Privacy policy

We act as controller for account, platform, security, website, support, and marketing data. For journey content entered by business customers about their own customers, employees, patients, or users, we generally act as processor and process that content on the customer's instructions.

Depending on how you use the product, we may process:

• Account data, such as email address, authentication ID, and session data.
• Profile and workspace data, including names, slugs, members, roles, and invites.
• Journey content, such as personas, segments, touchpoints, pain points, opportunities, evidence, KPIs, actions, and exports.
• Collaboration data, including edit history, version history, member lists, and public share settings.
• Uploaded documents and selected journey context when you use AI extraction or generation features.
• Support, diagnostic, and security data, such as messages, logs, request metadata, and abuse-prevention signals.

• To provide authentication, workspaces, collaboration, storage, exports, and product functionality.
• To generate AI-assisted suggestions when you explicitly request them.
• To secure the service, prevent misuse, debug issues, and maintain auditability.
• To respond to support requests and manage beta access.
• To send product or marketing messages only where we have a valid basis or consent.

We usually rely on contract to provide the service, legitimate interests for security, support, diagnostics, and product operations, consent for optional marketing or non-essential cookies, and legal obligation where applicable. When we process customer journey content as a processor, the customer determines the legal basis for that content and our processing is governed by a data processing agreement.

Account, workspace, and journey data is stored in Supabase. The app uses row-level security and workspace membership checks to restrict access. The app may be hosted on Vercel. AI providers receive data only when you invoke AI features. See Subprocessors for the current vendor list.

The AI features (persona suggestions, stage suggestions, insights analysis, action plan generation, and document extraction) only run when you explicitly trigger them. When you do, the relevant subset of your journey data or uploaded document content is sent to the configured AI provider so it can return a result. Do not submit sensitive or regulated personal data unless you have the right to do so and your agreement with us permits it.

We do not sell your personal data. We share data with subprocessors needed to run the service. Workspace members may see data according to their role. If you enable a public share link, anyone with that link may be able to view the shared journey until you disable sharing or delete the journey.

We keep account and workspace data while your account or workspace is active. Journey content is kept until deleted by you or your workspace. Journey versions are capped by the product, and invitations expire after a limited period. Uploaded AI documents should not be retained after processing unless the product explicitly says otherwise. Security and support logs are retained only as long as needed for operations, security, legal, or support purposes.

Depending on your location and role, you may request access, correction, deletion, restriction, portability, objection, or withdrawal of consent. If your data was entered by one of our business customers, we may redirect your request to that customer as the controller. To make a request, contact contact@customerexperience.ro.

Some providers may process data outside the European Economic Area. Where required, we rely on appropriate safeguards such as data processing agreements and standard contractual clauses.

Privacy questions, deletion requests, or feedback: contact@customerexperience.ro.