ENCODED Privacy Policy

Effective March 2026 · Last updated March 9, 2026

The Short Version

At ENCODED, privacy, confidentiality, and trust are our top priority. We invest the time, resources, and effort to ensure your personal information is protected with industry-standard encryption and current best practices. Here's our commitment to you:

Your data is encrypted. All personal data is encrypted at rest using AES-256 with keys unique to you.

Never shared for AI training. Your personal data is never shared with or used to train third-party AI models.

You own your data. View what we hold, export your content, or request deletion. Any time.

We can't browse it. Our team cannot access your personal data. Access requires written explicit permission and is logged.

No selling, no sharing. We don't sell your data. We don't share it with advertisers, data brokers, or marketing partners.

Zero Data Retention on AI processing. Our AI processing partners do not use your data for model training, and retention is limited to what is necessary for service delivery.

Contents

  1. What We Collect
  2. How We Protect It
  3. AI Processing and Third Parties
  4. How We Use Data to Improve ENCODED
  5. Your Rights and Controls
  6. What We Don't Do
  7. Data Retention
  8. Security Practices
  9. Children's Privacy
  10. Changes to This Policy
  11. Contact

1. What We Collect

We collect only what is necessary to deliver your Frequency Training experience. Here is every category of data we handle and why.

Account Information

When you sign up, we collect your name, email address, and payment information. This is used to manage your account and billing.

Frequency Mapping Data

When you complete a Frequency Mapping, you provide self-assessments across 10 life dimensions. This data is used to generate your personalized training plan and to track your progress over time. This is the most personal data we hold, and it receives the highest level of protection.

Training Behavior Data

We track how you engage with your training: completion rates, consistency, time spent per session, and progression through sequences. This helps us personalize your experience and improve the product.

Outcome Data

Over time, we correlate your training behavior with outcomes to understand what is working and to refine your plan. This data is also used in anonymized, aggregated form to improve ENCODED for all users (see Section 04 for exactly how this works).

2. How We Protect It

Your Frequency Mapping data contains deeply personal information about your identity, beliefs, and patterns. We protect it accordingly.

Protection Layer What It Means
Encryption at rest All personal data is encrypted using AES-256 when stored in our databases. If someone were to gain unauthorized access to our database, they would see encrypted data, not your personal information.
Encryption in transit All data moving between your device and our servers is encrypted using TLS, the current standard for transport security.
Per-user encryption keys Your personal data is encrypted with a key unique to your account, managed through a dedicated key management service.
Access controls Our team operates on a strict need-to-know basis. No one at ENCODED can browse your personal data. Any access requires written explicit permission and is logged.
Audit logging Every access to personal data is recorded: who accessed it, when, and why. These logs are reviewed regularly.

3. AI Processing and Third Parties

ENCODED uses AI to analyze your Frequency Mapping data, extract patterns, and generate personalized insights. This is core to how the product works. Here is exactly how that process handles your data.

How AI processing works

When you initiate a Frequency Mapping session, your data is processed through our AI engine to extract beliefs, map patterns, and generate your personalized training plan. This requires sending data to AI model providers for processing.

What we do before sending data to AI

Before your data reaches any AI model, we strip direct identifiers. The AI does not see your name, email, or account ID. It processes anonymized content to generate insights, which are then re-associated with your account on our servers.

Our agreements with AI providers

We maintain agreements with every AI provider that processes your data. These agreements require that your data is not used to train, fine-tune, or improve the provider's AI models. Your data is processed and not retained for purposes beyond delivering the service.

Other service providers

We use third-party services for infrastructure, including hosting, databases, and email delivery. Each provider that handles personal data is bound by appropriate agreements and is required to meet our security standards. We do not share your data with advertising platforms, data brokers, or marketing partners.

4. How We Use Data to Improve ENCODED

This is an important section. We want to be precise about how data is used within ENCODED's own systems.

What we never do

Your personal data is never shared with third-party AI providers for model training. Your Frequency Mapping results, belief extractions, and personal records are never sent to any outside company for the purpose of improving their AI. This is absolute.

How ENCODED improves over time

ENCODED uses anonymized, de-identified data to improve its own systems and personalization algorithms. Here is what that means in practice.

When we say "anonymized," we mean all direct identifiers (your name, email, account ID) are removed. The result is a dataset where no individual user can be identified.

