augur
← Back to home

Privacy Policy

Last updated: February 23, 2026

Information We Collect

When you create an account, we collect your email address and any display name you provide. During gameplay, we store encounter transcripts, game state, and usage metrics (such as token counts) to operate the service and calculate costs.

For anonymous trial encounters, we process your IP address in memory to enforce rate limits and prevent abuse. IP addresses are not persisted to our database and are discarded when the rate-limiting window expires.

We may collect pseudonymized feedback about your experience. This feedback is not linked to your account or personal information.

How We Use Your Information

We use your information to operate Augur, process encounters, calculate billing, and improve the service. We do not sell your personal information to third parties.

Data Storage & Security

Your data is stored in our hosted database platform, Supabase. All database access is mediated by our backend API, which enforces user isolation. We use industry-standard encryption for data in transit.

Third-Party Services

Augur relies on the following third-party services to operate:

  • Supabase — authentication and database hosting
  • AI model providers — inference for encounter gameplay and content generation (specific providers may change; details available upon request)
  • Harken — pseudonymized user feedback collection

Your encounter text is sent to AI model providers for processing. Details on current providers and their privacy policies are available upon request.

Cookies & Tracking

We use essential cookies for authentication and session management. We do not use cookies for fingerprinting, tracking, or analytics. Your browser's local storage is used to remember whether you have completed a trial encounter — this data stays on your device and is not sent to our servers.

Your Rights

You may request access to, correction of, or deletion of your personal data at any time. You can delete your account directly from your profile page, which will permanently remove your profile and encounter transcripts. Aggregate statistics (such as encounter counts and outcome tallies) that have already been computed will not be affected by deletion.

  • Account deletion — available from your profile settings at any time
  • Data export — coming soon
  • Withdraw consent — delete your account or contact privacy@conecrows.com

Data Retention

  • Encounter data — retained for the lifetime of your account and permanently deleted within 30 days of account deletion
  • Purchase records — personally identifiable information is removed upon account deletion; anonymized financial records are retained for legal compliance per GDPR Article 17(3)(b)
  • Rate-limit IP data — processed ephemerally in memory and not persisted to our database

Breach Notification

In the event of a data breach affecting your personal information, we will notify you via email within 72 hours of becoming aware of the breach, as required by GDPR and PIPEDA.

Sub-Processors & Data Processing

We use the following sub-processors to operate Augur. Our use of each provider is governed by their respective terms of service and privacy policies.

  • Supabase — authentication, database hosting, and user management
  • AI model providers — inference for encounter gameplay and content generation (specific providers may change; details available upon request)
  • Paddle — payment processing (merchant of record)

Cross-Border Data Transfers

Your data is processed and stored in the United States. AI model providers process encounter text in the United States. By using Augur, you acknowledge that your data may be transferred to and processed in the United States.

California Privacy Rights (CCPA/CPRA)

If you are a California resident, you have specific rights regarding your personal information under the California Consumer Privacy Act and California Privacy Rights Act.

Categories of personal data we collect:

  • Identifiers (email address, display name)
  • Commercial information (purchase and credit history)
  • Usage data (encounter transcripts, token counts)

We do not sell or share your personal information for cross-context behavioral advertising.

Your rights: You have the right to know what personal data we collect, request deletion of your data, and request correction of inaccurate data. You can exercise these rights by deleting your account from your profile page or by contacting privacy@conecrows.com. We will not discriminate against you for exercising any of these rights.

Canadian Privacy Rights (PIPEDA)

If you are a Canadian resident, the Personal Information Protection and Electronic Documents Act (PIPEDA) applies to how we handle your personal information.

  • Consent — by creating an account, you consent to the collection, use, and disclosure of your personal information as described in this policy
  • Access and correction — you have the right to access and request correction of your personal data
  • Cross-border transfers — your data is transferred to and processed in the United States, as described in the Cross-Border Data Transfers section above
  • Privacy inquiries — contact privacy@conecrows.com

Changes to This Policy

We may update this privacy policy from time to time. Changes will be posted on this page with an updated revision date.

Contact Us

If you have questions about this privacy policy, please contact us at privacy@conecrows.com.