Privacy Policy

Board Whisper (“we”, “us”) is the controller of personal data we collect through the app. For general questions reach us at [email protected]. For data protection requests (access, correction, deletion, export, objection) please use the dedicated address [email protected].

• Account data: first name, last name, email, password (hashed), date of birth, country, optional city, primary discipline, stance, per‑discipline level.
• Consent records: the time and version of the Terms and Privacy Policy you accepted.
• Riding clips: short videos you upload for AI analysis, and the AI feedback generated from them (overall score, sub‑scores, priority focus, written notes).
• Coach chat transcripts: the messages you and the AI coach exchange about a clip, plus the AI’s structured analysis and summary for that session.
• Waitlist entries: the email address and discipline you submit when joining a waitlist for upcoming features, plus the timestamp.
• Usage & security data: session timestamps, login attempts (email + IP + outcome, used for rate‑limiting), basic device/browser information, daily counters of uploads and coach‑chat messages, an approximate AI cost per request, the model name, and a random per‑browser identifier (bw_anon_id) we store in your browser to apply fair‑use limits without relying solely on your IP address.
• Anonymous “try a clip” uploads: a temporary clip, the IP address that submitted it, the per‑browser identifier above, an opaque client token, and the chat messages exchanged in that anonymous session, used only to deliver the trial and enforce its limits.
• Local storage on your device: your auth session, your selected theme, and a flag confirming you have dismissed the cookie notice (key bw.cookieNotice.v1).

We do not collect special categories of data (health, religion, etc.) and we do not run face‑recognition on your clips.

• To provide the service - analyse your clips and return coaching feedback. Legal basis: performance of the contract you accepted at signup (GDPR Art. 6(1)(b)).
• To verify you are 16+ - we calculate your age from your date of birth at signup and reject the account if you are under 16. Legal basis: legal obligation and legitimate interest in protecting minors (Art. 6(1)(c) and (f)).
• To keep the service secure - rate‑limiting logins and anonymous uploads. Legal basis: legitimate interest (Art. 6(1)(f)).
• To run the waitlist - store your email and discipline so we can notify you when the related feature is ready. Legal basis: your consent (Art. 6(1)(a)), withdrawable at any time.
• To send product update emails - when you’ve joined a waitlist or opted in. Legal basis: consent (Art. 6(1)(a)). Every such email includes a one‑click unsubscribe link.
• To improve the AI coach - only with aggregated, non‑identifying signals. We do not share your raw clips with third parties to train their models.

Automated decision‑making (Art. 22). The AI coach scores your riding and offers feedback. These outputs are informational coaching only - they do not produce legal or similarly significant effects on you, and we do not use them for profiling, advertising or eligibility decisions.

We use a small number of trusted providers to run Board Whisper. They process data on our instructions only. Our agreement with Lovable governs the chain of sub‑processors below: Lovable contracts with each downstream provider on our behalf and passes the relevant data‑protection terms through to them.

• Lovable (Stockholm, Sweden) - application platform. Provides hosting orchestration and the managed backend, AI, and email pipeline that Board Whisper runs on.
• Supabase (via Lovable Cloud) - database, authentication, and file storage for your clips. EU region.
• Google (Gemini, via Lovable AI Gateway) - generates coaching feedback from your clips. Clips and prompts are sent for inference and are not retained for model training.
• Mailgun / Sinch (via Lovable Cloud) - delivers transactional, auth and waitlist emails sent from [email protected], and reports bounces, complaints and unsubscribes back to us. EU region.
• Cloudflare - DNS, edge security, and inbound email routing for our domain (your reply to [email protected] is forwarded through Cloudflare Email Routing to our mailbox).
• Sentry - error monitoring, with personal identifiers stripped before reports are sent (see §9).

We do not sell or share your personal information, as those terms are defined under the California Consumer Privacy Act (CCPA/CPRA) or any similar law. We do not share your data with advertisers.

Most of our sub‑processors operate within the European Economic Area. Some - notably Google (for AI inference) and Cloudflare - may process data on infrastructure located outside the EEA. Where personal data leaves the EEA we rely on the European Commission's Standard Contractual Clauses and, where the processor is certified, the EU–US Data Privacy Framework, to keep your data protected to EU standards.

• Account data: for as long as your account is active, then deleted within 30 days of closure.
• Riding clips & AI analysis: kept for as long as your account is active, so you can track progress over time. You can delete individual sessions at any time, and all clips are removed when you delete your account.
• Coach chat transcripts: kept for the same lifetime as the related clip, and removed when you delete the session or your account.
• Waitlist entries: kept until the related feature launches plus 12 months, or until you ask us to remove you (whichever comes first).
• Anonymous “try a clip” uploads: no later than 25 hours after upload (a scheduled cleanup runs every 15 minutes and removes both the video file and the related session record).
• Anonymous abuse-prevention records: when you try a clip without an account, we store a short-lived row containing your IP address, a random browser identifier, and the storage path of your clip so we can enforce per-IP and per-browser limits. These rows are kept for 10 days and then automatically deleted. They contain no clip content.
• Login attempt logs: 30 days for security monitoring (email + IP + outcome).
• Consent records: for the lifetime of the account plus 3 years, to demonstrate compliance.

Under GDPR, you can ask us to:

• access the personal data we hold about you;
• correct inaccurate data;
• delete your account and associated data - you can do this yourself from the Profile page (“Delete my account”). When you do, we permanently remove your profile, every uploaded clip, every coach session, and every chat transcript within minutes;
• export your data in a portable format;
• object to or restrict certain processing;
• withdraw consent at any time (for example, unsubscribe from waitlist emails via the one‑click link in the email footer or the /unsubscribe page) - without affecting the lawfulness of processing carried out before the withdrawal.

Email [email protected] and we’ll respond within 30 days. We may extend this period by up to two further months for complex requests, in which case we will tell you within the first 30 days (Art. 12(3) GDPR). You also have the right to lodge a complaint with the data protection authority of the EU country in which you habitually reside.

We use TLS in transit, encrypted storage at rest, hashed passwords, row‑level security on the database, and rate‑limiting on login and anonymous uploads. No system is perfectly secure. If a personal data breach occurs that is likely to result in a risk to your rights, we will notify the competent supervisory authority within 72 hours of becoming aware of it, in line with Art. 33 GDPR, and inform affected users without undue delay.

We use only the cookies and local storage strictly necessary to keep you logged in, remember your theme, and remember that you have dismissed the cookie notice (localStorage key bw.cookieNotice.v1). We don’t use advertising cookies or third‑party analytics that profile you.

We use Sentry (sentry.io) for error monitoring. When the app crashes or hits an unexpected error, Sentry receives a technical report (browser, page URL, stack trace) so we can fix the bug. We strip identifying information such as your email, IP address, cookies, and authorization headers before the report is sent. We do not use Sentry for analytics or profiling.

Board Whisper is not for anyone under 16. We verify age by asking for a date of birth at registration and blocking accounts that do not meet the threshold. We delete any account we discover belongs to a minor. If you believe a child has somehow created an account, email [email protected] and we’ll act immediately.

Transactional emails (signup confirmation, password reset, account notifications) are sent from [email protected] on the basis of our contract with you and are necessary to run your account.

Marketing and waitlist updates (feature launches, product news) are sent only with your prior consent - for example, after you join a waitlist. Every such email includes a one‑click unsubscribe link, and you can also opt out at any time at /unsubscribe or by emailing [email protected]. Unsubscribing does not affect the lawfulness of any processing carried out before your withdrawal.

When we make material changes, we’ll bump the version number and ask you to re‑accept on your next session. The current version is shown at the top of this page.