Privacy Policy

Last updated: April 2026

Data We Collect

We collect only what's necessary to provide the Reheerse service:

  • Account information: your name, email address, and hashed password (or OAuth identity provider ID if you sign in with Google).
  • Conversation transcripts: the text exchanges between you and AI personas during practice sessions. These are stored to generate session summaries and skill scores.
  • Session metadata: timestamps, scenario type, duration, and 6-axis skill scores per session.
  • Usage data: page visits, feature interactions, and error logs for improving the product.
  • Payment information: billing details processed securely by Stripe. We never store your full card number.

Data We Do NOT Collect

We believe in minimal data collection. We do not collect:

  • Biometric or behavioral data beyond the conversation text itself.
  • Location data beyond country-level information from your IP address for fraud prevention.
  • Device identifiers or advertising IDs.
  • Third-party social graph data beyond what is required for OAuth sign-in.
  • Any data from minors under 16 years of age (our service is not intended for minors).

AI Training Policy

Your conversation data is never used to train AI models. Not ours, not our AI providers'. This is a firm policy.

Reheerse uses large language models via API (currently OpenAI) to power conversation simulation. We have opted out of data-sharing agreements with our AI providers, meaning your conversation content is not used by them for model training either.

Session transcripts are stored encrypted at rest and are accessible only to you and, in aggregate anonymized form, to improve scenario quality. Individual transcripts are never reviewed by our team without your explicit consent.

Data Retention

We retain your data for as long as your account is active. Specifically:

  • Active account data (profile, sessions, scores) is retained indefinitely while your account remains open.
  • If you delete your account, all personal data including conversation transcripts and scores is deleted within 30 days.
  • Anonymized, aggregated usage statistics (e.g., "X users completed Y scenario type") may be retained indefinitely as they contain no personal information.
  • Payment records are retained for 7 years as required by financial regulations.

Third Parties

We use a limited number of trusted third-party services to operate Reheerse:

  • OpenAI — powers the AI conversation simulation. Subject to OpenAI's API data usage policies. We have opted out of data training.
  • Stripe — handles payment processing. We never store raw card data.
  • Google OAuth — optional sign-in method. No additional Google data is shared with us beyond your public profile.
  • Vercel — hosts the application. Data may be temporarily processed in Vercel's infrastructure.
  • Resend — transactional email delivery (receipts, notifications).

We do not sell your data to third parties. We do not use advertising networks or data brokers.

GDPR Compliance

If you are located in the European Economic Area (EEA), you have the following rights under the General Data Protection Regulation (GDPR):

  • Right to access: request a copy of all personal data we hold about you.
  • Right to rectification: request correction of inaccurate personal data.
  • Right to erasure ("right to be forgotten"): request deletion of your personal data.
  • Right to data portability: receive your data in a structured, machine-readable format.
  • Right to restrict processing: request that we limit how we use your data.
  • Right to object: object to processing of your data for certain purposes.

To exercise any of these rights, email hello@reheerse.com with “GDPR Request” in the subject line. We respond within 30 days.

Questions

For privacy-related questions or concerns, contact us at hello@reheerse.com.