Back to Home

Privacy Policy

Your privacy is important to us. This policy explains how we collect, use, and protect your personal information.

GDPR Compliant
Last Updated: June 2026
1. Information We Collect

Personal Information

  • Name, email address, and contact information
  • Profile information and preferences
  • Payment and billing information
  • Communication history and messages
  • Usage data and analytics

Automatically Collected Information

  • IP address and device information
  • Browser type and version
  • Pages visited and time spent
  • Cookies and similar technologies
2. How We Use Information

Service Provision

To provide and maintain our platform services, process bookings, and facilitate communications.

Communication

To send important updates, respond to inquiries, and provide customer support.

Improvement

To analyze usage patterns and improve our services and user experience.

Security

To protect against fraud, abuse, and ensure platform security.

3. Information Sharing

We Do Not Sell Your Data

We do not sell, trade, or rent your personal information to third parties.

Limited Sharing

We may share information only in these circumstances:

  • With your explicit consent
  • To comply with legal obligations
  • To protect our rights and safety
  • With trusted service providers (under strict agreements)
4. Data Security

Encryption

All data is encrypted in transit and at rest using industry-standard protocols.

Access Controls

Strict access controls and authentication measures protect your data.

Regular Audits

We conduct regular security audits and vulnerability assessments.

5. Your Rights (GDPR)
Under GDPR, you have the following rights regarding your personal data:

Right to Access

Request a copy of all personal data we hold about you.

Right to Rectification

Request correction of inaccurate or incomplete personal data.

Right to Erasure

Request deletion of your personal data ("right to be forgotten").

Right to Portability

Request your data in a machine-readable format.

Right to Object

Object to processing of your personal data.

To exercise these rights: Contact us at privacy@ankyr.xyz.

6. Cookies & Tracking

Types of Cookies We Use

Necessary Cookies

Essential for website functionality and security.

Analytics Cookies

Help us understand how visitors use our website.

Functional Cookies

Enable enhanced functionality and personalization.

Marketing Cookies

Used for advertising and marketing purposes.

Cookie Management: You can manage your cookie preferences at any time through our Cookie Policy.

7. Third-Party Services

We use trusted third-party processors for specific functions. Each acts under a data processing agreement and only receives the data needed for its function:

  • Supabase — database, authentication, and file storage
  • Vercel — application hosting; product analytics and performance monitoring (loaded only with your consent)
  • Stripe — payment processing and payouts (Stripe Connect)
  • Anthropic — powers our in-product AI assistant (Touree)
  • Resend — transactional and marketing email delivery
  • Sentry — error monitoring and diagnostics
  • Google — optional Calendar sync you choose to connect, web fonts, and optional Google Analytics (loaded only with your consent)
  • Spotify and social platforms (Instagram, Facebook, YouTube, TikTok) — optional account connections you choose to link

Note: These services have their own privacy policies and data handling practices. A current list of our sub-processors is available on request at privacy@ankyr.xyz.

8. Data Retention

Account Data

Retained while your account is active and for 2 years after deactivation.

Transaction Data

Retained for 7 years for tax and legal compliance.

Analytics Data

Retained for 2 years for service improvement.

Marketing Data

Retained until you unsubscribe or request deletion.

9. International Transfers

Some of our processors are located in the United States, so your data may be transferred to and processed outside your country. Where this happens, we rely on appropriate safeguards, which may include:

  • Standard Contractual Clauses (SCCs)
  • The EU-US Data Privacy Framework, where a processor is certified
  • Adequacy decisions by relevant authorities

For details of the safeguard applied to a specific transfer, contact dpo@ankyr.xyz.

10. Children's Privacy

Our services are not intended for children under 16. We do not knowingly collect personal information from children under 16. If you believe we have collected information from a child under 16, please contact us immediately.

11. Changes to Policy

We may update this privacy policy from time to time. We will notify you of any material changes by:

  • Emailing you directly
  • Posting a notice on our website
  • Updating the "Last Updated" date

Current Version: June 2026

12. Contact Us

Privacy Questions

For privacy-related questions or to exercise your GDPR rights:

Data Protection Officer

For EU residents, you can also contact our Data Protection Officer:

dpo@ankyr.xyz

Postal Address

ANKYR Inc.
Registered address available on request at privacy@ankyr.xyz