Privacy Policy

• Account information: email address, name (if provided), authentication identifiers from sign-in providers (e.g., Google OAuth ID), and a password hash if you use email-password sign-in (we do not store passwords in plaintext).
• Profile and preferences: any information you add to your profile, including display name, time zone, and notification preferences.
• Chat content: the messages, questions, financial details, and personal narratives you submit to the AI counselor and the AI's responses (collectively, “Chat Content”). Chat Content may include sensitive financial and personal information that you choose to share, such as income, debt, savings, employment situation, family circumstances, and emotional or psychological context related to money.
• Subscription and payment metadata: plan tier, subscription status, renewal date, billing email. Full payment card details are collected and stored by Stripe, not by us; we receive only metadata (e.g., last four digits, card brand, billing zip).
• Communications: the contents of emails, support requests, and any feedback you send us.
• Optional verification information: if we ask for phone verification or similar to address abuse, we collect that information for that purpose.

When you use the Service, we (and our service providers) automatically collect:

• Device and browser information: browser type and version, operating system, device type, screen size, language, time zone.
• Usage and event information: pages and screens viewed, features used, buttons clicked, message counts, daily-cap status, trial state, conversion funnel events, session duration, error logs.
• Network information: IP address, approximate geolocation derived from IP (city/region level), referrer URL, ISP information.
• Cookies, local storage, and similar technologies: see Section 7.
• Session replay (limited): during the signed-out → signup conversion flow, we use PostHog session replay to understand landing-page friction. Replays exclude all chat content and are sampled. You can opt out as described in Section 7.

• Sign-in providers (e.g., Google): when you sign in via OAuth, we receive your email, name, and a unique identifier from the provider, per the permissions you grant.
• Stripe: subscription events, payment success or failure, subscription status, customer ID, billing-country and tax metadata. Stripe also performs fraud screening on your transactions on our behalf.
• Anti-abuse signals: in limited cases, we may receive risk scores from anti-abuse providers (e.g., to detect disposable emails or trial-farming patterns).

The Service is for users 18 and over. We do not knowingly collect personal information from anyone under 18 (or under 13 in any case). See Section 11.

• Create and authenticate your account;
• Operate the chat experience: pass your messages to our AI provider, return responses, persist your conversation history so you can continue across sessions;
• Enforce trial limits, daily caps, subscription state, and access controls;
• Process subscriptions and payments via Stripe;
• Send transactional emails (magic links, payment confirmations, daily-cap notices, paywall reminders, drip campaigns during the trial).

• Monitor performance, diagnose errors, and prevent fraud, abuse, and security incidents;
• Detect and prevent multi-account abuse, trial farming, and policy violations;
• Conduct internal analytics on de-identified or aggregated usage data to understand product performance and prioritize improvements (e.g., funnel conversion, daily-cap effects on retention);
• Develop new features.

• Respond to support requests;
• Send service announcements (changes to Terms, policies, pricing, security incidents);
• Send marketing communications, where permitted, with the ability to unsubscribe at any time.

• Comply with legal obligations, court orders, and lawful requests;
• Enforce our Terms of Service;
• Protect the rights, property, and safety of users, the Company, and the public, including responding to safety signals indicating self-harm or imminent danger (see Section 9 of the Terms of Service).

For any other purpose disclosed at the time of collection or with your consent.

We do not use your Chat Content to train, fine-tune, or develop foundation AI models, and we do not authorize our AI provider to do so on our behalf.

The AI underlying the Service is provided by Anthropic, PBC (“Anthropic”) via the Anthropic API. We use the API under commercial terms that:

• Treat your Chat Content as Customer Data (Anthropic's contractual category for API customer data);
• Exclude Customer Data from being used to train Anthropic's models;
• Limit Anthropic's use of Customer Data to providing the API service, security, abuse prevention, and complying with law.

Anthropic may retain Customer Data for a limited period for operational, abuse-prevention, and legal-compliance purposes. Their full policy is available at anthropic.com/legal/privacy and the API-specific terms at anthropic.com/legal/commercial-terms. We will update this policy if we change AI providers or if material terms change.

To generate a response, we send Anthropic the system prompt, your conversation history (typically the recent portion needed for context), and your latest message. Anthropic returns a response. Caching mechanisms used to reduce cost and latency operate on the same data and follow the same restrictions.

In limited cases — for example, to investigate a safety concern, debug an error, address an abuse report, or respond to a legal request — authorized personnel may review specific Chat Content. Such reviews are logged, restricted to the minimum necessary, and conducted under confidentiality.

We may use de-identified or aggregated information derived from Chat Content (for example, “X% of trial users hit the daily cap on day 3”) for analytics and product improvement. De-identified data does not identify you and is not re-identified.

The Service generates AI-driven counseling responses, but it does not make automated decisions that produce legal or similarly significant effects about you (e.g., it does not deny credit, set insurance rates, or determine employment eligibility). Where state law provides a right to opt out of profiling for such decisions, that right does not apply because we do not engage in such profiling.

