Legal · Privacy

Privacy Policy

Last updated · July 13, 2026

In short — the screenshots you upload are analyzed and then deleted, not stored. We keep the AI-generated report, your account, and purchase data needed to run the service. Payments go through Stripe, analysis goes through Anthropic. We never sell your data, and you have full GDPR rights.

This Privacy Policy describes how Dmitrii Bosiachenko, autónomo registered in Spain (NIF: Z3795401S) ("we," "us," or "VibeCheck") collects, uses, and protects your personal information when you visit vibecheckapp.app or purchase our product.

This policy is provided in compliance with the EU General Data Protection Regulation (GDPR, Regulation 2016/679) and the Spanish Organic Law 3/2018 on Personal Data Protection and Guarantee of Digital Rights (LOPDGDD).

Your screenshots, specifically

Your uploaded chat screenshots are sent directly to our AI provider to generate your report and are never saved to our servers or storage — not before, during, or after analysis.

01Data controller

Controller
Dmitrii Bosiachenko (autónomo)
NIF
Z3795401S
Postal address
See full legal details in our Terms of Service

02What data we collect

Chat screenshots (not stored)

When you upload a screenshot, it's transmitted securely and sent as image data directly to our AI provider, Anthropic, to generate your analysis. We do not save the image to our database or file storage at any point — the field where an image reference would be stored is always left empty. Once your report is generated, the image itself is gone from our systems.

The report itself (stored)

We do store the AI-generated report text — the interest read, flagged patterns, compatibility notes, and any short quotes the AI pulled from your conversation to support its analysis — so you can come back and view it later. Because a report can quote lines from your conversation, it may include text originally written by the other person in that conversation, not just you.

Follow-up chat about your results

If you ask our AI follow-up questions about your report, we store that question-and-answer history so you can revisit it, and so we can understand common questions and improve the product.

Check-ins

If you re-upload a later conversation to see how things have progressed, we store a snapshot of that score over time so we can show you a trend.

Account and purchase data

When you create an account or buy a plan, our processors collect and store:

  • Your email address (for login and receipts)
  • Plan type, subscription status, and Stripe order/subscription IDs
  • A device-level anonymous identifier used to link a report to your session before you sign in

We do not collect or store full payment card data — that's handled exclusively by Stripe.

Referral data

If you use or share a referral link, we store the referral code and a count of how many times it's been redeemed.

Website usage data

When you visit our Website, we collect standard analytics and advertising data (e.g. pages visited, device and browser type, approximate location from IP) via Google Analytics, Meta Pixel, and TikTok Pixel. See our Cookie Policy for details.

Communication data

If you email us at hello@vibecheckapp.app, we retain the content of your message for support and quality purposes.

03A note on the other person in your screenshots

A conversation naturally includes messages from someone other than you. We treat any such text that ends up quoted in your report the same way we treat the rest of your report data — it is not used for advertising, not sold, and not linked to that other person's identity in any way we control. It exists only within your own report.

04Why we process your data

Generating your report
Performance of contract (Art. 6.1.b)
Processing payment / subscription billing
Performance of contract (Art. 6.1.b)
Tax and accounting records
Legal obligation (Art. 6.1.c) — Spanish tax law
Improving the product from Q&A / usage patterns
Legitimate interest (Art. 6.1.f)
Analytics and advertising measurement
Consent / Legitimate interest (Art. 6.1.a / 6.1.f)

05How long we keep your data

  • Chat screenshots: not retained — deleted immediately after analysis
  • Reports, check-ins, and chat history: kept so you can re-access them; deleted on request
  • Purchase records: 6 years (Spanish tax law requires invoice retention)
  • Email correspondence: 2 years after last contact
  • Analytics data: 14 months

06Who we share data with

We share data only with the processors necessary to run the service:

Anthropic
Receives your screenshot image(s) to generate your AI analysis; not retained by us afterward
Stripe
Payment and subscription billing. Their privacy policy
Supabase
Account authentication and database hosting for your reports and account data
Google (Analytics)
Website analytics. Their privacy policy
Meta Platforms
Advertising measurement when our ads run. Their privacy policy
TikTok
Advertising measurement when our ads run. Their privacy policy
Spanish tax authorities (AEAT)
Required reporting under Spanish tax law

We never sell your personal data.

07International data transfers

Some processors (e.g. Stripe, Anthropic, Google, Meta, TikTok) may process data in the United States. All such transfers rely on GDPR Chapter V safeguards (EU-US Data Privacy Framework and/or Standard Contractual Clauses).

08Your rights

Under GDPR and Spanish law, you have the right to:

  • Access the personal data we hold about you
  • Rectify inaccurate or incomplete data
  • Erase your data ("right to be forgotten"), subject to legal retention obligations
  • Restrict processing of your data
  • Portability — receive your data in a structured, machine-readable format
  • Object to processing based on legitimate interest
  • Withdraw consent at any time, where processing is based on consent
  • Lodge a complaint with the Spanish Data Protection Authority (AEPD) at aepd.es

There is currently no self-service "delete my account" button in the product — to exercise any of these rights, including deletion, email us at hello@vibecheckapp.app. We respond within 30 days as required by GDPR.

09Security

We apply industry-standard security measures: TLS encryption in transit, encrypted storage at rest, and limited access on a need-to-know basis. Our payment processor Stripe is PCI-DSS Level 1 certified.

Despite reasonable precautions, no method of transmission over the internet is 100% secure. If a data breach occurs that affects your data, we will notify you and the AEPD within 72 hours as required by GDPR Article 33.

10Children

VibeCheck is not directed at children under 16. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, contact us and we will delete it.

11Changes to this policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last updated" date. Material changes affecting your rights will be communicated by email where we have your address.

12Contact

For any privacy question or to exercise your rights, contact:

Dmitrii Bosiachenko
Autónomo (registered in Spain)
hello@vibecheckapp.app

Postal address, NIF, and full legal details: see our Terms of Service.

See also: Terms of Service · Privacy Policy · Refund Policy · Cookie Policy