Casepin · Privacy
We built this to need almost nothing from you.
No accounts, no ads, no data sales, no location stored. This policy describes exactly what the website and app do with data — written to match how the software actually behaves, not a generic template.
The short version.
Casepin is an educational archive of documented criminal cases and the coverage that already tells them, intended for adults (18+). You can browse the entire archive without an account — there are none — and without giving us anything about yourself.
- No user accounts, no public comments, no tip-collection.
- No advertising and no sale or sharing of personal data — ever.
- Analytics are anonymous: no IP address, no precise location, no session recording.
- The cases you save or follow, and any “near me” location, stay on your device and are never sent to us.
- Update notifications are off unless you turn them on, and are tied to your browser — not to you.
What we collect — and what we don’t.
We collect the minimum needed to keep the archive working and to understand, in aggregate, which cases people read. Specifically:
- Anonymous usage events (which pages are viewed) via PostHog — with automatic click/input capture turned off, session recording off, GeoIP location disabled, and your IP address discarded rather than stored.
- Diagnostic crash reports via Sentry when something errors, so we can fix it.
- If — and only if — you send a correction, case suggestion, media suggestion, or report, whatever you type in that form, plus an email address if you choose to give one.
We do not collect your name, contacts, precise location, advertising ID, or browsing history on other sites. If your browser sends a “Do Not Track” signal, we don’t load analytics at all.
What stays on your device.
Some features work entirely in your browser or app and never reach our servers:
- Saved and followed cases are kept in your device’s local storage. Clearing your browser data or app storage removes them.
- “Near me” asks your device for a one-time, coarse location only to center the map. Those coordinates are used on the spot and never transmitted, logged, or stored — by us or anyone else.
Update notifications (only if you turn them on).
Casepin can send optional push notifications — an update to a case you follow, an on-this-day case of the day, or a short weekly digest. They are off by default. Nothing is registered until you tap the “Case updates” toggle and your browser grants permission; you choose which of those you want.
If you turn them on, your browser gives us a push “subscription” that we store so we can send you those notifications:
- The push endpoint URL and encryption keys your browser generates — these address your browser’s push service, not you.
- Which notification types you chose (case-of-the-day, weekly digest, followed-case updates) and the list of cases you follow, so “followed-case updates” only ever reaches the right browsers.
- A coarse platform label (for example “Windows” or “iPhone”) and the times we last saw or messaged that subscription.
This subscription is tied to that browser or installed app, not to your identity — there is still no account, no name, and no email. It is used only to deliver the updates you asked for; notification content is written to be calm and informative and never uses your location. Turn the toggle off and the subscription is deleted immediately; clearing your browser or app data also removes it, and you can ask us to delete it via the privacy contact below.
When you write to us.
Corrections and suggestions go into a private moderation queue — they are never published automatically and never shown to other visitors. We use what you send only to review and act on your request. If you include an email address, we may use it to follow up on that request and nothing else. Requests from victims’ families are prioritized (docs/06).
Coverage we embed.
Case files link to and embed third-party coverage — YouTube videos (through the privacy-enhanced youtube-nocookie player) and Spotify or Apple podcast episodes. We never re-host that content. If you press play on an embedded player, that provider receives the request and applies its own privacy policy and cookies. Nothing plays on its own; embeds load only when you choose to watch or listen.
Who processes data for us.
We rely on a small set of service providers, each handling only what its function requires:
- Supabase — hosts the case archive and the moderation queue for anything you submit.
- PostHog — anonymous, aggregate usage analytics, configured as described above.
- Sentry — error and crash diagnostics.
- Render — serves the website.
- YouTube, Spotify, and Apple — only when you play an embedded piece of coverage.
Retention, your rights, and children.
Submissions are kept until your request is resolved and for a reasonable period afterward for record-keeping, then removed. Anonymous analytics are retained on PostHog’s schedule and cannot be traced back to you. Because we hold no account and no identifiers, most data is not linked to you personally; where you have given an email in a submission, you may ask us to access or delete it.
Casepin is intended for adults and is not directed to children. We do not knowingly collect information from anyone under 18.
Changes and contact.
If this policy changes, we will update the date below and, for material changes, note it in the app. Questions or requests about your data: privacy@casepin.com.
LAST UPDATED 6 JULY 2026 · Casepin is an 18+ educational archive. Case-file prose adapted from Wikipedia is shared under CC BY-SA 4.0.