Privacy Policy

Controller: RoastMe (contact: help@roastme.app). This policy describes how we handle personal data when you use our website, app, and email services.

We may process: account and authentication data (e.g. email address from magic-link sign-in); subscription and billing identifiers from Stripe; profile and preference data you enter (e.g. pasted bio, persona choice, locale); generated roast text and related metadata; technical logs (IP, user agent) for security and reliability; and email engagement signals (delivery, opens) from our email provider where available.

We use service providers to run the product, including Supabase (database/auth), Stripe (payments), Anthropic (AI generation), Resend (email), Vercel (hosting), and optional analytics/monitoring you enable in deployment. Processors act on our instructions. AI inputs are sent to Anthropic for inference; refer to Anthropic's data policies for how they handle API traffic.

We retain data as long as your account is active and as needed for legal, tax, and dispute-resolution obligations. You may request deletion of personal data where applicable law applies; some records (e.g. invoices) may be retained where required.

Depending on your region, you may have rights to access, rectify, delete, restrict, or object to certain processing, and to lodge a complaint with a supervisory authority. Contact help@roastme.app to exercise these rights. We will respond within a reasonable timeframe.

We use essential cookies for authentication and locale. Marketing analytics cookies, if any, are described in your deployment's cookie banner configuration.

The Service is not directed to children under 16 (or higher age where required). Do not use the Service if you are below the applicable age.

We may update this policy; the "Last updated" date will change. Material changes may be communicated by email or in-app notice where appropriate.

Privacy questions or requests: help@roastme.app