We use this anonymized data to make ENCODED's AI more accurate at belief extraction, pattern diagnosis, and personalization over time. This data never leaves the ENCODED ecosystem. It is not shared with any third party. The sole purpose is to make ENCODED better at serving you and every other ENCODED user.

The analogy: When Spotify uses listening patterns to improve its recommendation algorithm, your personal history improves the system that serves you. ENCODED works the same way. Anonymized patterns improve the system. Your personal data stays yours.

Anonymized research and analytics

We aggregate anonymized data across all users to generate statistics, power research, and build the Evidence Library. This is how we answer questions like: which training sequences produce the fastest results, how long it typically takes for shifts to begin, and what predicts long-term success.

This aggregated data contains no individual user information. It is statistical in nature. Contributing to this anonymized research is part of your ENCODED membership, because the product depends on aggregate patterns to improve for everyone.

The three-tier summary

Shared with third parties for their model training Used by ENCODED to improve its own systems Used in anonymized, aggregated form for research and product improvement
Your personal data Never Never in identifiable form Never in identifiable form
Anonymized data Never Yes, to improve ENCODED's AI Yes, to power research and the Evidence Library

5. Your Rights and Controls

You have control over your data. These rights apply to every ENCODED user.

Right to Know. Request a summary of what data we hold about you and how it has been used.

Right to Export. Download your personal content (Frequency Mapping results, training history, account information) in a readable format. Exports contain your content and system outputs, not proprietary system architecture.

Right to Delete. Request deletion of your data across all our systems. We process deletion requests within 30 days. You can submit a request through your account settings or by emailing support@encoded.ai.

Right to Correct. Request corrections to any personal information we hold about you that is inaccurate or incomplete.

To exercise any of these rights, use the "Your Data" section in your account settings or contact us at support@encoded.ai. We respond to all requests within 10 business days.

6. What We Don't Do

Some things are non-negotiable. We want to be direct.

We will never... Why this matters
Sell your data to anyone Your personal data is not a product. You are not the product.
Share your data with advertisers or data brokers No third party will ever target you based on your Frequency Training data.
Share your data with third parties for AI model training Your beliefs, patterns, and personal insights will never be used to improve someone else's AI.
Show your data to other users Your training data is fully isolated. No other user can see your information.
Keep your data after you ask us to delete it When you request deletion, we delete across all systems within 30 days.
Use manipulative design to prevent you from exercising your rights Data export and deletion are straightforward. No dark patterns.

7. Data Retention

We keep your data only as long as it serves you.

Data Type Retention Period
Account information Active account duration plus 30 days after account closure
Frequency Mapping data Active account duration. Deleted within 30 days of deletion request or account closure.
Training behavior data Active account duration. Anonymized aggregated data may be retained for product improvement.
Payment information Handled by our payment processor. We do not store full payment card details.
Support conversations Retained for 12 months after resolution, then deleted.

8. Security Practices

We maintain security practices designed to protect your data at every layer of our system.

Infrastructure security. Our systems are hosted on enterprise-grade cloud infrastructure with industry-standard security certifications. All data is encrypted at rest and in transit.

Access controls. We use role-based access controls with the principle of least privilege. Team members only have access to the data they need for their specific function, and all access is logged.

Regular testing. We conduct regular security assessments to identify and address vulnerabilities.

Incident response. We maintain a documented incident response plan. In the event of a data breach, we will notify affected users promptly and provide clear information about what happened, what data was involved, and what steps we are taking.

Ongoing investment. Privacy infrastructure is a core investment for ENCODED. We are actively building toward stronger protections as technology matures, including secure processing environments and on-device AI capabilities.

9. Children’s Privacy

ENCODED is designed for adults. We do not knowingly collect personal information from anyone under 18. If we learn that we have collected data from a minor, we will delete it promptly. If you believe a minor has provided us with personal information, please contact us at support@encoded.ai.

10. Changes to This Policy

If we make material changes to this policy, we will notify you by email and update the effective date at the top of this page. We will not reduce your rights under this policy without your explicit consent.

Minor clarifications or formatting changes that do not affect your rights may be made without notification but will always be reflected in the effective date.

11. Contact Us

Questions about this policy or your data? We are happy to be specific.

Email: support@encoded.ai

We respond to all privacy inquiries within 10 business days.

If you have technical questions about our security architecture, or recommendations for privacy-enhancing technologies we should explore, we want to hear from you. We take user input on privacy seriously and it directly influences our roadmap.

©  2026 ENCODED. All rights reserved.