Privacy

Your creative journey is personal. Here's how we treat your data:

Your conversations and reflections: The free-text responses you type during the experience (memories, project descriptions, chat messages) are sent to Anthropic's AI to personalize your experience in real time, but they are not stored on our servers unless you choose to save your journey (see below). Your conversations are not saved after your session ends unless you opt in.

What we do collect: We store anonymous, non-identifying response patterns (like which creative medium you chose or which fear resonated) in a database hosted in the United States via Supabase. No free-text answers are included in this collection—only structured selections. If you leave a message for future visitors, that message is stored and may be shown to others after manual review. If you provide your email for a reminder, follow-up nudge, or community check-in, we store your email along with the context you provided (such as your commitment, core reason, project details, and relevant selections) so we can personalize the message. For forge follow-ups, this includes your project name, description, scope, check-in status, and day-one actions so we can remind you what you committed to. Emails are used only for the purpose you signed up for and are never shared or used for marketing.

AI: This experience uses Anthropic's Claude to generate personalized reflections, power the chat mode, and moderate community messages. Your inputs are processed by Anthropic's API in real time. Anthropic does not train on this data, though they may retain API inputs for up to 30 days for trust and safety purposes per their terms. We log each AI request with a one-way hash of your IP and email (not the originals), along with the model used and token count, so we can monitor costs and detect abuse. This log is never used to identify you personally. See Anthropic's privacy policy for details.

Guided sessions: If you take a journey through a guide or facilitator's room, your guide can see the structured choices you made during the experience — things like which creative medium you chose, what fear resonated, what permission you needed, your commitment, and your confidence rating. Your guide cannot see your AI conversation. If a summary of your conversation was generated, you'll be asked whether you'd like to share it with your guide before your journey is saved. You can change this decision at any time from your saved journey page. AI-powered session preparation for your guide uses the same boundary — it only sees what you've chosen to share. Facilitators can see anonymous, aggregate patterns across room participants (like the most common fears or mediums chosen) but cannot see individual journeys.

Analytics: We use Plausible, a privacy-focused analytics tool. It collects no personal data, uses no cookies, and does not track you across the web. We track anonymous usage patterns like which journeys are most popular, where people drop off, and which selections are most common (e.g., creative medium, obstacle type). None of this is tied to you as an individual.

Rate limiting: To prevent abuse, our server functions limit request frequency using a one-way hash of your IP address — the actual IP is not stored. A daily request count tied to this hash is kept in our database and automatically purged after two days. This data is never associated with your journey, your email, or any other information you provide — it exists solely to prevent automated abuse.

Feedback survey: If you fill out the optional feedback survey at the end of a journey, your responses (like your rating and what stood out) are stored to help us improve the experience. After submitting feedback, you may optionally provide your email if you'd like to share more about your creative experience in a personal conversation. Your email is stored solely for that purpose.

Third-party services: We use the following services to operate this experience. Your data is shared with them only as needed to provide the functionality described above: Supabase (database hosting, United States), Anthropic (AI processing), Resend (email delivery for reminders, follow-ups, and check-ins), Plausible (privacy-focused analytics), and Netlify (hosting and serverless functions). None of these services receive your data for marketing or advertising purposes.

What we don't do: We don't sell your data. We don't track you across the web. We don't run ads. We don't send marketing emails.

Local storage: We use your browser's local storage to save your progress if you leave mid-journey (cleared after 24 hours). If you complete a journey, your generated manifesto, letter, and forged project history are saved locally so you can see them if you return. This data stays on your device and is automatically cleared after 90 days of inactivity, or sooner if you choose to clear it. No cookies are used. You can clear local data anytime using the "clear my data from this device" button at the bottom of any page, or in your browser settings. Clearing local data does not affect any journeys you chose to save to our server—you can recover your personalized experience anytime by signing in with your email at /journey.

Saving your journey: At the end of an experience, you can choose to save your journey so you can revisit it later — from any device, anytime. Your journey is also automatically saved if you request a reminder, so we can include a link back to what you found. In either case, your free-text responses and AI-generated reflections (your manifesto, letter, chat responses, and other personalized content) are stored in our database with a unique private link. Anyone with this link can view your journey, so treat it like a password — don't share it with anyone you wouldn't share your reflections with. Saved journeys expire after two years of inactivity — every time you open or save a journey, the clock resets so anything you're still engaging with stays available.

Finding your journeys: You can access all your saved journeys by entering your email at /journey. We'll send you a secure sign-in link (valid for 30 days, single use) that opens all journeys associated with your email. If it expires, just request a new one — your journeys are always saved. When you email yourself a journey, we store a one-way hash of your email address (not the email itself) alongside that journey so it can be found later. If you've saved multiple journeys over time, they are all linked to the same email hash so a single sign-in shows your full history. Signing in also restores your personalized return experience (welcome-back screen, creative context) if it was cleared or if you're on a new device.

Data retention: Reminder emails and forge follow-up nudges are one-time messages — once sent, your email address is removed from the record 90 days after the message is delivered. Any AI-generated content stored alongside your email (such as personalized day-one actions) is also removed at that time. The anonymous parts of the record (like your core reason and project name) are kept to help us understand how people use the experience. Monthly creative check-in subscriptions remain active until you unsubscribe using the link in any check-in email; your email is removed 90 days after you unsubscribe. Community insight subscriptions follow the same 90-day removal after unsubscribing. Rate-limiting records are purged after two days. AI usage logs are retained for cost monitoring but contain only hashed identifiers, not personal information. Saved journeys are automatically deleted after two years of inactivity — each time you open or save a journey, its expiry (and the expiry of every other journey tied to your email) resets to two years from that activity. Anonymous snapshot data is retained indefinitely in aggregate form.

Your control: You can permanently erase everything yourself at any time: sign in at /journey, scroll to the bottom of your journey list, and use the delete all my data link. We'll send a confirmation email; once you click through and confirm, every record tied to your email is deleted from our servers and cannot be recovered. If you'd rather we handle it, you can also email us and we'll take care of it within 30 days.

Last updated: April 2026

See also: Terms of Service