Effective date
This policy is effective as of March 9, 2026.
Legal
Privacy policy
This page explains what data Founda collects and how we handle it while supporting your founder workflow.
TodayTasksRoadmapReview
1. Information we collect
Founda stores account details such as your name, email address, password hash, and account preferences. If you sign in with Google, we also store your Google account identifier and the profile details Google returns to us, such as your name and email address. We also store workspace data such as product context, roadmap and task data, daily check-ins, weekly reviews, PM chat history, voice call outputs, uploaded source material, website snapshots, billing state, and security events such as login device metadata.
2. How we use data
We use your data to create and secure your account, run the product, generate PM assistant outputs, support voice and file-based workflows, send account and product emails, process billing, and improve reliability and product quality. Private task notes remain founder-only and are not used as AI assistant context.
3. Google sign-in data
If you choose Google sign-in, Founda uses the Google account data returned during authentication only to sign you in, create or link your Founda account, secure access, and personalize your account profile. Founda does not use Google user data for advertising and does not request access to Gmail, Google Drive, Google Calendar, or other Google data beyond basic sign-in profile information.
4. AI, uploads, and voice
When you use AI features, Founda may send relevant workspace context, uploaded source material, website snapshots, PM chat prompts, task or roadmap context, founder-shared task context, and voice inputs to AI providers to generate responses. Only the data required to fulfill the requested feature is sent. Private task notes remain excluded from AI PM context.
5. Third-party services
Founda uses third-party providers to operate the service, including Google for sign-in, OpenAI for AI, voice, and document understanding features, Brevo for email delivery, Lemon Squeezy for billing, and analytics providers such as PostHog for product usage and reliability metrics. These providers process only the data needed for the specific function they support.
6. Security practices
Sensitive authentication flows use signed tokens, expiring verification links, hashed OTP codes, and device-aware login alerts. Login and password-change events may generate security notifications based on your profile settings.
7. Cookies and analytics
Founda uses essential cookies to keep you signed in, remember your active workspace, and maintain core product behavior. Founda also uses product analytics and operational monitoring to understand usage, measure reliability, and improve activation, retention, and product quality. Founda does not use advertising cookies.
8. Data retention and deletion
Workspace and account data are retained while your account is active, unless a shorter retention period is required for a specific feature or a longer period is required for legal, accounting, fraud-prevention, or security reasons. You can request account deletion and related data removal by contacting support.
9. Your rights
Depending on your location, you may request access, correction, export, or deletion of your personal data by contacting us.
10. International processing
Your data may be processed in countries where our service providers operate, subject to applicable legal safeguards.
11. Contact
For privacy questions, contact: hello@tryfounda.com