Privacy Policy

1. Information We Collect

When you create a Boss Coach account, we collect your email address, display name, and onboarding profile information (such as your role, management experience level, team size, and leadership development goals). During coaching sessions, we collect the messages you exchange with Cedric, your AI executive coach, as well as session metadata including topics discussed, action items identified, and progress assessments.

We also collect standard usage data such as pages visited, features used, and session duration to improve the service.

2. How We Use Your Information

Your information is used to personalize your 4-week leadership bootcamp curriculum, provide contextual AI coaching sessions, track your progress across competency areas, generate session summaries and growth reports, and process payments. We do not sell your personal information to third parties.

3. Third-Party Data Processing

To provide our services, we share certain data with the following third-party processors:

• Anthropic (Claude API) -- Your coaching conversation messages are sent to Anthropic's Claude AI models to generate coaching responses. Anthropic processes this data according to their API data usage policy and does not use API inputs to train their models.
• Stripe -- Payment information (card details, billing address) is processed directly by Stripe. We do not store your full payment card information on our servers.
• Supabase -- Your account data, coaching session records, curriculum progress, and onboarding profile are stored in a Supabase-hosted PostgreSQL database with row-level security policies ensuring you can only access your own data.
• Vercel -- Our application is hosted on Vercel, which processes HTTP requests and may log IP addresses and request metadata for security and performance purposes.

4. Data Retention

Your coaching session data, including conversation history and session summaries, is retained for as long as your account is active to enable ongoing coaching continuity and progress tracking. If you delete your account, we will remove your personal data within 30 days, except where retention is required by law or for legitimate business purposes such as fraud prevention.

5. Your Rights

You have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your account and associated data
• Export your coaching session data
• Withdraw consent for data processing at any time

To exercise any of these rights, contact us at privacy@bosscoach.ai.

6. Cookies

Boss Coach uses essential cookies for authentication and session management. We use Supabase authentication cookies to maintain your login session. We do not use third-party tracking cookies or advertising cookies.

7. Security

We implement industry-standard security measures including encrypted data transmission (TLS/HTTPS), row-level security policies on our database, and secure authentication via Supabase Auth. However, no method of electronic transmission or storage is 100% secure, and we cannot guarantee absolute security.

8. Changes to This Policy

We may update this privacy policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the "Last updated" date below.

9. Contact

If you have questions about this privacy policy or our data practices, contact us at privacy@bosscoach.ai.