Privacy Policy.

Ghost is operated by Angry Gods Holdings, LLC (“Angry Gods,” “we,” “us”), a Delaware limited liability company. We are the data controller for information collected through Ghost. You can reach us at hello@angrygods.com for any privacy question or request.

This policy covers the marketing site at angrygods.com, the Ghost dashboard at ghost.angrygods.com, the mobile companion at ghost.angrygods.com/m, and any other surface we make available. It does not cover external services we link to — those have their own privacy policies.

We do not train AI models on Your Content. Strategy material you upload or generate in Ghost is passed to AI providers only to produce the specific output you requested. Our AI providers contractually do not retain or train on API traffic. (See subprocessor list below for specifics.)

We do not sell your data. Not to advertisers, not to data brokers, not to anyone. We share data only with the specific subprocessors required to operate the platform, and only to the extent each subprocessor needs it.

You can export and delete. Your deliverables export to standard formats (PowerPoint, PDF, Word, HTML) any time. You can request account and data deletion by email; we action it within thirty (30) days.

Ghost is hosted SaaS. By using Ghost you are uploading data to a hosted platform that, in turn, transmits portions of that data to third-party AI services for processing. If your client agreement prohibits sending their content to hosted AI tools, do not upload it to Ghost. Reading and complying with your client agreements is your responsibility.

Account information

• Name, email address, OAuth profile details (when you sign in via Google).
• Application information (your application form: company, LinkedIn, “why Ghost”).
• Optional profile fields you provide: title, bio, timezone.

Strategy content (Your Content)

• Brand and engagement metadata. Brand names, industries, descriptions, engagement names, goals.
• Uploaded files. Documents (PDF, DOCX, CSV, XLSX), images, audio for voice captures. Stored in Vercel Blob with private access.
• Chat messages. Your prompts and Ghost’s responses, stored keyed to the engagement and the tool.
• Generated deliverables. The structured outputs Ghost produces (positioning statements, message houses, taglines, decks, etc.) and their version history.
• Receipts data. Decisions you made on option cards, citations Ghost captured, model receipts (which model, how long), verdicts you stamped.
• Captures. Voice memos and field notes you capture via the mobile companion. Audio is sent to Groq for transcription, then stored as text alongside the audio file.

Usage and operational data

• Sign-in events, page views, feature interactions, error logs.
• IP address, user agent, device type, browser. We use this for security, analytics, and rate-limiting.
• AI usage metrics: tokens consumed, model invoked, generation duration. Per-user and per-engagement, used for capacity planning and cost tracking.
• Feedback you file via the in-app “Report a glitch” affordance: kind, message, page you were on.

Cookies and similar

We use cookies and equivalent storage strictly for service operation: a session cookie managed by our authentication provider (Clerk), a CSRF token, and small functional flags such as whether you’ve dismissed the mobile-detected banner. We do not use advertising cookies, and we do not load third-party analytics that fingerprint or retarget visitors. The marketing landing page may use first-party analytics (page-view counts only) for product decisions; this can be disabled by setting your browser’s “Do Not Track” signal.

• To provide the service. Run AI generation, store engagements, authenticate sessions, render deliverables.
• To secure the service. Detect abuse, investigate incidents, enforce rate limits, prevent fraud.
• To support you. Respond to your in-app feedback or email questions, and (with least-privilege access) help diagnose issues you report.
• To improve Ghost. Look at aggregate usage patterns, error rates, and performance to make the platform better. Where we look at specific Your Content for this purpose (e.g., investigating a bug you reported), we do so on a least-privilege basis with your knowledge.
• To comply with law. Respond to valid legal process and regulatory obligations.

The lawful bases on which we rely (where applicable, e.g., GDPR / UK GDPR) are: contract (running the service you signed up for), legitimate interest (security, fraud prevention, product improvement on aggregate data), consent (where you affirmatively opt-in to a feature), and legal obligation (where required by law).

We share Your Content with subprocessors only to the extent each one needs it to deliver its part of Ghost. Each subprocessor is bound by a contract that limits their use of the data to providing the service to us.

We do not transmit Your Content to any third party other than the subprocessors above and as required by valid legal process.

Within Ghost. Strategists in your tenant (your organization or agency) may see brands you create as “visible” — Ghost is built for collaborative consultancies, so brand records within a tenant are tenant-shared by default. Your engagements default to Private (only you and admins see them) unless you explicitly mark them Shared. See the engagement settings panel for the current visibility state.

Legal compliance. We may disclose information if we are compelled by subpoena, court order, or other valid legal process; to protect the safety, rights, or property of Ghost, our users, or the public; or to investigate fraud or security incidents. Where lawful, we will notify you of any government request for your data.

Aggregate or anonymized data. We may share aggregate or de-identified statistics that don’t identify you or any individual.

