Privacy Policy

Last updated: March 27, 2026

This policy explains what data Fireside collects, how we use it, and your rights. Fireside is operated by Fireside Systems Pty Ltd (A.C.N. 695827322).

1. Data We Collect

Account information: When you sign in with Google, we receive your name, email address, and profile picture from Google OAuth. We store this in Supabase (our authentication provider).

Uploaded content: Transcripts (PDF or TXT files) and GitHub repository references you provide for content generation.

Google Drive content: If you connect Google Drive as a source, we access your Google Docs content (titles, text, modification dates) via the Google Drive and Google Docs APIs. Document content is processed transiently to generate stories and is not permanently stored on our servers unless S3 monitoring is enabled on our production deployment.

Source connection tokens: When you connect third-party sources (Google Drive, GitHub, GitLab), we store encrypted OAuth tokens or personal access tokens in our database using AES-256-GCM encryption.

Generated content: The social media posts and story content Fireside creates from your uploads.

Voice configuration: Your brand voice settings, tone preferences, and audience definitions.

Billing data: Payment processing is handled entirely by Stripe. We store your Stripe customer ID and subscription status, but never your card details.

Usage data: Basic analytics (page views, feature usage) to improve the product. We use cookie-free analytics where possible.

2. How We Use Your Data

• Content generation: Your uploaded transcripts and documents are sent to Anthropic's Claude API for analysis and content generation. Anthropic processes this data according to their privacy policy. Per Anthropic's commercial terms, your data is not used to train their models.
• Service delivery: To generate content, manage your account, and process payments.
• Google Drive integration: Document content retrieved from Google Drive is sent to Anthropic's Claude API for analysis and content generation, the same as uploaded transcripts. We do not use your Google Drive data for advertising, and we do not share it with third parties beyond what is necessary to provide the Service.
• Product improvement: Aggregated, non-personal usage patterns help us improve Fireside.

3. Data Storage & Security

Account data is stored in Supabase (hosted on AWS). Uploaded content and generated posts may be stored temporarily on our servers and optionally in AWS S3 for the production deployment. All data is transmitted over HTTPS.

4. Third-Party Services

• Anthropic (Claude API) — processes your uploaded content for AI-powered generation.
• Supabase — authentication and database.
• Stripe — payment processing.
• Vercel — application hosting.
• Google OAuth — sign-in provider.
• Google Drive API & Google Docs API — reads your Google Docs content when you connect Google Drive as a source.
• GitHub API — fetches public repository data when you use the GitHub source.
• PostHog — product analytics and session replay.
• RB2B — visitor identification for business visitors.
• Leadfeeder — company-level visitor identification.
• LinkedIn Insight Tag — aggregate visitor demographics.

5. Cookies

Fireside uses a session cookie (firesideSession) to keep you logged in. This is a functional cookie required for the Service to work. Our analytics and visitor identification tools (PostHog, RB2B, Leadfeeder, LinkedIn Insight Tag) may also set cookies or use similar technologies to understand how visitors use the site.

When you visit or log in to our website, cookies and similar technologies may be used by our online data partners or vendors to associate these activities with other personal information they or others have about you, including by association with your email. We (or service providers on our behalf) may then send communications and marketing to these email addresses. You may opt out of receiving this advertising by visiting https://app.retention.com/optout.

6. Google API Services Disclosure

Fireside's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

7. Data Retention

Your account data, voice configuration, and generated content are retained while your account is active. Uploaded transcripts are processed and then deleted from our servers. When you delete your account, all associated data is removed.

8. Your Rights

You can:

• Access your data — view your profile, voice config, and generated content within the app.
• Delete your account — from the Settings page. This permanently removes your data.
• Export your content — generated posts can be copied from the app interface.
• Revoke third-party access — disconnect sources from the Sources page at any time. For Google Drive, you can also revoke Fireside's access from your Google Account permissions page.

For any data-related requests, contact sean@fromfireside.com.

9. Changes to This Policy

We may update this policy from time to time. Material changes will be communicated via email or an in-app notice.

10. Contact

Questions about privacy? Email sean@fromfireside.com.