Privacy Policy

1. Who we are

FORKS ("FORKS," "we," "us," or "our") operates the website at forkslifepath.com (the "Service"). This Privacy Policy explains how we collect, use, and protect information about you when you use the Service.

2. Information we collect

We collect three categories of information:

• Account information: your name, email address, and an encrypted password hash, provided when you sign up.
• Fork content: the decisions, current/alternate paths, hopes, fears, timelines, and other inputs you voluntarily submit when running a fork.
• Technical information: standard server logs (IP address, user agent, timestamps) collected automatically by our hosting provider for security and abuse prevention.

We do not use third-party advertising trackers, analytics that profile users across sites, or session recording tools. We do not use Google Analytics or any other third-party analytics services.

3. How we use your information

• To provide the Service (authenticate you, store and retrieve your forks).
• To send transactional emails (password resets, email verification).
• To detect, investigate, and prevent abuse, fraud, or security incidents.
• To comply with applicable law and respond to lawful requests.

We do not sell your personal information. We do not use your fork content to train AI models.

4. How we store your information

Your data is stored in Supabase (PostgreSQL) databases hosted in the United States. Authentication tokens are stored as HTTP-only cookies in your browser. Passwords are hashed using industry-standard algorithms before storage; we never see your plaintext password.

We use database row-level security so that one user's data cannot be read by another user.

5. Data retention and deletion

We retain your personal information only as long as necessary to provide the Service. When you delete your account, we permanently delete your profile, all associated forks, and any other personal information from our production database within 30 days. This deletion is irreversible.

We may retain certain technical logs (IP addresses, timestamps) for security and abuse prevention purposes for up to 90 days, even after account deletion. These logs do not contain your fork content or personal details beyond what is necessary for security.

6. Subprocessors

We rely on the following service providers:

• Supabase — authentication, database, transactional email.
• Vercel — application hosting and CDN.
• IONOS — DNS for forkslifepath.com.

7. Your rights

Depending on where you live, you may have the right to access, correct, export, or delete your personal information. To exercise these rights:

• You can delete your account and all associated forks at any time from the settings page.
• For other requests, email support@forkslifepath.com. We will respond within 30 days.

8. Children

FORKS is not directed at children under 18. We do not knowingly collect personal information from anyone under 18. If you believe a child has provided us with personal information, contact us and we will delete it.

9. Cookies

We use only essential cookies required for authentication. We do not use advertising or tracking cookies.

10. Security incidents

If we discover a security incident affecting your personal information, we will notify affected users by email without undue delay, in accordance with applicable law.

11. Changes to this policy

We may update this Privacy Policy from time to time. The "Effective date" at the top reflects the latest version. Material changes will be communicated via email or a prominent notice on the Service.

12. Contact

Questions about this policy? Email support@forkslifepath.com.