Privacy, Safety & Confidentiality

Our commitment to you — not fine print, but a founding principle.

Your voice is sacred. We treat it that way.

REWRITE exists to help you grow — not to collect, store, monetize, or share your most vulnerable moments. Every architectural decision we make starts with one question: Does this protect the person speaking? The answer must always be yes. No exceptions. No asterisks.

I Your Voice Recordings Are Destroyed

We do not keep your voice recordings. Period.

When you record a voice entry in REWRITE, here is exactly what happens:

Your audio is transmitted over 256-bit TLS encryption to our processing servers.
Your voice is analyzed by our clinical-grade vocal biomarker engine to extract emotional pattern data — numerical scores only.
Your audio is permanently deleted within 24 hours of processing. No copy is retained. No backup is made. No archive exists.
What remains are anonymized numerical biomarker scores (e.g., "Stress: 6.2, Confidence: 7.8") — data points that cannot be reverse-engineered into your voice, your words, or your identity.

            We do not store recordings. We do not replay recordings. We cannot recover recordings. By design.
          

II Your Words Are Never Shared

If you use our transcription feature, your spoken words are converted to text solely for your use within your private session. This transcription:

Is never visible to any coach, practitioner, or third party
Is never used to train AI models
Is never sold, licensed, or transferred to any entity for any purpose

It is stored only in your encrypted account and deletable by you at any time.

            If you work with a coach through REWRITE, your coach sees scores, not conversations. Trends, not transcripts. Patterns, not words. This is not a limitation — it is a deliberate, inviolable architectural principle.
          

III Your Coach Sees Only What You Authorize

REWRITE's coach-sharing model is built on explicit, granular, revocable consent.

Before any data reaches your coach, you will:

Review exactly what is shared — a plain-language summary, not legal boilerplate
Toggle each category independently — Daily Scores, Weekly Trends, Session Prep Insights, Progress Flags, Monthly Reports
See a real-time preview of precisely what your coach will and will not see
Confirm with affirmative consent — no pre-checked boxes, no defaults that favor disclosure

You may revoke any or all permissions at any time, effective immediately. One tap. No waiting period. No guilt screens. No questions asked.

What your coach never sees, under any circumstance:

Your voice recordings (destroyed — see Pillar I)
Your transcribed words
Your journal entries
Your story choices or narrative decisions
Your payment information
Any data from categories you have not explicitly authorized

IV We Do Not Sell Data. We Will Never Sell Data.

This is not a negotiable principle. It is a founding commitment.

We do not sell personal data to advertisers.
We do not sell personal data to data brokers.
We do not sell aggregated data to researchers without IRB-approved protocols and your explicit written consent.
We do not sell behavioral data to insurance companies, employers, or any entity that could use it to evaluate, score, rate, or make decisions about you.
We do not permit third-party tracking pixels, behavioral advertising cookies, or cross-site tracking of any kind within the REWRITE application.

            Our business model is subscription revenue from the people we serve — not surveillance revenue from the people we exploit. These are fundamentally different companies. We chose to be the first kind.
          

V Your Data Belongs to You

Under REWRITE's data governance framework, you have the following rights — regardless of where you live. We do not gate privacy behind geography.

Right to Access. Request a complete export of all data associated with your account at any time. Delivered in a portable, machine-readable format within 30 days.
Right to Deletion. Request permanent deletion of your account and all associated data at any time. Irreversible, complete, executed within 30 days. No shadow copies.
Right to Correction. Update or correct any personal information in your account at any time.
Right to Restrict Processing. Pause all voice analysis at any time while retaining access to your account and historical scores.
Right to Withdraw Consent. Any consent you grant — to coach sharing, to analysis, to communications — may be withdrawn at any time without penalty, without loss of service access, and without explanation.

We built REWRITE to be the safest place you'll ever speak the truth.
That is not a marketing claim. It is an engineering specification.

Security Architecture

Layer	Standard
Data in transit	TLS 1.3 / 256-bit AES encryption
Data at rest	AES-256 encrypted database storage
Authentication	Secure token-based with encrypted credential storage
Voice processing	Emotion Logic FeelGPT™ — SOC 2 Type II, GDPR, EU AI Act compliant
Infrastructure	SOC 2 compliant cloud with automated security patching
Access control	Role-based, least privilege; no user data access without audit trail
Breach response	Affected users notified within 72 hours per GDPR Art. 33 & U.S. state statutes

Regulatory Compliance

REWRITE is designed to meet or exceed the requirements of:

GDPR — General Data Protection Regulation (EU/EEA)
CCPA / CPRA — California Consumer Privacy Act / California Privacy Rights Act
HIPAA alignment — While REWRITE is not a covered entity under HIPAA, we architect our systems to align with HIPAA privacy principles, recognizing the sensitive nature of emotional and vocal data.
EU AI Act — Our vocal biomarker partner, Emotion Logic, maintains full compliance.
Children's privacy — REWRITE is not intended for use by individuals under 18. We do not knowingly collect data from minors.

Third-Party Services

REWRITE uses the following services to operate. Each operates under its own privacy policy. We select partners who meet industry security standards.

Service	Purpose	Data Shared
Supabase	Authentication & database	Email, profile, progress, biomarker scores
Stripe	Payment processing	Email, payment details (we never see your card number)
OpenAI	AI coaching & transcription	Coaching prompts, transcripts (not stored by OpenAI; not used to train models)
Emotion Logic	Vocal biomarker analysis	Voice audio (processed and deleted); returns numerical scores only
Netlify	Hosting & serverless functions	Standard web server logs

Data Retention

Voice recordings: Deleted after biomarker extraction — typically within 24 hours
Biomarker scores: Retained as long as your account is active
Account data: Retained while active, plus 30 days after deletion request
Analytics data: Retained in aggregated, de-identified form for up to 2 years
Payment records: Retained as required by financial regulations

Cookies & Local Storage

REWRITE uses browser local storage (not traditional cookies) to remember your progress, authentication session, and preferences. We do not use third-party advertising cookies or cross-site tracking.

SMS Communications

If you opt in to SMS reminders: you will receive up to one text message per day. Message and data rates may apply. Reply STOP at any time. Your phone number is stored securely and never shared with third parties. We comply with TCPA requirements.

Changes to This Commitment

We may update this document from time to time. Material changes will be communicated via email or in-app notification. Your continued use of REWRITE constitutes acceptance of the updated terms.

Contact & Accountability

Questions, concerns, or data requests:

Privacy Officer
REWRITE™
Email: info@rewrite.guru

We respond to all privacy inquiries within 5 business days. Data access and deletion requests fulfilled within 30 calendar days.

Michael W.G. Berman

Founder & Architect, REWRITE™

"I built REWRITE because I believe your voice holds the truth about who you are and who you're becoming. I will never allow that truth to be exploited, commodified, or carelessly handled. This is my word."

Last updated: March 28, 2026 · Version 2.0