Privacy Policy
Effective date: 17 May 2026
This Privacy Policy describes how Sequere Pecuniam s. r. o. ("fareword," "we," "us," "our"), the operator of fareword.com, collects, uses, and protects your personal information when you use fareword.com (the "Service").
We've tried to write this in plain English. Where we use specific legal terms, it's because we have to. If anything is unclear, email us at fareword.app@gmail.com.
1. Who we are
The data controller responsible for your personal data is:
Sequere Pecuniam s. r. o.
Karpatské námestie 10A
831 06 Bratislava — mestská časť Rača
Slovak Republic
IČO: 57439371
DIČ: 2122737804
Registered: Obchodný register Mestského súdu Bratislava III,
oddiel: Sro, vložka č. 196117/B
Email: fareword.app@gmail.com
We are not required to appoint a Data Protection Officer (DPO) under Article 37 of the GDPR. For any data-protection-related questions, contact us at the email above.
2. What we collect
We collect the minimum necessary to deliver the Service.
Information you provide to use the Service. When you generate a message, you enter situational details (for example: the type of relationship, length, reason, tone preference, gender of the parties involved). This information is sent to our AI processor for the sole purpose of generating your requested message. We do not store this information after the message is delivered. It exists only in volatile session storage during the generation process and is deleted automatically within minutes.
Payment information. When you pay the price displayed at checkout, Stripe processes your card details. We never see, receive, or store your card number. Stripe shares with us only: the transaction amount, the currency, the timestamp, the last four digits of the card, the card brand, and your country.
Technical information. Our hosting provider (Vercel) automatically logs technical information when you visit fareword.com, including your IP address, browser type, operating system, referring URL, pages visited, and rough geographic region. These logs are used for security, fraud prevention, and reliability and are retained for 30 days unless required longer for an active security investigation.
Analytics. We use Plausible Analytics (privacy-friendly, no cookies, no personal identifiers) to count anonymous page visits and aggregate usage. No individual users are identifiable in our analytics data.
What we do NOT collect.
- We do not collect your name, postal address, or phone number.
- We do not require you to create an account. There are no accounts.
- We do not store the text of the generated message after it is delivered to you.
- We do not store the situational details you entered after the message is delivered.
- We do not use your input or the generated output to train any AI model. Anthropic's API terms also prohibit them from doing so on data submitted via their API.
3. How we use your information
We use the information described above to:
- Generate the message you requested.
- Process your payment.
- Detect and prevent fraud, abuse, or technical errors.
- Comply with our legal obligations (tax, accounting, fraud prevention).
- Improve the Service in aggregate, anonymized ways.
We do not sell your personal information to anyone. We do not share it for marketing purposes. We do not use it to build advertising profiles.
4. Legal basis for processing (GDPR Article 6)
Under the EU General Data Protection Regulation (GDPR), we rely on the following legal bases:
- Performance of a contract (Art. 6(1)(b)) — to generate the message you paid for and to process the related payment.
- Legitimate interest (Art. 6(1)(f)) — for fraud prevention, system security, abuse mitigation, and aggregate technical analytics. Our legitimate interest is to operate a secure and reliable service. We have weighed this against your rights and consider it proportionate.
- Legal obligation (Art. 6(1)(c)) — for tax, accounting, and anti-money-laundering record-keeping required by Slovak law.
5. Who we share your data with (sub-processors)
To deliver the Service, we rely on the following processors. Each operates under Data Processing Agreements (DPAs) with us, and each has been chosen for its GDPR compliance posture.
| Processor | Purpose | Data shared | Location |
|---|---|---|---|
| Anthropic, PBC | AI message generation (Claude API) | Your situational input, transiently during generation | United States |
| Stripe, Inc. | Payment processing | Card details (directly to Stripe — never to us), transaction metadata | United States, with EU data residency where available |
| Vercel Inc. | Web hosting & deployment | IP address, browser metadata, request logs | United States and Frankfurt for EU traffic |
| Upstash, Inc. | Session storage (Redis) | Anonymous session identifiers, transient input data | European Union |
| Plausible Insights OÜ | Anonymous analytics | Aggregated page views, no personal identifiers | European Union (Estonia) |
We do not share your data with any other third party except where required by law (for example, a valid court order from a Slovak authority, or where we are subject to a legal request from a competent law-enforcement body).
