Privacy

Anchor is operated by Aya Labs B.V., a private company registered in the Netherlands (KvK to be added). Our registered address and contact details can be requested via hello@talkanchor.com. For the purposes of EU/UK data protection law (GDPR/UK GDPR), Aya Labs B.V. is the data controller of the personal information described below.

We collect only what we need to make the product work and to keep it safe. Specifically:

• Account data, your email address, your chosen display name, your time zone, and your preferred coach voice.
• Phone number, if you opt in to phone calls, we store your number in international (E.164) format, the timestamp at which you gave consent, and whether you've completed SMS verification.
• Call data, for every call you have with an Anchor coach, we store a transcript of the conversation, the duration, an optional 1-5 mood reading you provide, and a short two-line summary generated by an AI model.
• Tasks, notes, and memories, what you said you wanted to do, what you marked done, and behavioral patterns we observed (e.g. “you finish faster after a morning call”).
• Subscription and payment data, handled by our payment processor; we receive only the status of your subscription, not your card details.
• Operational logs, anonymized error reports and crash traces, used to keep the product running. We do not associate these with individual identities beyond what's necessary to resolve an issue. Product analytics (Amplitude) are described separately below and are gated by your consent.

We use your data to:

• Make and receive the calls you've signed up for.
• Extract priorities and memories from each call so the next call knows what you finished and what's still on your plate.
• Operate, debug, and improve the product (including monitoring for fraud and abuse).
• Send you transactional emails (sign-in links, receipts).
• Comply with applicable laws, including responding to lawful requests from authorities.

We do not sell your personal data. We do not use your call transcripts to train third-party AI models that we don't control. We do not run targeted advertising against your data.

Under GDPR, our legal bases for processing your data are:

• Performance of a contract, to deliver the Anchor product you signed up for.
• Consent, for outbound phone calls (you opt in on the Coach screen and can withdraw at any time) and for non-essential cookies / analytics (you opt in via the cookie banner the first time you visit, and can withdraw any time from Cookie preferences in the footer or on the You page).
• Legitimate interests, for fraud prevention, security, and product improvement, balanced against your rights.
• Legal obligation, to meet tax, accounting, and similar requirements.

We use the following third-party processors. They each have their own privacy commitments and data processing agreements with us:

• Supabase (database, authentication, file storage), hosted in the United States.
• ElevenLabs (voice synthesis and the conversational AI agent), United States. Call audio and transcripts flow through their systems during a call.
• Twilio (telephony bridge for phone calls), United States. Twilio handles call setup, ringing, and the audio stream to/from your phone.
• OpenAI (post-call structured extraction of priorities and memories), United States.
• Anthropic (pattern synthesis for behavioral memory), United States.
• Stripe and RevenueCat (payments), United States.
• Amplitude (product analytics), hosted in the European Union region. Only loaded after you grant consent in the cookie banner.
• Resend (transactional email, sign-in links and email-change confirmations), Sentry (error tracking), Vercel (web hosting), Cloudflare (network edge).

Transfers of personal data to the United States are governed by Standard Contractual Clauses (SCCs) and, where applicable, the EU-US Data Privacy Framework.

We use the minimum number of cookies we can get away with, in two buckets:

• Strictly necessary, sign-in cookies (so you stay logged in), security tokens (so forms can't be forged against you), and small preferences like your saved timezone. These are set without asking, because the product literally cannot work without them. They are first-party only.
• Analytics, Amplitude, hosted in the European Union, used so we can see which parts of Anchor people find and which ones lose them. Never loaded until you click Accept all or toggle Analytics on in Cookie preferences. If you click Reject all, no Amplitude script is downloaded, no Amplitude cookies are set, and no events are sent, for as long as that decision stands.
• Error tracking, Sentry, used purely to capture crashes so we can fix them. Runs on a legitimate- interest basis (GDPR Recital 49: keeping a service running securely) so we don't gate error capture on your consent. Sentry's performance-tracing feature, the part that would measure how you move through pages, IS gated on your analytics consent, same as Amplitude.

You can change your mind at any time: open Cookie preferences. The link lives in the footer of every page, and on the You page under Privacy when you're signed in. Withdrawing consent is as easy as giving it, per GDPR Art. 7(3).

We do not use cookies for cross-site advertising, third-party retargeting, or social-media pixels.

We retain your data for as long as your account is active. When you delete your account:

• Account data, tasks, memories, and call transcripts are deleted within 30 days.
• Anonymized operational logs may be retained for up to 90 days for security and debugging purposes.
• Financial records (invoices, subscription history) may be retained for up to 7 years to comply with Dutch tax law.

Depending on where you live, you may have the right to:

• Access the personal data we hold about you.
• Correct inaccurate data.
• Delete your data (“right to be forgotten”).
• Export your data in a portable format.
• Withdraw consent for phone calls at any time (you can do this in the Coach screen, or by contacting us).
• Withdraw consent for analytics cookies at any time, open Cookie preferences.
• Object to processing based on legitimate interests, or restrict it.
• Lodge a complaint with your local data protection authority. In the Netherlands, that's the Autoriteit Persoonsgegevens (autoriteitpersoonsgegevens.nl).

To exercise any of these rights, email hello@talkanchor.com. We respond within 30 days.

We encrypt data in transit (TLS) and at rest. Access to production systems is limited to operational staff and audited. Authentication uses one-time email links rather than passwords.

No system is perfectly secure. If we discover a breach affecting your personal data, we will notify you and the relevant authority within the timeframes required by law.

Anchor is not for users under 18. We do not knowingly collect data from minors. If you believe a minor has signed up, contact us and we will delete the account.

If we make material changes to this policy, we will let you know by email at the address associated with your account, at least 14 days before the changes take effect.

For anything privacy-related, email hello@talkanchor.com. Also see our Terms of Service and Phone Calling Disclosure.