Privacy Policy

Accounselor collects the minimum necessary to function:

• Session data — your business description, the questions asked, and your answers. By default this is stored only in your browser's localStorage. Plain text of your input is sent to our API routes when you submit each turn.
• AI requests — when you submit a description or answer, the text is forwarded to a third-party AI provider to generate a response.
• Email address — only if you choose to unlock and receive your plan. We use it to (a) deliver the plan, (b) send up to four follow-up “advisor” emails over 21 days from [email protected] (a check-in two days after, a content email at five days, a soft pitch for the Operator subscription at day 10, and an optional free second check-in at day 21 if you replied to the first), and (c) send a trial-ending reminder if you start an Operator subscription. Every follow-up email carries a one-click unsubscribe link and a List-Unsubscribe header.
• Saved plans — when you unlock or share a plan, we store the generated report, your business description, and your email on our servers for up to 30 days, after which it is automatically deleted.

• No account or registration is required to generate a free plan
• No payment information is stored by us (Stripe handles checkout end-to-end)
• No analytics, tracking pixels, fingerprinting, marketing cookies, or behavioral profiling

We use a small number of strictly-necessary cookies. None are used for analytics or advertising.

• accounselor_op — your Operator session, set when you sign in. HttpOnly, SameSite=Lax, Secure in production. Persists for 30 days unless you sign out, at which point it's cleared.
• Cloudflare Turnstile cookies (e.g. __cf_bm, cf_clearance) — set by Cloudflare on form submissions to distinguish humans from bots. Short-lived (typically 30 minutes for __cf_bm) and governed by Cloudflare's own privacy policy.

These cookies are needed for the site to function (auth + abuse prevention) and are exempt from consent requirements under most privacy regimes (GDPR strictly-necessary, CCPA service-provider). If your browser blocks them, sign-in and form submission will fail.

Your conversation is processed by a third-party AI provider (currently DeepSeek, with Anthropic as a secondary provider for the final report). When you use Accounselor, your input is transmitted to their API to generate responses. Their use of this data is governed by their own privacy policy.

Apart from the saved-plan retention window described above, we do not retain your raw conversation on our servers after the session ends.

The data you provide is used solely to generate your business plan, deliver it, and (if you save or share it) host the plan for 30 days. We do not sell, trade, or share your data with third parties except as described above (AI provider, email provider, payment provider when you upgrade).

Browser-side session data is stored in localStorage and persists until you clear your browser data or use the “Start over” function.

Guest-saved plans (Free preview / Single Plan) are stored on our servers for 30 days from creation and then automatically deleted by a scheduled job. Operator plans are kept while your subscription is active and for 90 days after cancellation, then deleted. If you want a plan removed sooner, email [email protected] with the share URL.

Email addresses are retained until you unsubscribe.

You can delete your browser-side session at any time using “Start over” or by clearing localStorage. To delete your stored plan, email address, or any other personal data, contact us at the address below — we will action requests within 14 days.

Users in the EU/UK have rights under the GDPR including access, rectification, erasure, and portability. California residents have analogous rights under the CCPA.

All data is transmitted over HTTPS. Stored plans live in a managed Postgres database with row-level security and access limited to server-side API routes. We take reasonable technical measures to protect data in transit and at rest.

We may update this policy as the service evolves. The updated date at the top of this page reflects the latest revision.

Questions or data requests? Email [email protected].