itsyoursuperpower.ai

What we collect

• Phone number — for sign-in via SMS one-time codes. Stored in E.164 format. Never used for marketing, never shared with third parties.
• Bootcamp content you write — Skills, research briefs, hour reflections, sidekick chat, role-play transcripts. All persisted to a per-user Brain so future hours can reference what earlier hours captured.
• Connected source metadata — when you connect Google Calendar / Drive, we store an encrypted OAuth token so the model can read on your behalf via tool calls. Token is wrapped with a per-user data encryption key in Azure Key Vault.
• Telemetry — events like page views, completions, durations, LLM provider + token counts, error rates. Tied to your user id but never to your phone number or content body.

What we DON'T do

• Sell your data. Period.
• Use your private content (sidekick chat, brain entries, voice samples) to train external models.
• Read your raw calendar / drive contents server-side outside of a tool call you triggered. The OAuth token is used only when the model decides it needs to call a tool; we don't pre-fetch.
• Share your phone number with marketing partners, ad networks, or third-party data brokers.

Third parties involved

The bootcamp uses these external services to function:

• Anthropic / Azure OpenAI — your prompts and the model's responses pass through these LLM providers. Both have their own data-handling policies; we use enterprise tiers that don't train on our traffic.
• Azure Communication Services — sends the SMS one-time code.
• Azure App Service / Azure Database for Postgres — hosts the app and your data, encrypted at rest.
• OpenAI Realtime — for voice role-play hours, your audio streams directly to OpenAI from the browser via WebRTC. We don't see the raw audio; only the transcript the browser commits.
• Google APIs (Calendar / Drive) — invoked only when you've connected an account.

Your controls

• /brain — view, edit, or soft-delete every event your Brain holds.
• /connections — revoke any OAuth source.
• Account deletion: email hello@itsyoursuperpower.ai with a request from your registered phone number.

Data retention

Brain events: kept indefinitely while your account is active (the bootcamp's value compounds over time). Audio uploads: 30 days. Pending OAuth flows: 10 minutes. Phone OTPs: 5 minutes (then expired). Account deletion purges all of the above within 30 days.

Contact

Privacy questions or data requests: hello@itsyoursuperpower.ai.