Privacy Policy for FuturaEngine

FuturaEngine is an AI product focused on future-self simulations, decision planning, and chat-based experiences that help users explore possible outcomes over time. This Privacy Policy applies to the FuturaEngine website, app, user accounts, chat features, saved conversations, and related services that link to or reference this notice.

We wrote this policy to explain what personal data we process, why we process it, how privacy choices work in the product, and what rights may be available to you under laws such as the GDPR, ePrivacy rules, and state privacy laws in the United States including the CCPA/CPRA.

This policy covers FuturaEngine-controlled websites, the native mobile app, product pages, authentication flows, FutureMe chat sessions, saved conversation history, support communications, and privacy preference tools. It does not govern third-party services that may be linked from our product or used by you outside our service.

Third-party providers such as hosting, authentication, infrastructure, and AI model vendors may have their own privacy notices and contractual terms. Where those providers process personal data on our behalf, we expect appropriate safeguards and contractual protections to be used where required.

Some privacy behaviors differ by platform. The website uses browser-based technologies such as cookies where described below, while the native mobile app uses platform secure storage and local app storage instead of browser cookies for comparable session and preference functions.

Depending on how you use FuturaEngine, we may collect the following categories of data:

• Identity data, such as display name, username, or profile identifiers associated with your account.
• Contact data, such as email address and the contents of support or privacy-related communications.
• Account and authentication data, such as sign-in events, session state, auth provider identifiers, and security-related login records.
• Device and technical data, such as browser type, operating system, IP address, language, time zone, and similar connection or device metadata.
• Usage data, such as page views, product interactions, feature usage, session timestamps, and performance telemetry where enabled.
• Browser and device-local storage data, such as website consent preferences, consent-related identifiers, theme preference, secure mobile session tokens, onboarding status, and guest usage counters stored on your browser or device to keep the service working across platforms.
• Chat and conversation data, such as prompts, generated outputs, saved conversations, and content you choose to submit in the chat experience.
• Billing or payment-related data if paid plans are offered. We do not offer in-app payment processing at this time.
• Cookie and similar technology data on the website, including consent preferences, authentication cookies, security cookies, and analytics data where consent is given.
• Approximate location data inferred from IP address or network information where relevant for security, fraud prevention, or regional compliance handling.

We collect personal data from several sources:

• Directly from you when you sign up, log in, chat with FutureMe, or contact us.
• Automatically when you use the service, including through server logs, security systems, and analytics technologies that are enabled under your lawful choice.
• From service providers that support the app, such as hosting providers, authentication systems, infrastructure vendors, and AI model/API providers.

We may process personal data to:

• Create and manage user accounts and authenticate users.
• Provide chat functionality and saved conversation history for signed-in users.
• Process prompts and generate AI responses.
• Operate, secure, troubleshoot, and improve the performance and stability of the service.
• Detect abuse, spam, fraud, and security incidents, including guest usage limits.
• Respond to support requests, legal inquiries, and service-related communications.
• Meet legal obligations, enforce our terms, and maintain required records.
• Analyze usage and service effectiveness only where there is a lawful basis, including consent where required for non-essential analytics technologies.

FutureMe is an AI chat product. What happens to your chat data depends in part on whether you are signed in.

• If you are signed in, your conversations are stored in our database so they can appear in your saved chat history and be reopened later.
• If you are not signed in, guest chats are not saved to our database, but your prompts and the conversation context are still sent to OpenAI to generate responses.
• On the website, guest usage limits may be enforced with an essential cookie. On the native mobile app, the guest usage counter is stored locally on the device.
• On the native mobile app, we store a limited amount of device-local state, such as the active authenticated session, onboarding completion, theme preference, and guest quota, but guest chat transcripts are not persisted locally after the session ends.
• On the website, certain interface and consent settings are stored in browser storage so the service can remember your choices between visits.
• We may process chats for service delivery, debugging, reliability, support, abuse prevention, and safety-related review where reasonably necessary.
• Please do not include highly sensitive personal data in prompts unless it is truly necessary and you understand the associated privacy risk.
• AI-generated output can be inaccurate, incomplete, or outdated and should be reviewed by you before being relied upon for important decisions.

This app uses OpenAI for response generation. Chat submissions are sent to OpenAI and other service providers as needed to generate responses and operate the service. Those providers may apply their own retention and use terms; see their published policies for details.

FuturaEngine uses different storage technologies depending on whether you are using the website or the native mobile app. We use the following categories:

• Website essential cookies: authentication/session cookies used by Supabase, security and abuse prevention cookies, the guest usage quota cookie, and any other strictly necessary website cookies required to deliver core functionality.
• Website browser storage: consent preferences, a consent-related visitor identifier, and interface preferences such as theme selection stored in browser storage so the site can remember your choices.
• Website analytics cookies: Vercel Analytics and Speed Insights, which are treated as non-essential and should not load until consent is granted where required.
• Native mobile app local storage: iOS and Android use platform secure storage for auth session persistence and local app storage for onboarding state, theme preference, and the guest usage counter. These native storage mechanisms are not browser cookies.
• Marketing cookies or mobile advertising identifiers: not used at this time.

