1. Information We Collect

Account Data: Email address, display name, and password hash. We assign you an anonymous identifier (TRIBE-XXXXXX) to protect your identity within the community.

Assessment Data: Your Perception Assessment responses, dimension scores, archetype, tier assignment, and DNA strand visualization data.

Content Data: Posts, comments, messages, vibes, and other content you create on the Platform.

Usage Data: Login timestamps, tier progression history, vibe events, and general platform interaction patterns.

Payment Data: Processed by Stripe. We store only your Stripe customer ID and subscription status — never your card number or financial details.

2. How We Use Your Data

To operate and maintain your account and subscription
To calculate and assign your perception tier
To display content relevant to your tier range
To enforce community guidelines via Guardian monitoring
To generate platform-wide analytics (aggregate, anonymized)
To send notifications about your account and the community

3. Guardian Content Monitoring

The Guardian system scans posts, messages, and live streams for content that violates community guidelines. Guardian scanning is automated and mandatory for all users. Flagged content is reviewed and may be removed. Guardian does not share content with third parties.

4. Data Sharing

We do not sell your personal data. We share data only with:

Stripe: Payment processing (subject to Stripe's privacy policy)
Supabase: Database hosting (subject to Supabase's privacy policy)
Vercel: Application hosting (subject to Vercel's privacy policy)
Law enforcement: Only when required by valid legal process

5. Your Rights (GDPR & CCPA)

You have the right to:

Access: Download a copy of all your data via Settings → Export Data
Rectification: Update your account information at any time
Deletion: Delete your account and all personal data via Settings → Delete Account
Portability: Export your data in JSON format
Object: Contact us to object to specific data processing

To exercise these rights, use the in-app settings or contact privacy@hyvetribe.com.

6. Data Retention

Active accounts: data retained while your account is active. Deleted accounts: personal data is removed within 30 days; anonymized aggregate data may be retained. Assessment data: retained to maintain tier history integrity; anonymized upon account deletion.

7. Security

Passwords are hashed using scrypt with unique salts. All data is transmitted over HTTPS/TLS. Database access is restricted to authenticated API routes. We conduct regular security reviews.

8. Cookies & Local Storage

We use localStorage to store your authentication token (JWT) and theme preferences. We do not use tracking cookies or third-party analytics. No data is shared with advertisers.

9. Children

The Platform is not intended for users under 18 years of age. We do not knowingly collect data from minors.

10. Changes

We may update this policy periodically. Material changes will be communicated via platform notification. Continued use after changes constitutes acceptance.

11. Contact

Data protection inquiries: privacy@hyvetribe.com

Privacy Policy