Privacy Policy

When you sign up for the free sample, we collect:

• Your email address — so we can send the magic-link sign-in and (with your consent below) future updates.
• Your grandchild's age band(3–5, 6–8, 9–12, mixed) — so we deliver the right sample. We never ask for the grandchild's name, photo, or any identifying detail.
• The variant slug of the lander you arrived on (e.g., feel-closer-far-away) — so we know which messaging worked.
• UTM parameters from your URL (e.g., utm_source=google_ads) — so we can measure the effectiveness of paid campaigns.
• Your IP address — used briefly for rate-limiting and abuse prevention. It is NOT stored alongside your email in our user records.

When you sign in with Google, Google additionally provides us with your name and profile picture URL. We don't use those today — only your email is read for account matching — but Google's standard OAuth response includes them.

When you submit feedback through our /feedback form, we collect the message you write, optionally your email (if you provide it), and the user-agent + referer headers that your browser sends.

• Email — to send the sign-in link, deliver the sample, and (if subscriptions ever open) to send the weekly kit.
• Age band, variant, UTM— to learn which messaging and which audience converts. This is the validation work we're doing right now.
• Feedback messages — to shape the product. Every reply is read by our team.

Your data is stored in Supabase (a Postgres database hosted in AWS US East). The infrastructure is provisioned under magpiexyz-lab; only authorized members of our team can read your records. Inside Supabase, sensitive tables (leads, feedback) are protected by service-role-only access — no anonymous or authenticated client can read them from a browser.

For analytics we use PostHog in EU mode. Your email is NOT sent to PostHog directly — we use a one-way SHA-256 hash for the distinct_id. Page-level events (page-views, button clicks) are tied to that hash only.

The site itself runs on Vercel. Vercel processes incoming requests but does not store user data beyond standard server logs (kept for ~30 days for security/abuse review).

We don't sell, rent, or trade your data with anyone. The only third parties that touch it are the infrastructure providers above (Supabase, PostHog, Vercel, Google for OAuth sign-in), each acting as a data processor under their own privacy commitments.

During validation phase: indefinitely, because we're still shaping the product based on what we learn from early signups. If and when subscriptions open, we'll publish a clearer retention schedule. You can ask us to delete your data at any time (see below).

You can ask us to:

• Show you what data we have about you.
• Correct it if it's wrong.
• Delete it.
• Stop sending you any further email.

To make any of these requests, write to us via the feedback form. Mention which you'd like and the email you signed up with. We respond within 30 days (and usually within a week).

SundayKit is designed for adult subscribers (grandparents, parents). We don't knowingly collect data about anyone under 18. The age-band field describes a grandchild's age range, not their identity — we never ask for the grandchild's name, photo, contact info, or location. If you believe a child has submitted personal information through our service, please tell us via the feedback form and we'll delete it.

We use a small set of essential cookies:

• Session cookies — set by Supabase Auth so you stay signed in between visits. HTTP-only, SameSite=Lax, ~2 weeks.
• PostHog analytics — pseudonymous device-level identifier, used to count unique sessions through the funnel.

We don't set marketing cookies, ad-network pixels, or third-party tracking on this site. The variant slug + UTM parameters live in the URL, not in cookies.

When we materially change this policy we'll update the "Last updated" date above and email anyone with an active account. For minor edits (typos, clarifications) we'll just update the date.

The fastest way to reach us is the feedback form. Every reply is read by a human on our team within a few days.