Privacy Policy.

Last updated: April 21, 2026

Resonance ("we," "us") respects your privacy. This Privacy Policy explains what personal information we collect, how we use it, who we share it with, and the choices you have. It applies to your use of the Resonance website and service at resonancehealing.net.

1. Information we collect

You give us

• Email address — required to create an account and receive sign-in codes
• Name or nickname (optional) — used so the voice can address you during your session
• Intention text — what you write in the compose form; passed to our AI to generate your session script
• Payment information — when you purchase credits, card details are entered and processed directly by Stripe. We never see, store, or have access to your full card number, CVC, or bank account data

We collect automatically

• IP address, browser type, device type, and approximate location (derived from IP) for anti-fraud and debugging
• Usage data — which pages you visited, which sessions you generated, when audio was played or downloaded
• A small authentication token stored in your browser's local storage, so you stay signed in between visits

2. How we use your information

• To operate and deliver the Service — authenticate you, generate your audio, serve it from storage, show your library
• To process payments and prevent fraud
• To respond to support requests and communicate about your account
• To improve the Service — understand which voices and modes are popular, diagnose bugs, refine the script and mastering engine
• To comply with legal obligations

3. Who we share it with

Resonance is built on several trusted third-party providers. We share the minimum data necessary for them to do their job:

• Supabase — stores your email, profile, session metadata, and purchase records (U.S. database, encrypted at rest)
• Stripe — processes your payment; receives your email and the product purchased
• ElevenLabs — receives the text of your session script to synthesize the voice audio
• Anthropic — receives your intention, name, and session preferences to generate the script via Claude
• Cloudflare — hosts the website, serves generated audio from R2 storage, and provides DNS
• Resend (if enabled) — sends transactional email such as "your session is ready" notifications

We do not sell your personal information to anyone. We do not share it with advertisers or data brokers. We may disclose information if required by law or to protect our rights or the safety of others.

4. Where your data lives

Our primary infrastructure is located in the United States. If you access Resonance from another country, your information may be transferred to, stored in, and processed in the U.S. By using the Service, you consent to this transfer.

5. How long we keep it

• Your account and session history are kept as long as your account is active
• Generated audio files are stored indefinitely in your library unless you request deletion
• Payment records are kept for at least seven years to comply with tax and accounting rules
• Server logs are typically rotated within 30–90 days

6. Your rights

Depending on where you live, you may have rights under privacy laws like the EU's GDPR, the UK's GDPR, California's CCPA/CPRA, and similar statutes. These can include:

• Access — request a copy of the personal information we hold about you
• Correction — ask us to fix inaccurate information
• Deletion — ask us to delete your account, session history, and generated audio
• Portability — request a machine-readable export of your data
• Objection / restriction — ask us to stop or limit certain processing

To exercise any of these, email support@resonancehealing.net from the email tied to your account. We'll respond within 30 days.

7. Cookies and local storage

Resonance does not use third-party advertising or analytics cookies. We use a small authentication token stored in your browser's local storage so you remain signed in between visits; clearing your browser data signs you out. If we ever add analytics, we will update this policy and use privacy-preserving services (no cross-site tracking).

8. Security

We use industry-standard practices to protect your data — HTTPS everywhere, encrypted storage, scoped API tokens, least-privilege access. No system is perfectly secure, but we treat your data like it matters, because it does.

9. Children

Resonance is intended for adults. We do not knowingly collect personal information from anyone under 18. If we learn that we have inadvertently collected information from a minor, we will delete it promptly.

10. Changes to this policy

We may update this Privacy Policy from time to time. Material changes will be announced by email (if you have an account) and by updating the "Last updated" date at the top.

11. Contact

Questions about your data? Email support@resonancehealing.net.