Skip to content
Avolve
Sign In

Privacy Policy

Last updated: May 2, 2026

1. Who we are

Avolve is operated by Avolve, LLC, a Delaware limited liability company. This policy describes how we collect, use, and share your personal information when you use the platform.

2. Information we collect

  • Account information: your name, email address, and profile details you provide.
  • Content you create: genius entries, chat messages, and other inputs you submit while using the platform.
  • Billing information: when you subscribe, our payment processor (Stripe) collects payment details. We do not store full card numbers; we receive limited tokenized references and metadata such as the last four digits, brand, and expiration.
  • Usage data: event logs, device and browser information, IP address, and interaction patterns used to operate and improve the service.
  • Cookies and similar technologies: we use essential cookies for authentication and session management. We do not use third-party advertising cookies.

3. How we use your information

We use your information to provide and maintain the platform, process transactions, communicate with you about your account, improve the service, and meet legal obligations. We do not sell your personal information, and we do not share it for cross-context behavioral advertising.

4. Service providers we share data with

We share data with the following processors strictly to operate the service:

  • Vercel — hosting and content delivery
  • Supabase — database, authentication, and file storage
  • Stripe — payment processing and subscription billing
  • Resend — transactional email delivery
  • Anthropic — AI inference for in-product helpers
  • LiveKit — real-time voice and video for game features that use them
  • Google Cloud (via Vercel AI Gateway) — embeddings for content search and semantic features

Each processor handles only the data needed for its function and is bound by its own privacy and security commitments. We may also disclose information when required by law, to protect rights and safety, or in connection with a corporate transaction (for example, a merger or acquisition).

5. Your rights

You may access, correct, export, or delete your personal information at any time through your account settings, or by contacting privacy@avolve.io. We will respond within the timeframes required by applicable law.

6. California privacy rights (CCPA / CPRA)

If you are a California resident, you have the right to know what personal information we collect and how it is used; the right to request deletion or correction of your personal information; the right to opt out of any sale or sharing of personal information (we do not sell or share for cross-context advertising); the right to limit the use of sensitive personal information; and the right to be free from retaliation for exercising your rights. To exercise any of these rights, email privacy@avolve.io.

7. European privacy rights (GDPR / UK GDPR)

If you are in the European Economic Area, the United Kingdom, or Switzerland, you have the right to access your personal data; correct, delete, or restrict its processing; object to processing; and request data portability. We process personal data on the following lawful bases: performance of a contract (to provide the service), legitimate interests (to operate, secure, and improve the platform), consent (where required), and compliance with legal obligations. You may lodge a complaint with your local supervisory authority. Contact privacy@avolve.io to exercise these rights.

8. Other US state privacy rights

Residents of states with comprehensive privacy laws — including Virginia, Colorado, Connecticut, Utah, Texas, Oregon, Montana, Iowa, Tennessee, Indiana, Florida, Maryland, Minnesota, New Jersey, Delaware, New Hampshire, Kentucky, Rhode Island, and others as they take effect — have rights similar to those described above, including access, correction, deletion, and opt-out of targeted advertising or profiling. Email privacy@avolve.io to exercise any state-specific right.

9. Data security

We implement industry-standard administrative, technical, and physical security measures to protect your data, including encryption in transit and at rest, row-level security on stored content, and least-privilege access for employees and processors. No method of transmission or storage is completely secure; disclosure of any incident affecting your personal information will be made in accordance with applicable law.

10. Data retention

We retain your account and content while your account is active. When you delete your account, we delete your personal information within 30 days, except where we are required to retain certain records (for example, billing and tax records) for longer periods under applicable law. Backups containing personal information are retained for up to 30 days, after which they expire. Aggregated and anonymized data, which cannot identify you, may be retained indefinitely.

11. International data transfers

Avolve and its processors operate primarily in the United States. If you access the service from outside the United States, your information will be transferred to and processed in the United States. Where applicable, we rely on standard contractual clauses and other lawful transfer mechanisms.

12. Children's privacy

Avolve is not directed to children. We do not knowingly collect personal information from anyone under 16. If you believe a child under 16 has provided us with personal information, contact privacy@avolve.io and we will delete it.

13. Changes to this policy

We may update this privacy policy from time to time. For material changes, we will notify you in advance by email or through the platform. The “Last updated” date at the top of this page reflects the most recent revision.

14. Contact

For privacy questions or to exercise your rights, email privacy@avolve.io. For other inquiries, see our Contact page.