Legal

Privacy Policy

This Privacy Policy explains what information Built, Not Born ("we", "us", "our") collects when you use builtnotborn.in, how we use it, and what rights you have over it.

We collect only what we need to deliver the product. We do not sell your data. We do not share it with third parties for marketing purposes.

1. What we collect

When you sign in or make a purchase, we collect:

• Name and email address — provided through Google Sign-In or at checkout
• Diagnostic responses — your answers to the diagnostic questions and the moment you describe
• Usage data — which chapters you read, reflections you write, and your practice streak
• Payment information — processed entirely by Razorpay. We do not store card details or bank information on our servers.

2. How we use it

We use your information to:

• Deliver your diagnostic, AI-written diagnosis, and chapter access
• Send you the emails you request (Chapter 1, access confirmation, practice reminders)
• Maintain your streak, reflections, and highlights across sessions
• Process and verify your payment
• Improve the product based on aggregate, anonymised usage patterns

We do not use your diagnostic responses for any purpose other than generating your personal diagnosis and improving the diagnostic system.

3. Where your data is stored

Your data is stored securely on Supabase infrastructure. Supabase is SOC 2 compliant and stores data on servers located in the Asia-Pacific region. Payment transactions are processed and stored by Razorpay in accordance with PCI DSS standards.

4. Who we share it with

We share your data only with the services required to operate the platform:

• Supabase — database and authentication
• Razorpay — payment processing
• Resend — transactional email delivery
• Google — sign-in authentication only

We do not sell, rent, or share your personal data with advertisers, data brokers, or any other third parties.

5. Cookies and tracking

We use session cookies to keep you signed in. We do not use advertising cookies, tracking pixels, or third-party analytics that profile your behaviour across other websites.

6. Your rights

You have the right to:

• Access — request a copy of the data we hold about you
• Correction — ask us to correct inaccurate data
• Deletion — request that we delete your account and all associated data
• Portability — request your data in a structured, machine-readable format

To exercise any of these rights, email us at support@builtnotborn.in. We will respond within 30 days.

7. Data retention

We retain your account data for as long as your account is active. If you request deletion, we will remove your personal data within 30 days. Anonymised, aggregate data may be retained for product improvement purposes.

8. Children

Built, Not Born is intended for working professionals. We do not knowingly collect data from anyone under the age of 18. If you believe a minor has created an account, contact us at support@builtnotborn.in.

9. Changes to this policy

If we make material changes to this policy, we will notify you by email or by a notice on the platform. Continued use of the platform after changes constitutes acceptance of the updated policy.

10. Contact

For any privacy-related questions or requests:

Built, Not Born
Email: support@builtnotborn.in
Website: builtnotborn.in

This policy applies to builtnotborn.in and all associated services. It is governed by the laws of India, including the Information Technology Act 2000 and the Digital Personal Data Protection Act 2023.