do not use third-party advertising trackers on the Service.

3. How we use information

We use the information above to:

  • Provide, secure, and maintain the Service.
  • Authenticate users, prevent abuse, and enforce our Terms.
  • Process payments and administer subscriptions, including metered AI overage when you opt in.
  • Send transactional email (email verification, password reset, work-order review notifications, billing receipts) via our email provider.
  • Generate AI-assisted content, insights, and draft reports when you use our AI features.
  • Diagnose and fix bugs, monitor performance, and improve the Service.
  • Respond to your feedback, support requests, and inquiries.
  • Comply with legal obligations and respond to lawful requests from authorities.

We do not sell personal information, and we do not share personal information for cross-context behavioral advertising.

4. How we process information in AI features

When you use an AI feature, we send the relevant input — your message, selected winery context, and system instructions — to our AI provider (Anthropic) so it can generate a response. AI inputs and outputs are handled as follows:

  • Processing.Anthropic processes the content to generate a response. Under our agreement with Anthropic, your AI inputs and outputs are not used to train Anthropic's foundation models.
  • Storage. We store AI chat history on your account so you can reference prior conversations. We also record per-request token counts for billing and abuse prevention.
  • Content you should not submit. Do not send any information to the AI features that you would not be comfortable sharing with our AI provider. Avoid submitting sensitive personal information about customers or employees that is not relevant to winery operations.
  • Accuracy. AI outputs may be inaccurate. See our Terms of Service for the full advisory disclaimer.

5. How we share information

We share information only as follows:

  • With sub-processors that host infrastructure, process payments, deliver email, store files, and power AI features on our behalf. See Section 6 for the current list.
  • Within your winery. Information you put into the Service is visible to other authorized users in your winery account, according to their role.
  • With authorities when we are required to by law, legal process, or a valid government request, or when we reasonably believe disclosure is necessary to protect the rights, safety, or property of you, us, or others.
  • In a business transfer. If we are involved in a merger, acquisition, financing, or sale of assets, information may be transferred as part of that transaction. We will take reasonable steps to ensure continued protection and will notify affected customers where required.

6. Sub-processors

We use the following third-party services to operate Vinni. We have contracts with each of them that obligate them to protect information consistent with applicable law.

  • Vercel, Inc. — application hosting, edge network, and blob file storage.
  • Neon, Inc. (or equivalent Postgres provider) — managed PostgreSQL database hosting.
  • Anthropic, PBC — large language model processing for AI features.
  • Stripe, Inc. — payment processing, subscription management, and invoicing.
  • Resend, Inc. — transactional email delivery.
  • Square, Inc. — optional POS integration if you connect your Square account.
  • Vinoshipper, Inc. — optional direct-to-consumer shipping integration if you connect your Vinoshipper account.

We may update this list from time to time. Material changes will be reflected in the “Last updated” date above. Contact us at hello@itsvinni.ai for the current list at any time.

7. Data retention

We retain account and winery operational data for as long as your subscription is active, and for a commercially reasonable period afterward to accommodate reactivation, backups, dispute resolution, and legal-hold obligations. Typical retention windows:

  • Account data: for the life of the account plus up to 90 days after cancellation.
  • Backups: rotated on a schedule of up to 30 days.
  • Billing records and tax documentation: retained for the period required by applicable tax and accounting law (typically seven years).
  • Server and audit logs: typically 30–90 days, or longer if needed for security investigation.
  • AI chat history: retained until you delete it or your account is terminated.

You can request export or deletion of your data at any time (see Section 8). Some records we are legally required to retain (for example, billing and tax records) may survive a deletion request to the extent the law requires.

8. Your rights and choices

Depending on your location, you may have the right to access, correct, export, or delete personal information we hold about you; to object to or restrict certain processing; and to withdraw consent where we rely on it. To exercise these rights, contact us at hello@itsvinni.ai. We will verify your identity before responding.

You can also:

  • Export your data from your account settings in common formats (for example, CSV for TTB reports and inventory).
  • Delete your account from your account settings or by emailing us. Deletion removes Customer Data subject to the retention periods in Section 7.
  • Manage billing-related communications through Stripe, who sends payment receipts on our behalf.

If you believe we have not addressed your concern, you may have the right to complain to a data-protection authority in your jurisdiction.

9. Security

We take industry-standard measures to protect information, including:

  • HTTPS/TLS encryption in transit for all traffic to and from the Service.
  • Bcrypt password hashing; plaintext passwords are never stored.
  • Email-verification tokens and password-reset tokens stored as one-way hashes.
  • Stripe webhook signature verification and Square/Vinoshipper signature verification on inbound webhooks.
  • Multi-tenant isolation at the application and database layer; every mutation is scoped to the acting winery.
  • Rate limiting and audit logging of sensitive events.

No system is perfectly secure. You are responsible for choosing a strong password, keeping your account credentials confidential, and notifying us promptly if you suspect an unauthorized access.

10. Cookies and similar technologies

We use a small number of cookies and local-storage entries that are necessary to operate the Service:

  • Session cookie — set by our authentication provider (NextAuth) to keep you signed in. Marked HttpOnly and Secure where supported.
  • Preference storage — local-storage entries remembering interface preferences (for example, dismissal of non-critical banners and sidebar collapse state).

We do not use advertising or cross-site tracking cookies. Because the cookies we set are strictly necessary for the Service, a jurisdiction-specific cookie banner is not currently required on this Service. If you are in a region that imposes additional cookie requirements, contact us and we will ensure compliance for your use.

11. Children

The Service is not directed to, and is not intended for, children. You must be at least the legal drinking age in your jurisdiction (21 in the United States) to use the Service. If you believe a child has provided us with personal information, contact us and we will delete it.

12. International transfers

We and our sub-processors operate primarily in the United States. If you access the Service from outside the United States, your information may be transferred to, stored, and processed in the United States or other countries that may have different data protection laws than yours. Where required, we rely on transfer-safeguarding mechanisms such as the Standard Contractual Clauses (SCCs) published by the European Commission.

13. Changes to this policy

We may update this Privacy Policy from time to time to reflect changes to the Service, our sub-processors, or applicable law. If we make material changes, we will notify you by email or through the Service in advance. The “Last updated” date at the top of this page always reflects the current version.

14. Contact

For privacy questions, data-subject requests, or to report a concern, contact us at hello@itsvinni.ai.

This Privacy Policy is provided for reference and should be reviewed by qualified counsel before use in production.