ToastBuddy

Effective May 24, 2026

Privacy Policy

This policy explains what ToastBuddy collects, why it is used, which providers help process it, and what choices you have.

1. Scope and controller

This Privacy Policy explains how ToastBuddy collects, uses, discloses, and protects personal information when you visit toastbuddy.com, use the ToastBuddy voice-first coaching service, generate drafts, buy a final output, contact support, or interact with our analytics and marketing systems.

For purposes of this Privacy Policy, ToastBuddy, we, us, and our mean the operator of toastbuddy.com. You means the person who visits or uses ToastBuddy. If you use ToastBuddy for another person, you are responsible for having the right to provide information about that person.

2. Information we collect

Information you provide

  • Session setup information, such as the type of toast, speech, letter, or song brief you want, recipient names, your name if you provide it, desired tone, desired length, moment context, and background context.
  • Voice conversation content, including transcripts, memory cards, themes, story details, draft lines, final drafts, generated output, edits, text fallback messages, and other content you submit or generate through the service.
  • Contact information, such as your email address when you save a session, continue after the free teaser, request delivery of a final output, or contact support.
  • Payment-related information, including selected tier, checkout state, Stripe checkout session ID, payment status, amount, currency, and purchase metadata. ToastBuddy does not collect or store full payment card numbers.
  • Support communications, including your messages, requests, attachments if any, and information needed to troubleshoot or respond.

Information collected automatically

  • Device and usage information, such as pages viewed, buttons clicked, session events, voice connection events, draft generation events, checkout events, timestamps, approximate location from IP address, browser type, referring URLs, and error or performance information.
  • Cookie and local identifier information, including a ToastBuddy anonymous ID cookie, analytics identifiers, attribution parameters, and advertising or measurement identifiers where enabled.
  • Conversation progress information, such as elapsed seconds, stage changes, transcript word counts, memory-card counts, and completion signals used to operate the product and understand the funnel.

Information from third parties

  • Payment confirmation and checkout details from Stripe.
  • Email delivery and support status from Resend or other email providers.
  • Analytics, attribution, and advertising measurement data from tools such as PostHog, Google, and Meta when those tools are enabled.
  • Technical processing results from AI and infrastructure providers that help us power voice, transcription, draft generation, hosting, database storage, and security.

3. Voice, transcripts, and AI processing

ToastBuddy is a voice-first service. When you choose to use voice features, your browser may ask for microphone permission and audio may be transmitted to AI service providers so the service can understand your conversation, respond in real time, create transcripts, extract memory cards, and generate drafts.

ToastBuddy intentionally stores transcripts, memory cards, drafts, email, payment state, and analytics events. ToastBuddy does not intentionally store raw audio recordings, voice embeddings, or biometric identifiers in the MVP product. If an AI or infrastructure provider temporarily processes audio or related technical data to deliver the service, that processing is handled under that provider relationship and data handling terms.

Do not submit highly sensitive information, secrets, medical details, financial account details, government identifiers, confidential business information, or information about another person unless it is necessary for your requested output and you have the right to provide it.

4. How we use information

  • Provide, operate, maintain, secure, and improve ToastBuddy.
  • Create and manage sessions, transcripts, memory cards, previews, final drafts, cue cards, share pages, and related outputs.
  • Personalize the voice coaching flow, remember session context, and generate content that matches your stated purpose, tone, and length.
  • Process checkout, fulfill purchases, send final outputs or support emails, and keep payment and delivery records.
  • Measure product performance, conversion, feature usage, acquisition sources, and campaign effectiveness.
  • Detect, prevent, investigate, and respond to fraud, abuse, security incidents, policy violations, bugs, and technical failures.
  • Comply with legal, tax, accounting, chargeback, consumer protection, and dispute-resolution obligations.
  • Communicate with you about your session, purchase, support request, updates to the service, and administrative notices.

5. Cookies, analytics, and advertising measurement

ToastBuddy uses cookies and similar technologies to keep an anonymous session identifier, remember attribution information, measure page views and events, understand product usage, and improve marketing performance.

Analytics and advertising tools may receive limited identifiers, browser information, event names, timestamps, URLs, attribution parameters, hashed contact information where supported, and purchase or lead-event metadata. These tools help us understand whether ads, search, social posts, or other campaigns are working.

