Privacy Policy

Effective: April 17, 2026

NorseHorse ("we," "us," "our") operates StillHold. This Privacy Policy explains what data we collect, how we use it, and your rights regarding that data.

1. Data We Collect

Data You Provide

• Account information: Email address, username, display name, password (stored as a bcrypt hash — we never store or see your plaintext password)
• Content: Opinions you post, reckoning explanations, context attachments, drafts
• Interactions: Follow relationships, blocks, reports, appeals, hidden posts, notification preferences

Data We Collect Automatically

• Usage events: Actions taken in-app (posting, reckoning, following, viewing) — logged with timestamps for analytics
• Device information: iOS version, app version, device type — collected via standard App Store mechanisms for crash reporting
• IP addresses: Logged temporarily for rate limiting and abuse prevention. Not stored long-term or used for tracking.

Data We Do NOT Collect

• Location data
• Contacts or address book
• Photos or media (StillHold is text-only)
• Advertising identifiers (IDFA)
• Cross-app tracking data
• Browsing history

2. How We Use Your Data

• Providing the Service: Displaying your posts, reckonings, and profile to other users; sending resurface prompts; delivering notifications
• Authentication and security: Verifying your email, managing sessions, preventing abuse
• Content moderation: Reviewing content for Terms of Service violations (see AI section below)
• Product improvement: Analyzing aggregate usage patterns to improve the product. We analyze trends (e.g., "how many users reckon within 24 hours of a resurface prompt"), not individual behavior profiles
• Communication: Sending verification emails, password resets, digest emails (configurable), and critical account notifications

3. Artificial Intelligence Usage

StillHold uses AI (Claude by Anthropic) for two purposes:

• Content moderation: Every post and reckoning explanation is evaluated by AI for Terms of Service violations before publication. This is a hard requirement — content that violates our Terms is blocked automatically.
• Writing suggestions (optional): When composing a post, AI may suggest improvements to clarity or specificity. You can accept, edit, or override any suggestion.

What is sent to the AI

Only the text content of your post or reckoning explanation is sent to the Anthropic API. We do not send your email, username, IP address, or any other personal identifying information. The AI sees an isolated piece of text with no context about who wrote it.

Data retention by AI provider

Anthropic does not store API request data beyond the lifecycle of the request. Content sent for moderation is not used to train AI models. For more details, see Anthropic's privacy policy.

4. Data Sharing

We do not sell your data. We do not share your data with advertisers. We do not use your data for targeted advertising. We share data only in these circumstances:

• Public content: Posts and reckonings you publish are visible to other StillHold users by design. This is the core product.
• AI moderation: Post text is sent to Anthropic's API as described above.
• Legal compliance: We will comply with valid legal process (subpoenas, court orders) that requires disclosure of user data. We will notify affected users unless prohibited by law.
• Safety: We may share information with law enforcement if we believe in good faith that a user poses an imminent threat of serious physical harm to themselves or others.

5. Data Retention

• Account data: Retained for as long as your account is active
• Posts and reckonings: Retained permanently while your account exists (this is the product's core design)
• Analytics events: Raw events are retained for 90 days, then deleted. Aggregated statistics (no personal data) are retained indefinitely.
• Deleted accounts: Personal data is permanently removed 30 days after deletion request. Email address is retained solely to prevent impersonation.
• Verification codes: Expire after 15 minutes
• Password reset tokens: Expire after 1 hour
• Rate limit data: Automatically purged

6. Your Rights

All Users

• Access: View all data we hold about you via your profile and Settings
• Export: Download a complete copy of your data (Settings → Privacy → Download My Data)
• Deletion: Delete your account and all associated personal data (Settings → Account → Delete Account, or stillhold.app/delete-account)
• Correction: Update your email, username, and display name in Settings

California Residents (CCPA)

Under the California Consumer Privacy Act, you have the right to know what personal information we collect and how it is used, request deletion of your personal information, and not be discriminated against for exercising these rights. We do not sell personal information. To exercise your rights, use the in-app tools or contact support@stillhold.app.

EU/EEA Residents (GDPR)

Under the General Data Protection Regulation, our legal basis for processing your data is: contract performance (providing the Service you signed up for), legitimate interest (security, abuse prevention, product improvement), and consent (optional features like digest emails). You have the right to access, rectify, erase, restrict processing, data portability, and object to processing. Contact our data protection contact at support@stillhold.app.

7. Security

We implement industry-standard security measures:

• Passwords are hashed with bcrypt (cost factor 12)
• Passwords are checked against the Have I Been Pwned database at signup
• All connections are encrypted via TLS/HTTPS
• JWT tokens expire after 14 days
• Rate limiting on all authentication endpoints
• Admin access requires separate authentication

8. Children's Privacy

StillHold is rated 17+ and is not intended for children under 17. We do not knowingly collect data from users under 17. If we learn that a user is under 17, we will promptly delete their account and associated data.

9. Cookies and Tracking

The StillHold website uses no cookies, no tracking pixels, and no analytics scripts. The iOS app does not use the IDFA or any cross-app tracking identifiers. We do not track you across apps or websites.

10. Changes to This Policy

We will notify you of material changes via email and in-app notification at least 30 days before they take effect. The effective date at the top of this page indicates the latest revision.

11. Contact