Website users can withdraw or change cookie choices through the cookie preferences control in the footer and certain signed-in pages. Rejecting non-essential analytics does not turn off all browser or device storage, because some storage is used for core site preferences, consent recordkeeping, security, and app functionality. The native mobile app does not include a separate cookie manager because it does not rely on browser cookies for core app storage.

On first website visit, FuturaEngine presents a consent banner with equally accessible options to accept all, reject non-essential cookies, or manage preferences. Preference categories currently include essential, analytics, functional/preferences, and marketing. At this time, analytics is the primary non-essential category affected by these choices.

When you submit a choice, the website stores the current consent record in your browser so the site can remember your selection. The website also records a server-side consent audit event with the consent timestamp, source, visitor identifier, and limited request metadata to support compliance evidence and related recordkeeping.

If you change your mind, you can reopen the website preference manager and update your settings at any time. Rejecting non-essential categories will keep analytics disabled.

We may share personal data with service providers and third parties such as:

• Hosting and infrastructure providers, including Vercel.
• Authentication and database providers, including Supabase.
• AI model and API providers, including OpenAI.
• Analytics and performance tooling providers where enabled by your consent choice.
• Security, fraud prevention, legal, or compliance recipients where reasonably necessary.
• Successors, investors, or acquirers in connection with a financing, merger, acquisition, or sale of assets.

We do not state that we “do not share data,” because using service providers to operate the app necessarily involves disclosure to processors or other recipients.

Personal data may be transferred to and processed in countries other than the country where you live, including countries where our vendors or infrastructure providers operate. Where required by law, we expect appropriate safeguards such as contractual protections to be used for cross-border transfers.

• Account data is generally retained while your account remains active.
• Saved chat history is generally retained until you delete it, close your account, or a shorter or longer retention rule applies.
• Security, fraud, and operational logs may be retained for limited periods as reasonably necessary to protect the service and comply with law.
• Consent, compliance, and similar audit records may be retained for limited periods as reasonably necessary, including after certain user actions such as account deletion where permitted or required by law.
• Backups may persist for a limited additional period before they are overwritten or aged out.

Exact retention periods may vary by data type, system architecture, legal obligations, and technical backup schedules.

Depending on where you live, you may have rights to access, correct, delete, restrict, or object to certain processing, receive a portable copy of relevant data, withdraw consent, and manage cookie preferences.

For example, you may have the right to:

• Request access to the personal data we hold about you.
• Request correction of inaccurate or incomplete information.
• Delete individual saved chats or all saved chats from the history area when signed in.
• Delete your account using the account deletion page, subject to legal exceptions.
• Object to certain processing based on legitimate interests where applicable.
• Withdraw consent for analytics cookies or other consent-based processing.
• Request data portability or export where required by law and technically feasible.
• Appeal a privacy-rights decision where required by applicable law.

For US residents, rights may include the right to know, delete, or correct personal information, and the right not to be discriminated against for exercising rights where required by law.

Some privacy actions can be started through product controls such as deleting saved chats, deleting an account, or changing analytics consent. For broader requests, including access, correction, export, or complaints, contact us using the details in the Contact section below.

FuturaEngine does not sell personal information for money. We also do not run a cross-context behavioral advertising stack in this product.

Because privacy law definitions can be broader than ordinary usage, you should not treat this statement as permanent. If FuturaEngine later introduces advertising technologies, cross-site identifiers, or sharing practices that trigger state privacy obligations, we should update this notice and provide a compliant opt-out mechanism such as a “Do Not Sell or Share My Personal Information” control where required.

We use reasonable technical and organizational safeguards designed to protect personal data, including access controls, authenticated account flows, encryption in transit where supported by our providers, monitoring, and least-privilege principles where appropriate.

No method of transmission, storage, or security control is 100% secure. You should use a strong password and exercise care when deciding what to place into an AI chat system.

FuturaEngine is not intended for children under 13, and it is not directed to children in jurisdictions where a higher age threshold applies. If you believe a child has provided personal data to us without appropriate authorization, contact us so we can review and take appropriate action.

FuturaEngine uses automated processing to generate AI responses and may use automated rules or signals for moderation, abuse detection, rate limiting, and service protection. These systems may influence whether content is returned, limited, or reviewed.

This policy does not promise human review rights in every case. If applicable law gives you a right to request review or contest certain decisions, contact us and we will assess the request under the relevant law.

We may update this Privacy Policy from time to time to reflect product changes, legal developments, or operational needs. If we make material changes, we may notify users through the service, by email, or by other appropriate means.

The “Last updated” date at the top of this page shows when this version was last revised.

For privacy questions, rights requests, or complaints, contact FuturaEngine at futuraengine1@gmail.com.

When submitting a privacy request, please describe the request in enough detail for us to verify and respond appropriately. You may also identify the account email tied to your request.