Privacy Policy

1. Information We Collect

1.1 Information You Provide Directly

When you use our AI business coaching service, we collect:

• Name: To personalize your coaching experience
• Email address: For session continuity and potential follow-up communication
• Business ideas and responses: All messages you send to our AI coach to provide relevant guidance
• Progress metrics: Information about your business activities (rejections, contacts made, sales achieved)

1.2 Automatically Collected Information

• Session data: Session IDs and timestamps to maintain conversation continuity
• Usage analytics: Via Google Analytics to understand how our service is used
• Browser information: Standard web server logs including IP address, browser type, and pages visited

2. How We Use Your Information

We use your personal information for the following purposes:

• Provide coaching services: To deliver personalized AI business coaching and maintain conversation context
• Session management: To allow you to continue conversations across browser sessions
• Service improvement: To analyze usage patterns and improve our coaching algorithms
• Communication: To send important service updates (only when necessary)
• Legal compliance: To comply with legal obligations and protect our rights

2.1 Legal Basis for Processing (GDPR)

• Consent: You provide explicit consent when starting a coaching session
• Legitimate interest: Service improvement and analytics
• Contract performance: To provide the requested coaching service

3. Data Sharing and Third Parties

We share your information with the following third parties:

3.1 Service Providers

• Anthropic: Your messages are processed by Anthropic's Claude AI service to provide coaching responses
• Google Analytics: Anonymous usage data for website analytics
• Web hosting providers: For website operation and data storage

We do not sell, rent, or trade your personal information to third parties for marketing purposes.

4. Data Storage and Security

4.1 Data Storage

• Your conversation data is stored in a secure SQL database on our servers
• Data is stored for the duration necessary to provide ongoing coaching support
• Session data is also stored locally in your browser for continuity

4.2 Security Measures

• Industry-standard encryption for data transmission (HTTPS)
• Secure server infrastructure with access controls
• Regular security updates and monitoring
• Limited access to personal data on a need-to-know basis

5. Your Privacy Rights

5.1 GDPR Rights (EU Residents)

• Right to access: Request a copy of your personal data
• Right to rectification: Correct inaccurate personal data
• Right to erasure: Request deletion of your personal data
• Right to restrict processing: Limit how we use your data
• Right to data portability: Receive your data in a machine-readable format
• Right to object: Object to processing based on legitimate interests
• Right to withdraw consent: Withdraw consent at any time

5.2 CCPA Rights (California Residents)

• Right to know: What personal information we collect and how it's used
• Right to delete: Request deletion of your personal information
• Right to opt-out: Opt-out of the sale of personal information (we don't sell data)
• Right to non-discrimination: Equal service regardless of privacy choices

5.3 LGPD Rights (Brazil Residents)

• Right to confirmation and access: Confirm processing and access your data
• Right to correction: Correct incomplete or inaccurate data
• Right to deletion: Request deletion when legally permissible
• Right to portability: Transfer data to another service provider
• Right to object: Object to processing in certain circumstances

6. Data Retention

We retain your personal information:

• Coaching conversations: For 12 months from your last interaction to allow session continuity
• Analytics data: In aggregated, anonymous form for up to 26 months (Google Analytics default)
• Legal retention: As required by applicable laws and regulations

You can request earlier deletion of your data by contacting us.

7. Cookies and Local Storage

We use the following technologies:

• Local Storage: To save your session ID for conversation continuity
• Google Analytics Cookies: To understand website usage and improve our service
• Essential Cookies: For website functionality and security

You can manage cookies through your browser settings, but this may affect website functionality.

8. International Data Transfers

Your data may be processed in countries other than your residence. When we transfer personal data internationally, we ensure adequate protection through:

• Standard contractual clauses approved by relevant authorities
• Adequacy decisions by the European Commission
• Other appropriate safeguards as required by law

9. Children's Privacy

Our service is not intended for individuals under 16 years of age. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal information from a child under 16, we will take steps to delete such information.

10. Changes to This Privacy Policy

We may update this privacy policy from time to time. We will notify you of any material changes by:

• Posting the updated policy on this page
• Updating the "Last updated" date
• For significant changes, providing notice through our website or email

11. Contact Information

12. Supervisory Authority

You have the right to lodge a complaint with a supervisory authority if you believe we have not handled your personal data in accordance with applicable law. Contact details for supervisory authorities can be found at:

• EU: European Data Protection Board
• California: California Attorney General
• Brazil: ANPD (Autoridade Nacional de Proteção de Dados)