The Letter You Never Wrote

Privacy Policy

Last updated: February 13, 2026

1. Introduction

Your privacy matters to us. This policy explains what information we collect, why we collect it, and how we protect it. We built The Letter You Never Wrote to help you express love, not to harvest your data. We collect only what is necessary to generate and deliver your letter.

2. Information We Collect

  • Names. Your first name and your recipient's first name, used to personalize the letter.
  • Relationship details. Your answers to our questionnaire, including memories, qualities you admire, relationship duration, and feelings. These are used solely to generate your letter.
  • Email address. If provided, used only for letter delivery purposes.
  • Payment information. Processed directly by Stripe. We never see or store your full card number. We receive only a transaction confirmation.
  • Technical data. Standard web server logs including IP address, browser type, and timestamps. We do not use analytics cookies or tracking pixels.

3. How We Use Your Information

We use your questionnaire answers exclusively to generate your personalized letter and gift package. Specifically:

  • Your answers are sent to OpenAI's API to generate the letter text.
  • Your answers are used to generate matching wallpaper visuals.
  • Your letter and metadata are stored in our database so the recipient can view it through the share link.
  • We do not use your personal stories, memories, or letter content for marketing, advertising, or training AI models.

4. Third-Party Services

We work with the following third-party services to operate The Letter You Never Wrote:

  • OpenAI. Receives your questionnaire answers to generate the letter. API inputs are not used to train their models.
  • Stripe. Processes your payment securely. Subject to Stripe's Privacy Policy.
  • Supabase. Hosts our database where your letter data is stored.
  • Vercel. Hosts our website and processes standard request logs.

We do not sell, rent, or share your personal information with advertisers or data brokers.

5. Data Retention

Your letter data is stored so that recipients can view it through the share link. You may request deletion of your letter and associated questionnaire data at any time by contacting us. Upon receiving a deletion request, we will remove your data from our database.

6. Data Security

We use HTTPS encryption for all data in transit. Access to our database is restricted and protected. Payment data never touches our servers and is handled entirely by Stripe.

7. Cookies

We use only essential cookies required for the website to function, such as session handling. We do not use advertising cookies, analytics cookies, or third-party tracking.

8. Children's Privacy

The Service is not intended for children under 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal information, please contact us so we can remove it.

9. Your Rights

You may request access to, correction of, or deletion of your personal data at any time by contacting us at the email below. If you are located in the EU or EEA, you have additional rights under the GDPR, including the right to data portability and the right to lodge a complaint with a supervisory authority.

10. Changes and Contact

We may update this Privacy Policy from time to time. Changes will be reflected in the "Last updated" date above. If you have questions or concerns about this policy, please contact us at felipe@fliptech.dev.