Business transfers. If Angry Gods Holdings, LLC is acquired or merges with another entity, your data may transfer to the acquirer subject to the same protections as this policy. We will notify you before any such transfer.

Most of our subprocessors are based in the United States. If you are accessing Ghost from outside the United States, your data will be transferred to and processed in the US. Where required (e.g., transfers from the EEA, UK, or Switzerland), we rely on standard contractual clauses or other lawful transfer mechanisms with our subprocessors.

We are not currently certified under EU-US Data Privacy Framework. If your use case requires that, contact us before uploading regulated data — we’ll tell you whether our current setup meets your requirements.

We keep Your Content for as long as your account is active and for a reasonable period afterward to allow you to recover work. Specifically:

• Active account. Engagement data, deliverables, chat history, uploads, captures, decisions, citations, productions, and verdicts are retained for the life of the account.
• Account deletion request. On request to hello@angrygods.com, we delete your account and associated content from active databases within thirty (30) days. Encrypted database backups containing your content are purged within ninety (90) days.
• Logs and operational data. Application logs containing IP, user agent, and request metadata are retained for up to ninety (90) days for security and debugging.
• Email records. Transactional emails are retained by Resend per their default retention (typically thirty (30) days for non-bounce records).
• Feedback submissions. Bug reports, ideas, and questions you file in-app are retained as long as they remain useful for product improvement, typically indefinitely. You can request deletion.
• Beta-application records. If you applied to the beta and were not admitted, we retain your application for twelve (12) months in case we re-review or re-open spots, then delete it.

We may retain limited records longer when legally required or when needed to defend against legal claims.

Depending on where you live, you may have rights under applicable data-protection law. Where they apply, we will honor them. The main rights are:

• Access. Get a copy of the personal data we hold about you.
• Correction. Ask us to correct inaccurate or incomplete data.
• Deletion. Ask us to delete your personal data. (Some data may persist in backups for up to ninety (90) days, and limited records may be retained where required by law.)
• Export / portability. Get your strategy work in a structured, commonly used format. Deliverables export to PowerPoint, PDF, Word, and HTML; raw engagement data is exportable on request.
• Restriction. Ask us to limit how we process your data in certain circumstances.
• Objection. Object to processing based on legitimate interest.
• Withdraw consent. Where we rely on consent (e.g., voice captures), withdraw it without affecting prior processing.
• Lodge a complaint. File a complaint with your local data-protection authority. We’d prefer you give us a chance to fix the issue first — email hello@angrygods.com.

To exercise any of these rights, email hello@angrygods.com with the subject “Data rights request — Ghost”. We may need to verify your identity before actioning the request.

California residents. Under the CCPA / CPRA, you have rights to know, delete, correct, and limit the sale or sharing of your personal information. We do not sell or share personal information for cross-context behavioral advertising.

We protect Your Content with the security measures we believe are appropriate for the beta phase. These include:

• Encryption in transit (TLS 1.2+) for all traffic between your browser and Ghost, and between Ghost and our subprocessors.
• Encryption at rest for our primary database (Neon) and for uploaded files (Vercel Blob, private access only).
• Access controls: tenant-scoped data access enforced at the API layer, role-based access control (Strategist / Admin / Super-Admin), and audit logging for sensitive admin actions.
• Secret management: API keys and credentials stored in Vercel’s encrypted environment-variable store, never committed to source control.
• Authentication via Clerk with strong password requirements and OAuth options; multi-factor authentication is supported.
• Rate limiting and idempotency on AI-generation endpoints to prevent abuse and duplicate work.

No system is perfectly secure. If we ever experience a security incident affecting your data, we will notify affected users without undue delay and as required by law. To report a security concern, email hello@angrygods.com with subject “Security — Ghost”.

Ghost is not intended for users under 18. We do not knowingly collect personal information from anyone under 18. If you believe a minor has provided us personal information, email hello@angrygods.com and we will delete it.

Ghost is not configured to handle the following categories of data, and you must not upload them:

• Protected Health Information (PHI) regulated by HIPAA. Ghost is not a HIPAA-compliant covered entity or business associate.
• Payment card data subject to PCI-DSS (full card numbers, CVVs, etc.).
• Government-classified information of any nation.
• Information you don’t have lawful authority to share, including content covered by legal privilege without proper handling.

If your client work involves any of these categories, do not use Ghost for that work. Reach out before uploading and we’ll discuss whether a future plan can serve your requirements.

We may update this policy from time to time. The effective date at the top reflects the latest revision. For material changes, we will give reasonable advance notice (typically thirty days) by email or in-app notice and, where required, ask for your renewed consent. Continued use of Ghost after the effective date constitutes acceptance of the updated policy.

For any privacy question, request, or concern:

Angry Gods Holdings, LLC
Attn: Privacy — Ghost
hello@angrygods.com