LSTN

Privacy Policy

Effective date: March 20, 2026

LSTN (“we,” “us,” or “our”) operates getlisten.app and the LSTN mobile web app. This policy explains what information we collect, how we use it, and the choices you have. Please read it carefully.

1. Information we collect

Account information

When you create an account we collect your name, email address, and — if you choose to register as a clinician — your professional role. If you sign in via Google, Apple, or Facebook, we receive your name, email, and profile photo from that provider.

Hearing health data

LSTN is a hearing screening tool. When you use our features we may collect:

  • Hearing test results — your responses, a computed hearing score, and a severity classification (normal, mild, moderate, or severe) across multiple frequencies for each ear.
  • Sound level readings — peak and average decibel levels, frequency, and session duration captured by your device microphone.
  • Speech transcripts — text generated from audio captured during a transcription session. Transcripts are stored on our servers.
  • Audiogram images — images you upload are analyzed by an AI service and then discarded; the plain-English explanation is returned to you.

This data is health-related and is treated with heightened care. We do not sell it. We do not share it with clinics or advertisers without your explicit action (see “Sharing with clinics” below).

Device and usage data

We collect information about how you use the app via Firebase Analytics, including page views, feature interactions (e.g. adding a product to your cart), and session length. This data is anonymized and aggregated. We also store device type and a push notification token if you grant notification permission.

Guest users

If you choose “Continue as guest,” you can use core features without creating an account. We assign a temporary anonymous session. Any hearing data generated during a guest session is tied to that session only. We cannot link it to you if you later create an account, and it may be deleted periodically.

2. How we use your information

  • To provide and improve the LSTN app and its features.
  • To store your hearing history so you can track changes over time.
  • To send you transactional emails (account confirmation, password reset).
  • To send you optional hearing-health tips and product updates if you opt in. You can opt out at any time in Settings.
  • To connect you with hearing professionals when you choose to submit a lead (see below).
  • To process payments for promoted clinic listings (clinicians only).
  • To comply with legal obligations.

3. Sharing with clinics

When you tap “Call me” or otherwise submit a lead from the Find an Expert section, you are voluntarily sharing your name and phone number with the clinic you selected. This information is emailed directly to the clinic’s representative so they can contact you. We do not share your hearing test results with clinics unless you explicitly attach them to a request.

You can withdraw a lead by emailing us at privacy@getlisten.app with the subject “Withdraw lead” and the clinic name. We will instruct the clinic to delete your contact information.

4. Shopping and purchases

The LSTN Shop links to a product catalog powered by Shopify. Browsing and adding items to your cart happens within our app; your cart is saved to your browser’s local storage using a temporary cart ID.

When you proceed to checkout you are redirected to Shopify’s secure checkout. All payment information (credit card numbers, billing address) is collected and processed by Shopify and is never transmitted to or stored on LSTN’s servers.

For clinician promotional subscriptions, payment is processed by Stripe. We store a Stripe customer ID and subscription status but never your card details. Stripe’s privacy policy is available at stripe.com/privacy.

5. Third-party services

We use third-party service providers to operate the app, including for database hosting, authentication, analytics, email delivery, and push notifications. These providers access only the data necessary to perform their function and are contractually required to protect it.

For services that handle sensitive data, we want to be specific:

  • Payments (Stripe, Shopify) — payment and billing information is collected and processed directly by Stripe and Shopify. LSTN never receives or stores your card details. Both providers are PCI-DSS compliant.
  • Audiogram analysis (Anthropic) — images you upload for audiogram review are sent to Anthropic’s API for AI analysis. The image is not linked to your identity and is not retained by Anthropic beyond the scope of the request.

6. Cookies and local storage

We use browser storage for a small number of functional purposes:

  • Authentication cookies — set by Supabase to keep you signed in.
  • lstn-cart-id — local storage key that saves your Shopify cart between visits. Contains a cart reference only, not personal data.
  • lstn-text-size / lstn-high-contrast — local storage keys that remember your accessibility preferences.
  • lstn-push-dismissed — session storage flag to avoid re-showing the notification permission banner after you dismiss it.

We do not use tracking cookies or third-party advertising cookies.

7. Requesting clinic removal

If you are a clinic owner and believe your clinic listing is inaccurate or you wish to have it removed from the LSTN directory, please email privacy@getlisten.app with:

  • Subject line: “Clinic removal request”
  • The clinic name and address as it appears in the app
  • Your relationship to the clinic (owner, manager, etc.)

We will review and respond within 5 business days. Verified owners can also log in as a clinician and manage their listing directly from the Clinician Portal.

8. Your rights and choices

  • Access and correction — you can view and update your name in Settings.
  • Email opt-out — toggle “Hearing health tips” off in Settings at any time.
  • Push notifications — revoke permission in your browser or OS settings at any time.
  • Delete your account — email privacy@getlisten.app with the subject “Delete my account.” We will permanently delete your account and associated health data within 30 days.
  • Data portability — request a copy of your hearing history and test results by emailing us.

If you are in the EU, UK, or California, you may have additional rights under GDPR or CCPA. Contact us at the address below to exercise them.

9. Children's privacy

LSTN is not directed to children under 13 and we do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us and we will delete it promptly.

10. Data security

We use industry-standard security measures including encrypted connections (HTTPS), server-side authentication, and row-level security policies on our database. Payment data is handled entirely by PCI-DSS-compliant providers (Stripe, Shopify). No method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.

11. Data retention

We retain your account and health data for as long as your account is active. If you delete your account, we remove your personal data within 30 days except where required by law (e.g. billing records). Anonymized, aggregated analytics data may be retained indefinitely.

12. Changes to this policy

We may update this policy from time to time. We will notify you of material changes by posting a notice in the app or sending an email. Your continued use of LSTN after changes take effect constitutes acceptance of the updated policy.

13. Contact us

Questions or requests about this policy:

LSTN
privacy@getlisten.app

Privacy Policy — LSTN — LSTN