Your Story

Privacy Policy

Last updated: November 27, 2025

Your Privacy Matters

At Your Story, we believe your creative content belongs to you. We've designed our platform with privacy as a core principle. This policy explains how we handle your data in plain, simple terms.

Your Stories & Content

You own your stories

All stories you create remain your property. We don't claim any ownership over your creative content.

Stories are stored until you delete them

Your stories persist in our database so you can access them anytime. When you delete a story, it's permanently removed from our servers.

Your stories are encrypted

Your story content is encrypted using keys derived from your login credentials. We literally cannot read your stories - only you can decrypt them. Not even our team has access to your narrative content.

We don't log your story content

We don't keep logs of your story text or AI requests. Your narrative content isn't recorded, analyzed, or used for any purpose beyond generating your story.

Private by default

Your stories are private unless you explicitly choose to make them public or share them. No one can see your content without your permission.

AI Processing

When you play a story, your choices and context are sent to AI providers (DeepSeek, OpenRouter) to generate continuations. Here's what you should know:

  • AI providers process your requests to generate responses but don't retain your data for training (per their enterprise/API terms)
  • We send only the minimum context needed for story generation
  • Your full story history stays on our servers (encrypted), not with AI providers
  • We do not train AI on your stories - we couldn't even if we wanted to, since they're encrypted

Account Information

We collect and store:

  • Email address - for account authentication and important communications
  • Display name & profile info - optional, shown on your public profile
  • Token balance & transactions - to track your coin usage

We do not sell your personal information to third parties.

Deleting Your Data

You have full control over your data:

  • Delete individual stories anytime from your library
  • Delete adventures you've created from the creator page
  • Request complete account deletion by contacting us

When you delete content, it's permanently removed from our database. We don't keep shadow copies or backups of deleted content.

Cookies & Local Storage

We use minimal browser storage for essential functionality:

  • Authentication tokens - to keep you logged in
  • Preferences - AI model selection, TTS settings, UI preferences

We don't use tracking cookies or third-party analytics that follow you across the web.

Security

Your data is protected with industry-standard security measures including encrypted connections (HTTPS), secure authentication via Supabase, and row-level security policies that ensure you can only access your own data.

Questions?

If you have any questions about this privacy policy or how we handle your data, please reach out to us. We're happy to explain anything in more detail.

TL;DR

  • Your stories are yours - we don't claim ownership
  • Stories are encrypted - we can't read them, only you can
  • We don't train AI on your stories (and couldn't - they're encrypted)
  • Stories are stored until you delete them
  • We don't log your story content or AI requests
  • Private by default - only you can see your stories
  • Delete anytime - no shadow copies kept
  • No tracking cookies or creepy analytics