Privacy Policy

We keep the data footprint deliberately small. We collect:

• Your email address, used to create and sign in to your account and to send you transactional email.
• Authentication state — the credentials and session tokens that keep you signed in, managed by AWS Cognito.
• Subscription state — whether you’re on the free or paid edition, and the billing status reported by our payment processor.
• Aggregate, cookieless usage analytics — anonymous, page-level counts that contain no personal identifiers and no cross-site tracking.

We do not collect or store your payment card details. Those go directly to Stripe.

We use the data above only to run the Service:

• to deliver the projections and your account experience;
• to process and renew your subscription, via Stripe;
• to send necessary transactional email — sign-in verification codes, password resets, and billing notices — sent through Amazon SES from no-reply@prophet9.com;
• to understand, in aggregate, which pages are used — without tracking individuals.

Prophet 9 sets no advertising or tracking cookies. Our analytics provider, Plausible, is cookieless and does not collect personal data or build cross-site profiles. Because there are no non-essential cookies, there is no cookie-consent banner — there is nothing to consent to.

The only browser storage we use is functional: the session token that keeps you signed in. It is essential to operating your account and is not used for tracking.

We don’t sell your data, and we don’t share it for advertising. We rely on a small set of service providers strictly to operate the Service:

• Stripe — payment processing and billing.
• Amazon Web Services — hosting, authentication (Cognito), and transactional email (SES).
• Plausible — cookieless, aggregate analytics.

We may also disclose information if required by law. We will never sell your personal information.

We keep your account data for as long as your account is active. If you delete your account, we remove your personal data within a reasonable period, except where we’re required to retain certain records — such as billing records — to comply with legal and tax obligations.

Depending on where you live, you may have rights under laws such as the GDPR or the CCPA, including the right to:

• access the personal data we hold about you;
• correct inaccurate data;
• delete your data;
• object to or restrict certain processing;
• request a copy of your data in a portable form.

We do not sell your personal information, so there is nothing to opt out of on that front. To exercise any of these rights, contact us using the details below.

For any privacy request — access, deletion, or a question about this policy — reach us through the contact form. We’ll respond within a reasonable time.

If we change how we handle data, we’ll update this page. Material changes will be noted here.