Privacy Policy

Last updated: 2026-05-25

ApotheosisX is currently in private pilot. This policy describes what we collect, why, and what we do with it.

What we collect

• Your email address, when you're invited and when you sign in. We need it to send magic-link sign-in emails and to know who you are between sessions.
• Your generated content — the specs you generate and the audits you run — including the HTML you paste into the audit form. This is stored so you can see your own history.
• Standard server logs (timestamps, request paths, IP address) kept transiently for debugging and abuse prevention.

What we don't collect

• No third-party analytics, advertising trackers, or behavioral tracking.
• No cookies beyond a single signed session cookie required to keep you logged in.
• No data sold or shared with third parties for marketing.

Where it lives

• Authentication and history data: Supabase (Postgres, US-West-2 / Oregon).
• Sign-in emails: Resend (transactional email provider).
• Error reports: Sentry (when wired; scrubbed of request bodies).
• Hosting: Railway (in Phase 6).

Your control

• Sign out at any time via the link in the header.
• Email us at gianni.business150@gmail.com to delete your account; all your spec history, audit history, and authentication record will be removed within 7 days.
• Pilot access is invite-only. Revoking your invite removes your account.

Changes

If this policy changes materially, you'll get an email before the change takes effect.

Contact

gianni.business150@gmail.com