Pelicart← Back

Privacy policy

Last updated 2026-05-11.

This page describes what Pelicart collects about you, who else processes that information, how long we keep it, and how to ask us to delete it. For a deeper, technical explanation of how the service is built and what could go wrong, read the security whitepaper.

What we collect

When you message Pelicart on WhatsApp, Meta tells us your phone number and the display name on your WhatsApp profile. We keep the text and images you send and the replies we send back. We learn your first name once you tell the assistant what it is.

When you link your Woolworths account, we store an encrypted session token that proves you are logged in. The token is scrambled with AES-256-GCM encryption before it touches our database. We also remember any delivery addresses you ask the assistant to use, so it can pick the right one next time.

We assign you a user ID inside our database and a subscription flag for billing later. That is the full list.

What we never collect

Your Woolworths password is never stored. Your credit card and your bank are never touched. You pay inside the Woolworths app on your phone, on your card, after you review the cart we loaded. The security whitepaper explains why the architecture makes it impossible for us to see any of those things.

Who else processes this data

Pelicart is a small website talking to a few other services on your behalf. Each one sees only what it needs.

  • Meta (WhatsApp Business API) delivers your messages to us and our replies back to you.
  • Anthropic runs the Claude language model that reads your recent conversation and decides what to add to your cart.
  • Convex is the database where your account, your encrypted Woolies token, and your messages live.
  • Vercel is our hosting platform. It serves this website and runs our server code.
  • PostHog receives traces of the assistant while it runs so we can find and fix bugs during beta.
  • Google Maps only sees a new delivery address when you give us one to add.
  • Woolworths sees the cart we load on your account, in the same way it sees any logged-in shopper.

How long we keep it

Recent chat memory is kept for seven days so the assistant remembers what you asked yesterday. After that, the memory rolls off automatically.

A longer audit log of your messages stays in our database while we are in private beta. We use it to investigate problems and to improve the assistant. We plan to shorten it once the product is stable.

Your account, your encrypted Woolies token, and any saved addresses stay until you ask us to delete them.

Deleting your data

Message β€œdelete me” on WhatsApp or email hello@pelicart.com. We remove your account, your encrypted Woolies token, your saved addresses, the audit log, and the chat memory.

Contact

For anything privacy or security related, email hello@pelicart.com. If you want to understand exactly how Pelicart is built before you trust it, the security whitepaper walks through the threat model and what each third party sees.