M
SocialSocialAll policies
← All policies

Privacy Policy

Effective date: [EFFECTIVE DATE] Last updated: [EFFECTIVE DATE]

This Privacy Policy describes how [COMPANY NAME] ("[COMPANY SHORT]," "we," "us," or "our") collects, uses, discloses, and protects information about you when you use the Social application, website at [WEBSITE URL], and related services (collectively, the "Service").

By using the Service you agree to the practices described here. If you do not agree, do not use the Service.

1. Who we are

The Service is operated by [COMPANY NAME], located at [BUSINESS ADDRESS]. For privacy questions or to exercise your rights, contact us at [PRIVACY EMAIL].

For users in the EEA, UK, or Switzerland, [COMPANY NAME] is the data controller of your personal data except where we act as a processor on your behalf (see Section 9).

2. A note about the conversations you analyze

Social is a communication-coaching tool. Its core function involves recordings, audio uploads, and transcripts of real conversations that you choose to provide. These materials can contain highly sensitive information about you and about other people.

  • You are responsible for having the legal right to record, upload, and analyze any

conversation you submit. See our separate Recording & Consent Agreement.

  • Other participants in a conversation have privacy interests too. Only submit content you

are lawfully entitled to submit.

  • We process this content solely to provide the coaching features you request.

3. Information we collect

3.1 Information you provide

  • Account data: email address, password (stored only as a hash), authentication

method (password, magic link, or Google sign-in), and display name.

  • Profile & coaching settings: chosen coach persona, goals, focus areas, and

self-portrait content you generate.

  • Conversation content: audio recordings, uploaded audio files, pasted or typed

transcripts, narrated accounts of conversations, and any context notes you add.

  • People/contacts you create: names, relationships, context, aliases, and optional

photos of people you describe in the app ("speakers").

  • Coach chat messages you send to the in-app coach.
  • Payment data: when you subscribe, our payment processor (Stripe) collects your

payment method. We do not store full card numbers; we receive limited billing metadata (e.g., subscription status, last four digits, billing period).

  • Communications you send to support.

3.2 Information generated by the Service

  • AI analysis outputs: scores across our six dimensions (clarity, empathy, assertion,

listening, brevity, curiosity), summaries, "coach take" feedback, moments, what-if replays, follow-ups, and commitments derived from your content.

  • Usage & entitlement data: sessions used, chat usage, cost accounting, plan limits,

and boost purchases.

  • Briefings: daily morning/evening coaching summaries we generate for you.

3.3 Information collected automatically

  • Device & log data: IP address, browser/device type, operating system, app version,

pages or screens viewed, and timestamps.

  • Cookies and similar technologies: see our Cookie Policy. We use a strictly

necessary authentication cookie (social-token) and, for admin impersonation, a short-lived demo cookie (social-demo).

We do not knowingly collect information from children. See Section 11.

4. How we use information

We use information to:

  • Provide, operate, and maintain the Service, including transcription and AI analysis;
  • Generate coaching feedback, briefings, replays, follow-ups, and progress tracking;
  • Authenticate you and keep your account secure;
  • Process subscriptions, trials, boosts, and billing;
  • Enforce usage limits and our cost/spend controls;
  • Respond to your requests and provide support;
  • Detect, prevent, and address fraud, abuse, and security incidents;
  • Comply with legal obligations and enforce our Terms.

4.1 Legal bases (EEA/UK users)

We rely on: performance of a contract (to deliver the Service you request); consent (for recording/processing conversation content and certain communications, which you may withdraw); legitimate interests (security, fraud prevention, service improvement, balanced against your rights); and legal obligation (tax, accounting, responding to lawful requests).

5. How AI is used

We use third-party AI models from Anthropic (Claude) to analyze your conversation content and generate coaching output, and Deepgram to transcribe audio. Your content is transmitted to these providers solely to perform these functions. We do not use your conversation content to train our own models. Our AI vendors process data under their own terms and applicable data-protection commitments; see data-processing-and-subprocessors.md. AI outputs may be inaccurate — see our AI Disclaimer.

6. How we share information

We do not sell your personal information. We share it only as follows:

  • Service providers / sub-processors who perform functions on our behalf

(AI analysis, transcription, payments, email, hosting). See data-processing-and-subprocessors.md for the current list.

  • Legal & safety: to comply with law, lawful requests, or legal process; to enforce

our agreements; or to protect the rights, safety, and property of you, us, or others.

  • Business transfers: in connection with a merger, acquisition, financing, or sale of

assets, subject to this Policy.

  • With your direction: when you choose to export, share, or send content (e.g., a

drafted follow-up message).

7. Data retention

We retain personal data for as long as your account is active and as needed to provide the Service, then for the periods described in data-retention-and-deletion.md (for example, to meet legal, tax, and security obligations). You can delete individual sessions in the app and request full account deletion at any time (see Section 8).

8. Your choices and rights

Depending on where you live, you may have rights to access, correct, delete, port, or restrict processing of your personal data, and to object to certain processing or withdraw consent. See data-rights-addendum.md for GDPR (EEA/UK) and CCPA/CPRA (California) details and how to submit a request. You can also:

  • Delete individual conversations from the Service at any time;
  • Update your profile and settings in-app;
  • Request export or deletion of your account by emailing [PRIVACY EMAIL].

We will not discriminate against you for exercising these rights.

9. When we act as a processor

To the extent you submit conversation content containing other individuals' personal data, you act as the controller of that content and [COMPANY SHORT] processes it on your behalf and per your instructions to provide the Service. You are responsible for having a lawful basis (including any required consents) for that processing.

10. International transfers

We and our service providers may process and store information in countries other than yours, including the United States. Where required, we use appropriate safeguards (such as the EU Standard Contractual Clauses) for cross-border transfers. Contact [PRIVACY EMAIL] for more information.

11. Children's privacy

The Service is intended only for adults aged 18 and over. It is not directed to minors, and we do not knowingly collect personal data from anyone under 18. This is consistent with the age requirement in the Terms of Service. If you believe a minor has provided us personal data, contact [PRIVACY EMAIL] and we will delete it.

12. Security

We use technical and organizational measures designed to protect personal data, including encryption in transit, hashed passwords, scoped authentication tokens, and access controls. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.

13. Third-party links and services

The Service may link to third-party sites or integrate third-party services. Their privacy practices are governed by their own policies, not this one.

14. Changes to this Policy

We may update this Policy from time to time. We will post the updated version with a new "Last updated" date and, where required, provide additional notice. Continued use after changes take effect constitutes acceptance.

15. Contact us

[COMPANY NAME] [BUSINESS ADDRESS] Privacy: [PRIVACY EMAIL] · Support: [SUPPORT EMAIL]