Privacy Policy

1. What we collect

When you create a SmartSound account we collect:

• Account data — email address, display name, hashed password (handled by our authentication provider).
• Wellness inputs you choose to enter — onboarding goals, mood, sleep hours, stress, optional resting heart rate / HRV, optional caffeine and study-block notes.
• Session data — mode, duration, audio settings, NASA-TLX workload ratings you submit, optional Bluetooth heart-rate readings.
• Billing data — Stripe customer ID and subscription status. We do not store card numbers; payment details are processed by Stripe.

2. How we use it

• To run the service (sign-in, sessions, billing).
• To tune the audio protocol recommendations to your reported workload.
• To show your own trends back to you in the Insights view.

3. What we do not do

• We do not sell your data.
• We do not share your wellness inputs with advertisers.
• We do not use your data to train third-party AI models.

4. Where it lives

Account, profile, session, vitals, and workload data are stored in a Postgres database managed via Lovable Cloud. Access is restricted by row-level security so you can only read your own rows. Payment processing is handled by Stripe.

5. Your rights (GDPR / CCPA)

You can request export or deletion of your data at any time by emailing privacy@smartsound.live. We will respond within 30 days. Deleting your account removes your profile, sessions, vitals, and workload responses; billing records may be retained as required by law.

6. Cookies and local storage

SmartSound stores a small amount of data in your browser's local storage to remember your session and audio preferences. We do not use third-party advertising cookies.

7. Children

SmartSound is not intended for children under 16. We do not knowingly collect data from minors.

8. Contact

Questions? Contact support.