Privacy Policy

Who We Are

truthaboutyou.io is operated as an independent website providing anonymous self-check quizzes for personal reflection. Our website address is https://truthaboutyou.io.

What Data We Collect

Quiz Responses

When you complete a self-check quiz and submit your answers, we store your quiz responses in our database. These responses are linked to a randomly generated session identifier — not to your name, email address, or any other personally identifiable information.

Payment Information

If you choose to unlock a full result, payment is processed entirely by Stripe (stripe.com). We do not receive, store, or have access to your credit card number or banking details. Stripe may collect information necessary to process your payment in accordance with their own privacy policy.

Technical Data

For rate-limiting and abuse prevention purposes, we process a one-way cryptographic hash of your IP address. This hash cannot be reversed to reveal your actual IP address. We do not store raw IP addresses.

What We Do NOT Collect

• We do not require account creation or registration.
• We do not collect your name, email address, or phone number.
• We do not use cookies for tracking or advertising.
• We do not use analytics or tracking scripts (no Google Analytics, no Facebook Pixel, etc.).
• We do not sell, share, or transfer your data to third parties for marketing purposes.

How We Use Your Data

The data we collect is used exclusively for:

• Generating your personalised self-check result based on your quiz answers.
• Processing payment through Stripe when you choose to unlock a full result.
• Preventing abuse through rate limiting (using hashed IP addresses).

Data Storage and Security

Your quiz responses are stored in a secure database hosted by Supabase (supabase.com). Access to results is protected by a cryptographically generated secret that is unique to each quiz session. Only someone with the correct secret can view a result.

We use industry-standard security measures including encrypted connections (HTTPS), cryptographic hashing, and timing-safe comparison functions to protect your data.

Data Retention

Quiz responses are retained in our database to allow you to access your result via the unique link provided after payment. We do not currently implement automatic data deletion, but you may request deletion of your data at any time (see "Your Rights" below).

Your Rights (GDPR)

If you are located in the European Economic Area (EEA) or the United Kingdom, you have the following rights under the General Data Protection Regulation (GDPR):

• Right of access: You can request a copy of the data we hold about your quiz session.
• Right to erasure: You can request that we delete your quiz responses and results.
• Right to rectification: You can request correction of inaccurate data.
• Right to data portability: You can request your data in a machine-readable format.
• Right to object: You can object to the processing of your data.

Because our quizzes are anonymous and we do not collect personal identifiers, exercising these rights requires you to provide the unique result link or session identifier associated with your quiz submission.

To exercise any of these rights, please contact us at the email address provided below.

Legal Basis for Processing (GDPR)

We process data on the following legal bases:

• Legitimate interest: Processing quiz responses to generate results (Article 6(1)(f)).
• Contractual necessity: Processing payment data to deliver the service you purchased (Article 6(1)(b)).
• Legitimate interest: Rate limiting and abuse prevention to maintain service integrity (Article 6(1)(f)).

Third-Party Services

We use the following third-party services:

• Supabase (database hosting) — Privacy Policy
• Stripe (payment processing) — Privacy Policy
• Cloudflare (hosting and CDN) — Privacy Policy
• Google Fonts (typography) — Privacy Policy

Children's Privacy

Our service is not directed at individuals under the age of 16. We do not knowingly collect data from children. If you believe a child has used our service, please contact us and we will take appropriate action.

Changes to This Policy

We may update this privacy policy from time to time. Changes will be posted on this page with an updated revision date. We encourage you to review this policy periodically.

Contact

For privacy-related enquiries or to exercise your data rights, please contact us at: privacy@truthaboutyou.io