Paretoify ("we", "us") is committed to protecting your privacy. This policy explains what data we collect, how we use it, and your rights. By using our Service, you agree to the practices described here.
Account Information
Email address and optional display name provided during registration. Managed through Supabase Auth.
Learning Data
Vocabulary progress, SRS scores, exam results, lesson history, streak data, and language preferences. This is the core data that powers your personalized learning experience.
Payment Information
Subscription status and purchase history. We use Stripe for payment processing. We never store your full card number — only the last 4 digits and expiry as provided by Stripe. PBucks balance and transaction history are stored in our database.
Voice Session Data
During live AI sessions, your voice is processed in real-time by LiveKit (WebRTC) and Deepgram (speech-to-text). Voice audio is not permanently recorded. Transcriptions from sessions may be stored as "semantic memories" in our database (see below) to improve future AI responses.
Semantic Memories
The AI agent may store contextual summaries of your learning sessions (vocabulary mistakes, learning style preferences, roleplay context) as vector embeddings in our database using pgvector. These are used exclusively to personalize your AI tutor across sessions.
AI-Generated Content
Mnemonic images and text generated for your vocabulary are stored in our database and Fal.ai's CDN. Victory anthem audio is stored in Supabase Storage. Image generation prompts are sent to Fal.ai and Google Cloud (Vertex AI).
Analytics
We collect anonymized usage events (lessons completed, features used, session duration) to understand how the product is used and improve it. We use Sentry for error tracking, which may capture device and browser information when errors occur.
Seasonal and Battle Pass Data
Season XP, tier progress, challenge completions, mission results, and badge records are stored to power the Season Pass system.
We use session cookies managed by Supabase Auth to keep you logged in. We do not use advertising or third-party tracking cookies. No cookie consent banner is required as we only use strictly necessary functional cookies.
We share data with the following trusted services to operate the platform:
Each of these services has their own privacy policies. We only share the minimum data necessary for each service to function.
We do not sell your personal data. We do not use your data for advertising.
Voice audio: Not stored. Processed in real-time and discarded.
Semantic memories: Retained until you delete them or delete your account.
Learning data: Retained as long as your account is active.
Payment records: Retained as required by law (typically 7 years).
After account deletion: Most data deleted within 30 days. Some anonymized data may be retained for aggregate analytics.
Depending on your location, you may have the following rights:
To exercise any of these rights, email us at hello@paretoify.com. We will respond within 30 days.
The Service is not intended for children under 13. We do not knowingly collect data from children under 13. If you believe a child has created an account, contact us immediately.
We use industry-standard security measures including HTTPS/TLS encryption, Supabase Row Level Security (RLS), and GCP Secret Manager for credential storage. No system is 100% secure; if you believe your account has been compromised, contact us immediately.
We may update this privacy policy periodically. We will notify you of significant changes by email or by posting a notice in the app. Continued use of the Service after changes constitutes acceptance.
Privacy questions or requests: hello@paretoify.com