Privacy Policy

Last updated: March 2026

What data we collect

We collect the minimum information needed to provide the service:

  • Account data: your username, email address, and a hashed (bcrypt) version of your password. We never store your password in plain text.
  • Usage data: the movies and shows you search for, add to your watchlist, or mark as watched, and the shared lists you create or join.
  • Profile data: an optional display name, bio, and avatar URL that you choose to provide.
  • Preference data: your selected UI style and colour mode, stored locally in your browser via localStorage.

How we use your data

Your data is used solely to operate WatchList:

  • Authenticate you and maintain your session.
  • Show your personal watch history, liked media, and watchlist.
  • Display shared lists and co-watch information to other list members.
  • Surface friend activity (visible only to mutual friends).
  • Remember your appearance preferences across sessions.

We do not sell, share, or use your data for advertising.

Data storage

WatchList is a self-hostable application. In the default self-hosted configuration, all data is stored in a local SQLite database file on the host server. In the hosted configuration, data is stored in Turso (a libSQL-compatible database). No data leaves the configured database provider.

Appearance preferences (theme, UI style, custom CSS) are stored exclusively in your browser's localStorage and are never sent to the server.

Third-party APIs

WatchList uses the TMDB (The Movie Database) API to retrieve movie and TV show metadata. When you search for or view a title, a request is made to TMDB on your behalf. TMDB's own privacy policy governs those requests. No personally identifiable information is sent to TMDB.

Cookies and sessions

We use a single HTTP-only, secure cookie (wl_session) to maintain your login session. No third-party tracking cookies are used.

Data retention and deletion

Your data is retained for as long as your account exists. You may request account deletion at any time by contacting the administrator of the instance you are using. Upon deletion, all associated data — watch history, liked media, shared lists, and friend connections — is permanently removed.

Contact

Questions or concerns about your privacy? Reach out to the administrator of your WatchList instance. For issues with the open-source project, open a discussion on the project repository.