Does Hopscotch require an account?

No. Hopscotch does not require an account for your card wallet — install and start scanning. An optional account is only needed if you want offers and rewards to sync across devices when our business tier ships.

Yes. The consumer app is completely free — no subscription, no in-app purchases, no third-party ads.

Does Hopscotch collect or share my location data?

No. Location is processed locally on your device using iOS and Android geofencing. Hopscotch never transmits your location to any server.

Is Hopscotch a Stocard alternative?

Yes. Hopscotch stores all your loyalty cards locally — no account, no third-party ads, no cloud sync of card data — a fundamentally different approach from cloud-based wallets like Stocard or BNPL apps like Klarna.

Does Hopscotch work on Apple Watch and Wear OS?

Yes. Hopscotch ships native companion apps for both Apple Watch (watchOS 10+) and Wear OS (3+), so you can show any card's barcode at checkout from your wrist.

Hopscotch — Loyalty Card Wallet. Account Optional. Ad-Free.

Why Hopscotch

Built differently, on purpose.

Most loyalty card wallets are built around ads, accounts, or upsells. Hopscotch isn't.

Feature comparison between Hopscotch, ad-supported card wallets, and buy-now-pay-later apps.
Feature	Hopscotch	Ad-supported wallets ^*	BNPL apps ^**
Free to use
No account required
No ads or sponsored offers
No behavioral tracking
Card data stays on your device
Auto-surfaces card when you arrive		basic reminders
Apple Wallet & Google Wallet pass export		limited
Apple Watch app
Wear OS app
Home screen widget on iPhone & Android		limited

Hopscotch vs. Ad-supported wallets ^*

Free to use

No account required

No third-party ads

Anonymous-only

Data on device

Auto-surface at store

Apple Watch app

Wear OS app

Hopscotch vs. BNPL apps ^**

Free to use

No account required

No third-party ads

Anonymous-only

Data on device

Auto-surface at store

* Examples include Stocard and similar loyalty card apps that monetize through partner offers and behavioral data.
** Examples include Klarna and similar buy-now-pay-later apps that have added loyalty card storage.
Comparison reflects publicly documented features as of May 2026. Competitor capabilities may change.

How data is used now & in the future

Our views on privacy.

Most apps tell you "we respect your privacy" and leave it there. We'd rather show you exactly what we do and don't do at the architectural level.

Today

How Hopscotch works today

What we'll never do

Sell your data to anyone, ever
Show you ads from third parties
Track you across other apps or websites
Build a profile of where you shop or what you buy
Run any third-party code in the app — zero external dependencies, no analytics SDKs, no crash reporters, no ad networks
Read your contacts, photos, or anything we don't need
Charge for the consumer app

That's the entire list. Not your location history, not your purchases, not your behavior across the app.

What you control

Location access — needed for geofencing. Processed entirely on your device — we never see your real-time location
Notifications — local only, triggered on your device when you cross a geofence you set
Camera — used only when you scan a card or attach a reference photo. Photos stay on your device with location metadata stripped before saving
iCloud / Google Drive backup of your cards — managed and encrypted by Apple or Google. We never see your backup.

What our server actually knows

Nothing, today. When you tap "Add to Apple Wallet" or "Add to Google Wallet," your card data is sent to our pass server, used to generate the pass, and immediately discarded.
Transient server error logs — rotated automatically, not retained beyond a few days, no behavioral data attached
App Store + Play Console stats — country / metro level, anonymized to us by Apple and Google, only if you've opted in via your device settings

Third-party hosting disclosures

Vercel (wallet-pass host): Standard HTTP request data (IP, timestamp, path) is captured for debugging. We don't archive or analyze it; it auto-expires per Vercel's retention.
Cloudflare Pages (website): hopscotch.city runs on Cloudflare. They provide privacy-preserving aggregate web analytics — page views, country/region, referrers — visible to us in their dashboard. No cookies, no fingerprints, no per-user identifiers.

Where your data lives today

Your cards, locations, photos, and settings are stored on your phone — not our server. To make sure you don't lose them if you change devices:

On iPhone: If you have iCloud Backup enabled, Hopscotch is included by default. Apple encrypts your backup; we never see it.
On Android: Google's Auto Backup to Google Drive does the same. Google encrypts; we never see it.

Coming next

Opt-in offers and rewards from businesses

When this ships, businesses whose cards you've added will be able to send you deals and reward updates — but only if you turn it on, per business. Hopscotch stays free for you. Here's the architecture we're designing toward.

What you'll control

Account — optional, only required for opt-in offers and rewards. Lets us and the business help if something goes wrong with an offer, punch, or reward.
Opt-in offers and rewards from businesses whose cards you've added — off by default, on per-card
Push notifications from each business you opt into — per-business toggle
Your card library stays on your device — backup is still via iCloud or Google Drive. No account needed for your cards to be safe.

Your choice, your data. If you don't turn on opt-in offers, there's nothing to track. If you do, we track the bare minimum to make them work.

What our server will know

Which businesses you opted into offers from — so they can reach you
Your reward progress per business — so "8 of 10 punches" stays consistent wherever you log in
Auth / session tokens so we know it's you logging in
Your card library is never stored on our server — it lives on your device. The account only carries the opt-in and reward state above.

Push notification disclosures

Apple APNs / Google FCM: When we send you an opt-in offer, Apple or Google handle delivery and see the device token + timestamp. We hand off and don't see anything beyond a send acknowledgement.

How we'll protect against abuse

Account sign-up velocity — catches bot-created accounts and fake businesses
Punch redemption patterns — catches impossible scenarios (10 punches in 10 seconds across 5 cities)
Business verification data — name, address, payment method (Stripe handles payments; we never see card numbers)
User abuse reports — when you tap "Report this notification" or "Report this business," we review the issue

Trust and safety only. Never shared with businesses about specific users. Never used to profile you. Retained 90 days, then deleted.

End-to-end encrypted account data

When the account ships for opt-in offers and rewards, here's the architecture we're designing toward:

Your opt-in choices and reward progress are encrypted on your device using keys derived from your password — before they ever reach our server
What we store is encrypted — only your devices can decrypt it.
We can never build a cross-business profile of your behavior or be compelled to share what we don't have — we don't hold the keys.

Your card library is never stored on our server — it lives on your device, backed up via iCloud or Google Drive. (Card data only transits our pass server briefly when you tap Add to Wallet, then gets discarded.)

Last updated May 2026 — subject to change before shipping.

This is the architecture, not the marketing. · Read the full privacy policy →

Your loyalty cards. Right place, right time.

It shows up when you show up.

Set it once. Skip the fumble forever.

Scan your card

Drop a pin

Walk in. It's there.

Set it once. Never think about it again.

Native on both. Compromised on neither.

Apple Wallet

Apple Watch

Widgets

Google Wallet

Wear OS

Home Screen Widgets