senself

Privacy Policy

Last updated: April 2, 2026

What we collect

  • Email address — used for authentication (magic link or Google sign-in) and optional reminder emails.
  • Display name — optional, chosen by you.
  • Check-in entries — what you write during daily check-ins: text, AI-detected emotion, your corrections, themes, and tags. This is your data.
  • Assessment data — your conversation with the AI assessment and the resulting processing style profile.
  • Talk conversations — messages exchanged in Talk sessions, stored so you can revisit past conversations.
  • Processing style — detected by the AI assessment (visual, somatic, verbal, or analytical). Used to adapt your check-in questions.
  • Google profile — if you sign in with Google, we receive your email address and display name. We do not access your Google contacts, calendar, or any other data.

Legal basis for processing (GDPR)

  • Contract performance — processing your check-ins, assessment, and Talk conversations to provide the service.
  • Consent — sending reminder emails (opt-in only, can be disabled anytime in Settings).
  • Legitimate interest — basic analytics to understand usage patterns and improve the service.

Your check-in entries and Talk conversations are stored securely with row-level encryption. We do not sell, rent, or share your personal content with third parties for advertising. We do not use your data to train AI models.

How AI works

AI is central to Senself. Here is exactly what happens with your data:

  • Assessment — your conversation is sent to Google Gemini (via OpenRouter) to detect your processing style. Free for all users.
  • Emotion detection and categorization — after each check-in, your entry text is sent to Google Gemini to identify emotions, themes, and patterns. Free for all users.
  • AI reflections and Talk — your entry or conversation is sent to Anthropic Claude (via OpenRouter) to generate reflections or responses. Premium feature.

OpenRouter acts as a routing layer. Neither OpenRouter nor the underlying model providers (Google, Anthropic) retain your data after processing. Your data is not used to train their models.

What we do not do

  • We do not sell your data. Ever.
  • We do not use cookies for advertising or tracking.
  • We do not share your content with anyone.
  • We do not use your data to train AI models.
  • We do not send marketing emails.

Third-party services

  • Supabase — database and authentication. Your data is stored in Supabase-managed PostgreSQL with row-level security. Servers are in the US.
  • OpenRouter — AI routing to Google Gemini and Anthropic Claude. Data is processed but not stored.
  • Stripe — payment processing for premium subscriptions. We do not store your credit card information.
  • Resend — transactional email delivery (magic links and optional reminders).
  • Vercel — hosting and basic analytics (page views, no personal identifiers, no cookies).
  • Google OAuth — optional sign-in method. Only email and name are received.

International data transfers

Your data is stored on servers in the United States (Supabase) and processed by US-based AI providers (OpenRouter, Google, Anthropic). These transfers are necessary to provide the service and are covered by standard contractual clauses and the EU-US Data Privacy Framework where applicable.

Data retention

Your data is retained for as long as your account is active. When you delete your account (Settings page), all data is permanently removed within 30 days. We do not keep backups of deleted data.

Your rights (GDPR)

As a resident of the EU/EEA, you have the right to:

  • Access — request a copy of your personal data.
  • Rectification — correct inaccurate data.
  • Erasure — delete your account and all data (available in Settings, or email us).
  • Data portability — receive your data in a structured, machine-readable format.
  • Restriction — request we limit processing of your data.
  • Objection — object to processing based on legitimate interest.
  • Withdraw consent — for reminder emails, disable in Settings at any time.

To exercise any of these rights, email hello@senself.org. You also have the right to lodge a complaint with your local data protection authority (in Spain: Agencia Española de Protección de Datos, aepd.es).

Children

Senself is not intended for users under 16 years of age. We do not knowingly collect data from children. If you believe a child under 16 has created an account, please contact us and we will delete it.

Changes

We may update this policy. If we make significant changes, we will notify you via the email associated with your account.

Contact

Questions about your data? hello@senself.org