We share personal information with vendors that help us operate the Service, under contracts that limit their use to providing services to us:

We will keep this list current as our infrastructure evolves.

We may disclose personal information if we believe in good faith that disclosure is necessary to: (a) comply with applicable law, regulation, legal process, or governmental request (including subpoenas, court orders, and national-security demands to the extent required by law); (b) enforce our Terms of Service; (c) detect, prevent, or address fraud, security, or technical issues; or (d) protect the rights, property, or safety of any person, including responding to credible threats of self-harm or harm to others.

If we are involved in a merger, acquisition, financing, reorganization, bankruptcy, or sale of all or part of our assets, personal information may be transferred as part of that transaction, subject to standard confidentiality protections and continuing obligations under this Policy or a successor policy with materially equivalent protections.

We may share information with your consent or at your direction (for example, if you choose to share Service output on social media).

We may share aggregated or de-identified information that cannot reasonably be used to identify you, including for marketing, research, or industry analysis.

• Strictly necessary: sign-in, authentication tokens, CSRF protection, fraud prevention. Required for the Service to function.
• Functional: preferences, time zone, recent state.
• Analytics: PostHog, used to measure usage and improve the Service. Includes a sampled session replay on the signed-out signup flow only; chat content is excluded.

We do not use third-party advertising cookies and do not participate in cross-context behavioral advertising.

You can control cookies through your browser settings. If you block strictly necessary cookies, the Service may not work. You may also opt out of analytics:

• Global Privacy Control (GPC): we honor GPC signals as an opt-out of analytics that may otherwise be construed as “sharing” or “selling” under state law.
• In-product: if available, you can adjust analytics preferences in account settings.

You can exercise most rights directly in your account settings (export, delete, communication preferences). Otherwise, email justin@justinhuynh.com with the subject “PRIVACY REQUEST” and a description of your request. We will verify your identity (typically by confirming control of your account email) before fulfilling sensitive requests, and respond within the timeframe required by applicable law (generally 45 days, with one 45-day extension if reasonably necessary).

You may use an authorized agent to submit a request. We will require written proof of authorization and may verify your identity directly.

We will not deny, charge different prices, or provide a different level of service because you exercised a privacy right, except as permitted by law.

If you are a California resident, the California Consumer Privacy Act, as amended by the California Privacy Rights Act (together, “CCPA”), provides additional rights.

Categories of personal information collected (last 12 months): identifiers (email, account ID, IP address); customer records (name, email, billing metadata); commercial information (subscription status, transaction history); internet activity (usage logs, page views, click events); geolocation (approximate, derived from IP); inferences (drawn from usage to improve the Service); and sensitive personal information in the form of account login credentials and any sensitive financial or personal details you choose to include in Chat Content.

Sources: you, your device and browser, our service providers (Stripe, Supabase, PostHog, Cloudflare), and OAuth sign-in providers.

Business or commercial purposes: providing the Service, security and abuse prevention, analytics, billing, communications, legal compliance, and the other purposes in Section 3.

Categories of third parties with whom we share: the service providers in Section 5.1; legal and government recipients per Section 5.2.

No sale, no share for cross-context behavioral advertising. We do not sell personal information and do not share it for cross-context behavioral advertising. We honor Global Privacy Control signals.

Sensitive Personal Information. You may have the right to limit our use of sensitive personal information to what is reasonably necessary to provide the Service. We already limit our use of such information to providing the Service and the related purposes in Section 3, so a limit request will not change our practices, but you may submit one anyway.

Your CCPA rights: know/access, delete, correct, portability, opt-out of sale or share (we do neither, but the right is acknowledged), limit use of sensitive personal information, and non-discrimination. Submit requests via Section 9.1. If we deny a request, you may appeal by replying to our response.

Shine the Light: California Civil Code § 1798.83 permits California residents to request information about personal information disclosed to third parties for direct marketing purposes. We do not disclose personal information to third parties for their direct marketing.

Residents of states with comprehensive privacy laws — including Virginia (VCDPA), Colorado (CPA), Connecticut (CTDPA), Utah (UCPA), Texas (TDPSA), Oregon (OCPA), Montana (MCDPA), Iowa, Tennessee, Indiana, Florida, Delaware, New Jersey, New Hampshire, Minnesota, Maryland, Rhode Island, and others as enacted — generally have rights to access, correct, delete, port, and opt out of certain processing, similar to those described in Section 9. You may also have a right to appeal a denied request, which you can do by replying to our response.

We do not engage in targeted advertising as defined under those laws, do not sell personal information, and do not engage in profiling in furtherance of decisions that produce legal or similarly significant effects.

Nevada residents may direct us not to make certain “sales” of personal information. We do not currently sell personal information as defined under Nevada law, but you may submit a request via the contact in Section 13.