Privacy Policy

Effective Date: July 28, 2025

1. INTRODUCTION

My Purpose Profile ("we," "us," "our," or "Company") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website at mypurposeprofile.com and our AI-powered assessment service (collectively, the "Service").

This Privacy Policy applies to all users of our Service. By using our Service, you consent to the data practices described in this policy.

2. DATA CONTROLLER INFORMATION

For EU/EEA residents:
My Purpose Profile is the data controller responsible for your personal data.

Contact Information:
Email: info@mypurposeprofile.com
Website: mypurposeprofile.com

3. PERSONAL DATA WE COLLECT

We collect personal data that you provide to us and that is generated through your use of our Service.

3.1 Data You Provide Directly

Account Information:

  • Name
  • Email address
  • Password (encrypted)
  • Date of account creation

Assessment Data:

  • Responses to assessment questions
  • Personal experiences and stories shared
  • Goals and aspirations
  • Career and life information
  • Any other information you choose to share during the assessment

Payment Information:

  • Billing name and address
  • Payment card details (processed by Stripe - we do not store full card numbers)
  • Transaction history

Communication Data:

  • Messages you send to us
  • Feedback and testimonials
  • Support requests

3.2 Data Collected Automatically

Technical Data:

  • IP address
  • Browser type and version
  • Device information (type, operating system, unique identifiers)
  • Time zone setting and location
  • Browser plug-in types and versions

Usage Data:

  • Pages visited and features used
  • Time spent on pages
  • Click patterns and navigation paths
  • Assessment completion data
  • Interaction with emails we send

Marketing and Analytics Data:

  • Data from Meta ads (Facebook/Instagram)
  • Google Analytics data
  • PostHog analytics data
  • Email engagement data from Kit.com

4. HOW WE USE YOUR PERSONAL DATA

4.1 Primary Purposes

We use your personal data to:

Provide Our Service:

  • Process your assessment responses
  • Generate your personalized Purpose Profile using AI technology
  • Provide access to your account and reports
  • Send your assessment results

AI Processing - Important Notice:

  • We use OpenAI's API to analyze your assessment responses
  • Your responses are processed to identify patterns and generate insights
  • We do NOT train any AI models with your data
  • We do NOT use your personal data for machine learning training purposes
  • Your data is used solely to provide you with your personalized Purpose Profile

Customer Support:

  • Respond to your inquiries
  • Provide technical support
  • Handle refund requests

Business Operations:

  • Process payments via Stripe
  • Send transactional emails about your account
  • Maintain and improve our Service (without using your personal data for AI training)
  • Ensure security and prevent fraud

4.2 Legal Basis for Processing (GDPR)

We process your personal data based on:

Contract: To provide the Service you've purchasedConsent: For marketing communications and certain data processingLegitimate Interests: For improving our Service, security, and fraud preventionLegal Obligations: To comply with applicable laws

4.3 Marketing and Communications

With your consent, we may use your data to:

  • Send promotional emails about our Service
  • Provide updates about new features
  • Share relevant content and resources
  • Request testimonials or feedback

You can opt-out of marketing communications at any time.

5. DATA SHARING AND DISCLOSURE

We share your personal data only in the following circumstances:

5.1 Service Providers

We share data with third-party service providers that help us operate our Service:

Core Service Providers:

  • OpenAI: Processes your assessment responses via their API to generate insights (we do not use your data to train models)
  • Stripe: Processes payments (they have their own privacy policy)
  • Google Storage: Stores your data securely
  • Webflow: Hosts our website
  • Microsoft 365: Manages our email communications

Analytics and Marketing:

  • Google Analytics: Website analytics
  • PostHog: Product analytics
  • Meta (Facebook): Advertising
  • Kit.com: Email marketing

Integration Tools:

  • Zapier: Automates workflows between services
  • Airtable: Database management

5.2 Legal Requirements

We may disclose your data if required by law or in response to valid requests by public authorities.

5.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your data may be transferred to the acquiring entity.

