Privacy Policy

This Privacy Policy explains what personal information Soul2Screen, LLC (“Soul2Screen,” “we,” “us”) collects, how we use it, who we share it with, and the rights you have over it. By using our Services (defined in our Terms of Service), you consent to the practices described below.

1. Information we collect

1.1 Information you give us directly

• Lead-magnet form data. When you request the free playbook or register for the masterclass via /godoc, we collect your email address, your name (if provided), and the source of your request.
• Account information. When you enroll in the Program, we collect your name, email address, and authentication credentials via Supabase.
• Payment information. When you make a purchase, billing details are collected and processed by Stripe. We never see or store full card numbers — only the last four digits, card brand, and transaction metadata.
• Project content. Anything you upload into the Soul2Screen platform — documents, transcripts, photos, video, audio, prompts, worksheet answers, generated deliverables — and the inputs/outputs of any AI features you use.
• Affiliate-program data. If you sign up as an affiliate, we collect your business name, contact information, payment details, and the tracking data associated with your affiliate link.
• Support communications. Anything you send us via email, support form, or in-app chat.

1.2 Information collected automatically

• Usage & device data. Pages viewed, links clicked, time on page, referring URL, screen size, browser type, operating system, and approximate location (derived from IP).
• Cookies & similar technologies. We use first-party and third-party cookies for authentication, analytics, and affiliate-attribution. See Section 5 for details.
• Error & performance telemetry. When something breaks, our error monitor (Sentry) captures a stack trace and limited contextual information so we can fix it.

2. How we use your information

• To deliver the playbook, the masterclass, the Program, and any related Services.
• To create and manage your account and authenticate logins.
• To process payments and prevent fraud.
• To generate AI deliverables you request, by passing your inputs through our AI providers.
• To send you transactional emails (purchase receipts, masterclass details, account notices), and — with your consent — marketing emails.
• To attribute affiliate referrals and pay commissions to our partners.
• To monitor and improve the Services using product analytics and error monitoring.
• To comply with legal obligations and enforce our agreements.

3. Legal bases (EEA / UK)

If you are in the EEA or UK, our legal bases for processing your data are:

• Performance of a contract — to deliver the Program, the playbook, or any other Service you’ve requested.
• Legitimate interests — to operate, secure, and improve the Services; to attribute affiliate referrals; to prevent fraud.
• Consent — for marketing emails and non-essential cookies. You can withdraw consent at any time.
• Legal obligation — to comply with tax, accounting, and other legal requirements.

4. Who we share your information with

We don’t sell your personal information. We share it only with the service providers and partners listed below, and only to the extent needed to deliver the Services:

• Supabase, Inc. — database, authentication, and file storage.
• Vercel Inc. — hosting and web analytics (aggregated, no cross-site tracking).
• Stripe, Inc. — payments and fraud prevention.
• PostHog Inc. — product analytics (pageviews, feature usage, funnel tracking).
• Sentry / Functional Software, Inc. — error monitoring and performance telemetry.
• AI model providers (currently including Anthropic and OpenAI) — to process the inputs you submit to the Soul2Screen platform and return generated deliverables. We select providers that do not train on customer data by default.
• Email & SMS providers — to send transactional and (where you’ve consented) marketing communications.
• Affiliate-tracking partners — to attribute referrals from our affiliate program.
• Legal, financial, and professional advisors — only as needed and under confidentiality.
• Authorities or counterparties — when required by law, subpoena, or legal process, or in connection with a merger, acquisition, or sale of assets.

5. Cookies & similar technologies

We use a small number of cookies and similar technologies for three purposes:

• Strictly necessary. Authentication, session, and security. These cannot be disabled without breaking the Services.
• Analytics. PostHog and Vercel Analytics, used to understand how the Services are used.
• Affiliate attribution. A first-party cookie that records which affiliate referred you, used for up to 180 days. See our Affiliate Program Terms for details.

You can disable cookies in your browser settings, but parts of the Services will not function correctly if you do.

6. How long we keep your information

We keep personal information only as long as we need it for the purposes set out in this Policy or as required by law. Typical periods:

• Lead-magnet records: as long as you remain on our marketing list, plus a reasonable archival period after unsubscribe.
• Account & project data: for the life of your account, plus a 12-month archival period after closure.
• Payment records: as required by applicable tax and accounting laws (typically 7 years).
• Affiliate-program records: as required to administer commissions and comply with tax law.
• Error & analytics data: typically de-identified or aggregated over time; raw events retained for up to 24 months.

7. Your rights

Depending on where you live, you may have the right to access, correct, delete, port, or restrict our processing of your personal information, and to object to processing based on legitimate interests. EEA/UK residents also have the right to lodge a complaint with a supervisory authority.

California residents have additional rights under the CCPA/CPRA, including the right to know what categories of personal information we collect, the right to delete, the right to correct, and the right to opt out of “sharing” for cross-context behavioral advertising. We do not engage in such sharing.

To exercise any of these rights, email privacy@soul2screen.com from the email address associated with your account. We may need to verify your identity before fulfilling certain requests.

8. How we protect your information

We use industry-standard technical and organizational safeguards including encryption in transit (TLS), encryption at rest, role-based access controls, and routine security review. No system is perfectly secure — but we take this seriously, and we’ll notify affected users promptly if we ever experience a breach involving personal information.

9. Children

The Services are not directed to anyone under 18, and we do not knowingly collect personal information from children. If you believe a child has provided us information, contact us and we will delete it.

10. International transfers

Our service providers are located primarily in the United States. If you access the Services from outside the U.S., your information will be transferred to and processed in the U.S. and other jurisdictions that may have different data-protection laws than yours. Where required, we rely on Standard Contractual Clauses or other lawful transfer mechanisms.

11. Changes to this policy

We may update this Policy. Material changes will be announced via the site or by email. The “Last updated” date at the top reflects the most recent revision.

12. Contact

Questions, requests, or complaints? privacy@soul2screen.com