6. International data transfers
Some of our processors (Anthropic, Stripe, Vercel) are based in the United States. When your data is transferred to the United States, it is protected by one or more of the following safeguards:
- The EU-U.S. Data Privacy Framework (adopted by the European Commission in July 2023), where the processor is certified under the Framework.
- Standard Contractual Clauses (SCCs) approved by the European Commission for transfers to third countries.
- Additional technical and organizational measures applied by each processor.
You can request information about these safeguards by emailing fareword.app@gmail.com.
7. How long we keep your data
| Data category | Retention period |
|---|---|
| Situational input you entered | Deleted automatically within minutes of message delivery |
| Generated message text | Not retained — we do not store the output |
| Payment records (held by Stripe and by us for accounting) | 10 years (legal requirement under Slovak Accounting Act No. 431/2002) |
| Web server logs (Vercel) | 30 days (longer if needed for an active security investigation) |
| Anonymous analytics (Plausible) | Aggregated indefinitely; no personal identifiers are retained or recoverable |
| Customer support correspondence | 2 years from your last contact |
8. Your rights under GDPR
If you are located in the EU, the United Kingdom, or the EEA, you have the following rights:
- Right of access (Art. 15) — request a copy of the personal data we hold about you.
- Right to rectification (Art. 16) — correct inaccurate or incomplete data.
- Right to erasure / "right to be forgotten" (Art. 17) — request deletion of your data, subject to our legal retention obligations.
- Right to restrict processing (Art. 18) — limit how we use your data while a complaint is investigated.
- Right to data portability (Art. 20) — receive your data in a structured, machine-readable format.
- Right to object (Art. 21) — to processing based on legitimate interests.
- Right to withdraw consent (Art. 7(3)) — where processing is based on consent.
- Right to lodge a complaint with the Slovak Office for Personal Data Protection (Úrad na ochranu osobných údajov SR, dataprotection.gov.sk) or your local EU supervisory authority.
To exercise any of these rights, email fareword.app@gmail.com. We will respond within one month of receiving your request, as required by GDPR.
Note on access and erasure requests: Because we do not retain the situational input you entered or the generated message text, in most cases we have nothing to access or delete. If you make such a request, we will confirm in writing what data, if any, we still hold and what action has been taken.
9. Cookies and similar technologies
fareword.com uses:
- Essential cookies for session management — so your payment and your generated message connect correctly. These are necessary for the Service to function and are exempt from consent requirements under EU law.
- No tracking cookies, no advertising cookies, and no third-party analytics cookies by default. Our chosen analytics provider (Plausible) does not use cookies or personal identifiers.
If we introduce advertising or social-media pixel tracking in the future (for example, TikTok Pixel or Meta Pixel for marketing measurement), we will display a clear consent banner allowing you to opt in or refuse before any non-essential cookie is set on your device.
10. Children's privacy
fareword is intended for users aged 18 and over. We do not knowingly collect personal data from anyone under 18. If we learn that a person under 18 has used the Service, we will delete any data associated with them.
If you are a parent or guardian and believe your child has used fareword, please email fareword.app@gmail.com.
11. Security
We use reasonable industry-standard measures to protect your data:
- TLS (HTTPS) encryption for all data in transit.
- Restricted internal access to systems handling personal data.
- Sub-processors selected for their established security and GDPR-compliance posture.
- Regular review of access logs and security configurations.
No method of transmission over the Internet is 100% secure. We cannot guarantee absolute security, but we work to protect your data and will notify you and the relevant supervisory authority of any personal data breach within 72 hours of becoming aware of it, as required by GDPR Article 33.
12. Changes to this policy
We may update this Privacy Policy occasionally. If we make material changes, we will update the "Effective date" at the top of this document and, where appropriate, provide reasonable notice through the Service. Your continued use of fareword after changes take effect means you accept the updated policy.
We will not, in any update, reduce the level of protection of your personal data without your express consent.
13. Contact
Questions, requests, or complaints? Email fareword.app@gmail.com. We aim to respond within 5 business days for routine inquiries and within the legally required one month for formal data-subject requests.
End of Privacy Policy.