5.4 Aggregated Data

We may share aggregated, anonymized data that cannot identify you personally.

6. INTERNATIONAL DATA TRANSFERS

Your data may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place for such transfers, including:

  • Standard contractual clauses approved by the European Commission
  • Ensuring service providers have adequate data protection measures
  • Only transferring data to countries with adequate data protection laws

7. DATA SECURITY

We implement appropriate technical and organizational measures to protect your personal data, including:

  • Encryption of data in transit and at rest
  • Regular security assessments
  • Access controls and authentication
  • Employee training on data protection
  • Secure data storage using Google Cloud infrastructure

While we strive to protect your data, no method of transmission over the internet is 100% secure.

8. DATA RETENTION

We retain your personal data for as long as necessary to fulfill the purposes outlined in this policy:

  • Account Data: As long as your account is active
  • Assessment Data: For the duration of your account, unless you request deletion
  • Payment Records: As required by tax and accounting laws (typically 7 years)
  • Marketing Data: Until you opt-out or request deletion

You can request deletion of your data at any time, subject to legal requirements.

9. YOUR PRIVACY RIGHTS

9.1 Rights for All Users

You have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Request deletion of your data
  • Opt-out of marketing communications
  • Receive a copy of your assessment results

9.2 Additional Rights for EU/EEA Residents (GDPR)

If you're in the EU/EEA, you also have the right to:

  • Data Portability: Receive your data in a machine-readable format
  • Restrict Processing: Limit how we use your data
  • Object to Processing: Object to certain uses of your data
  • Withdraw Consent: Where we rely on consent for processing
  • Lodge a Complaint: With your local data protection authority

9.3 Additional Rights for California Residents (CCPA)

California residents have additional rights including:

  • Right to know what personal information we collect
  • Right to know if we sell or share personal information (we do not sell your data)
  • Right to opt-out of sale of personal information
  • Right to non-discrimination for exercising privacy rights

9.4 Exercising Your Rights

To exercise any of these rights, contact us at info@mypurposeprofile.com. We will respond within the timeframes required by applicable law (generally within 30 days).

10. COOKIES AND TRACKING TECHNOLOGIES

We use cookies and similar technologies to enhance your experience. For detailed information, please see our Cookie Policy.

Key uses include:

  • Essential cookies for Service functionality
  • Analytics cookies to understand usage
  • Marketing cookies for advertising effectiveness

11. THIRD-PARTY LINKS

Our Service may contain links to third-party websites. We are not responsible for the privacy practices of these external sites.

12. CHILDREN'S PRIVACY

Our Service is not intended for individuals under 18 years of age. We do not knowingly collect personal data from children under 18.

13. AI AND AUTOMATED DECISION-MAKING

13.1 How AI is Used

We use OpenAI's API to:

  • Analyze your assessment responses
  • Identify patterns and insights
  • Generate your personalized Purpose Profile

13.2 No Training on Your Data

Important: We do NOT use your personal data to train any AI models. Your assessment responses are processed through OpenAI's API solely to generate your personalized report, not for machine learning training purposes.

13.3 Human Oversight

While AI processes your responses, the assessment framework and questions are designed by humans, and you always have the option to request human review of your results.

13.4 No Automated Legal Decisions

We do not use automated processing for decisions that have legal or similarly significant effects on you.

14. CHANGES TO THIS PRIVACY POLICY

We may update this Privacy Policy from time to time. We will notify you of material changes by:

  • Posting the new policy on our website
  • Sending an email notification
  • Requiring acknowledgment for significant changes

15. CONTACT US

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

My Purpose Profile
Email: info@mypurposeprofile.com
Website: mypurposeprofile.com

For EU/EEA residents: You have the right to lodge a complaint with your local supervisory authority if you believe we have not adequately addressed your concerns.

Data Protection Authority Contact:
If you're in the Netherlands, you can contact the Autoriteit Persoonsgegevens (Dutch Data Protection Authority).

By using My Purpose Profile, you acknowledge that you have read and understood this Privacy Policy.