Privacy Policy

Last updated: March 2026

The short version: WhatToDo doesn't collect personal information, doesn't require an account, and doesn't store your data after your session ends. We built it this way on purpose.

Who we are

WhatToDo is a group activity decision app that helps friend groups agree on what to do, where to eat, what to watch, and where to go. The app is operated as an individual developer product and is available at whattodotoday.app.

What we don't collect

✓ No account required. No email address. No password. No name.
✓ No payment information — ever.
✓ No persistent user profiles or history.
✓ No tracking across apps or websites.
✓ No selling of data to third parties. Ever.

What we do use — temporarily

To make the app work, the following information is used only for the duration of an active session:

Session data — votes, group name, and activity preferences are stored temporarily to run a live voting session. This data is automatically deleted when the session expires (within 24 hours).
A display name or emoji — when joining a session via a shared link, you may optionally enter a name or pick an emoji so your group knows who you are. This is stored only for the session and never linked to your real identity.
Approximate location — used only to suggest nearby restaurants, venues, and activities. Location is never stored, never logged, and never shared. It is used in the moment and discarded.

What stays on your device

Your personal data — including your groups, session history, preferences, and profile — is stored entirely on your own device using local browser storage. This data never leaves your phone and never touches our servers. We cannot see it, access it, or use it in any way. You can clear it at any time by clearing your browser or app data.

Shared links

When you create a group session, WhatToDo generates a unique short link you can share via iMessage, WhatsApp, or any messaging app. This link is valid for 24–48 hours and expires automatically. Anyone with the link can join the session — so only share it with people you intend to include.

Third-party services

When you tap a "Book It" button in WhatToDo — for example to reserve a table or buy movie tickets — you are leaving WhatToDo and entering a third-party app or website such as OpenTable, Fandango, or Ticketmaster. WhatToDo does not share any data with these services. Their own privacy policies apply once you leave our app.

We use the following third-party infrastructure:

Apple TestFlight / App Store — for app distribution. Apple's privacy policy applies to their platform.
Hosting provider — anonymous usage metrics such as page load times may be collected by our hosting infrastructure. No personal data is included in these metrics.

Children's privacy

WhatToDo is not directed at children under 13. We do not knowingly collect any information from children. If you believe a child has provided information through our app, please contact us and we will remove it promptly.

Your rights

Because we don't store personal data, there is nothing to access, correct, or delete. Sessions expire automatically. If you have any concerns, contact us and we'll respond within 7 days.

Changes to this policy

If we ever change how we handle data — for example if we add user accounts in a future version — we will update this policy and notify users through the app before the change takes effect. The "last updated" date at the top of this page will always reflect the most recent version.

Questions? We're a small team and we actually read our emails.
Reach us at privacy [at] whattodotoday.app