Privacy Policy

Last Updated: January 2026

GriotsWell collects minimal data necessary to provide services. We don't sell your data. We don't track you across the internet. We don't use creepy advertising practices.

Information We Collect

Account Information

  • Email address (required for login and communication)
  • Password (encrypted, we can't see it)
  • Name (optional, for personalization)

Payment Information

Processed by Stripe:

  • We don't store credit card numbers
  • Stripe handles all payment data securely
  • We receive only confirmation of successful payment
  • Billing history stored for accounting

Content You Create

Your story projects: Structure responses, wizard inputs, exported files, saved projects

You own this content. We just store it.

What We DON'T Collect

  • No tracking cookies: Minimal cookies for login sessions only. No advertising trackers.
  • No behavioral profiling: We don't build profiles of your browsing habits.
  • No location tracking: We don't track your physical location.
  • No social media surveillance: We don't monitor your social media activity.
  • No selling data: We don't sell, rent, or trade your data. Ever.

How We Use Information

Provide Platform Services: Process your login, save your projects, enable exports, sync across devices, generate AI content

Process Payments: Via Stripe (secure payment processor), billing confirmation, subscription management

Send Account Communications: Account confirmation emails, password reset links, important service updates, billing notifications

Improve Platform: Fix bugs and errors, understand which features used most, optimize performance. All usage data anonymized for improvement purposes.

Information Sharing

We Don't Sell Your Data. Ever.

Your information never sold, rented, or traded to third parties.

We Share Only With:

  • Stripe (Payment Processor) - Processes credit card payments, handles billing
  • Hosting Provider - Hosts website and backend, stores encrypted data
  • Legal Requirements - Valid legal process, government investigations, protecting rights

Your Rights & Choices

Access Your Data: Request copy via privacy@griotswell.com

Export Your Projects: Account → Settings → Export All Data

Correct Your Data: Update anytime in Account Settings

Delete Your Account: Account → Settings → Delete Account. All data deleted within 30 days. Cannot be recovered after deletion.

Opt Out of Marketing Emails: Click "unsubscribe" in any marketing email

Data Security

Encryption: HTTPS everywhere, passwords hashed, payment data encrypted by Stripe, data encrypted at rest

Access Controls: Minimal employee access to data, need-to-know basis only, no customer service access to passwords

Regular Security: Software updates applied promptly, security patches implemented, monitoring for vulnerabilities

No system is 100% secure. We use industry-standard practices but can't guarantee absolute security. You're responsible for password security.

Privacy Questions?

Email: privacy@griotswell.com

We'll respond within 48 hours