You can control cookies through your browser settings. Blocking cookies may cause some product features, attribution, saved sessions, checkout continuity, or analytics measurement to work less reliably.

6. How we disclose information

We disclose personal information only as needed for the purposes described in this Privacy Policy, with safeguards appropriate to the service and the type of information.

  • Service providers and processors: hosting, database, AI, transcription or model processing, analytics, email, payment, security, logging, support, and operations providers.
  • Payment processors: Stripe and related financial partners process payments, fraud checks, disputes, refunds, tax, and compliance records.
  • Analytics and advertising partners: PostHog, Google, Meta, and similar tools may receive usage and event data for measurement, attribution, conversion tracking, and advertising optimization where enabled.
  • Legal and safety recipients: courts, regulators, law enforcement, professional advisers, counterparties in a dispute, or other parties when we believe disclosure is required or appropriate to comply with law, enforce rights, protect users, or prevent harm.
  • Business transfers: a successor or prospective successor in connection with a merger, acquisition, financing, reorganization, sale of assets, or similar transaction, subject to appropriate confidentiality and legal protections.
  • At your direction: recipients you choose, such as when you email or share a final output or private share page.

7. Sale, sharing, and targeted advertising

We do not knowingly sell your transcripts, memory cards, drafts, final outputs, or payment records for money. Some privacy laws define sale, sharing, or targeted advertising broadly to include disclosures of identifiers or usage events to advertising and analytics partners.

Where our use of tools such as Meta, Google, or similar partners is considered sale, sharing, or targeted advertising under applicable law, you may request an opt-out by emailing support@toastbuddy.com with the subject line Privacy Opt-Out. We will process legally required opt-out requests using the information reasonably available to us.

8. Retention

We retain personal information for as long as reasonably necessary to provide the service, maintain your session, deliver purchased outputs, support customers, secure the product, analyze performance, comply with law, resolve disputes, enforce agreements, and keep business records.

Anonymous session identifiers may remain for up to one year unless deleted earlier. Payment, tax, chargeback, abuse-prevention, and support records may be retained longer where necessary. Backups and logs may persist for a limited period after active deletion.

9. Security

We use reasonable administrative, technical, and organizational safeguards designed to protect personal information, including access controls, secure provider configurations, HTTPS transport, limited service-role use, and operational monitoring. No internet service, AI system, or database can be guaranteed to be completely secure.

You are responsible for using a secure device, protecting access to your email, and not sharing private session or share links with people who should not see your content.

10. Your choices and rights

Depending on where you live, you may have rights to request access, correction, deletion, portability, restriction, objection, or opt-out of certain processing. You may also have the right to appeal a denied request. To exercise privacy rights, email support@toastbuddy.com and describe the request.

We may need to verify your identity before acting on a request. We may decline or limit a request where permitted by law, such as when retention is required for security, fraud prevention, legal compliance, tax, accounting, dispute, or transaction records.

  • Marketing emails: use any unsubscribe mechanism provided or email support@toastbuddy.com.
  • Cookies and tracking: adjust browser settings or privacy controls, understanding that the product may work less reliably.
  • Session content: ask us to delete or export reasonably identifiable session content by emailing support@toastbuddy.com with enough information to locate the session.
  • Opt-out of sale, sharing, or targeted advertising: email support@toastbuddy.com with the subject line Privacy Opt-Out.

11. Children and teens

ToastBuddy is not directed to children under 13, and we do not knowingly collect personal information from children under 13. If you believe a child under 13 provided personal information, contact support@toastbuddy.com so we can take appropriate action.

If you are under the age of majority where you live, you may use ToastBuddy only with involvement and permission from a parent or legal guardian.

12. International processing

ToastBuddy is operated from the United States and uses service providers that may process information in the United States and other countries. Those countries may have privacy laws that differ from the laws where you live.

13. Do Not Track

Some browsers send Do Not Track signals. There is no uniform industry standard for responding to those signals. ToastBuddy responds to legally required opt-out requests as described in this Privacy Policy.

14. Changes to this Privacy Policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the effective date and provide additional notice when required by law. Your continued use of ToastBuddy after an updated policy becomes effective means the updated policy applies to your use going forward.

15. Contact

For privacy questions, requests, or concerns, contact ToastBuddy at support@toastbuddy.com.