Privacy Policy
Effective Date: May 12, 2026 · Architect Legacy Limited Company
Provider is operated by Architect Legacy Limited Company ("we," "us," or "our"), based in Texas. This Privacy Policy covers both the Provider website (provider.men) and the Provider mobile application (the "App"). We keep this simple because we think you deserve to know exactly what's happening with your data.
What We Collect
We collect information in two ways — what you give us directly, and what we collect automatically.
What you give us on the website:
- Creed form: Your first name, last name, and city/country when you sign the Provider Creed. We also store the geographic coordinates of your city.
- Field Assessment: Your responses to the assessment questions, including your domain scores, wound pattern, drive, and lens type. We store the AI-generated summary produced from your results.
- Email: Your email address if you request your Dominion Report at the end of the assessment.
What you give us in the App:
- Account: When you sign in with Apple, we receive your name and email address (or an Apple-provided relay address if you choose to hide your email). We create a user profile linked to your Apple ID.
- Profile information: Your display name, and optionally your partner's name and children's names and ages, so the Oracle can personalize conversations without guessing about your family.
- Journal entries: Your written reflections, stored securely in our database.
- Trigger logs: In-the-moment reflections you capture when something triggers a reaction.
- Oracle conversations: Messages exchanged with the Oracle, your AI companion inside the App.
- Standards and integrity checks: The personal standards you set and your daily check-in history.
- Values Discovery Process: Your responses to the values discovery questions and your resulting values hierarchy.
- Voice input: When you use voice-to-text with the Oracle, your audio is sent to OpenAI's Whisper service for transcription. We do not store the audio — only the resulting text.
What we collect automatically:
- Basic server logs (IP address, browser type, pages visited) handled by our hosting provider, Vercel.
- Push notification tokens so we can send you reminders (you control this in your device settings).
- No advertising trackers. No third-party analytics pixels. No behavioral tracking.
Device permissions (App)
The App may request the following permissions on your device:
- Camera: Used only to scan QR codes from the web-based Field Assessment. We never capture or store photos.
- Calendar (read-only): The Oracle can see upcoming events — date nights, workouts, appointments — to give you more relevant guidance. We never create, edit, or delete events.
- Notifications: For daily practice reminders and streak alerts. Fully optional and controllable in your device settings.
- Microphone: Used for voice input during Oracle conversations. Audio is transcribed in real time and is not stored.
How We Use Your Information
- To deliver your Dominion Report and any follow-up resources you've requested.
- To power the Oracle — your AI companion generates personalized guidance based on your profile, journal entries, standards, trigger logs, and conversation history.
- To track your progress across six life domains and provide a living diagnostic of where you stand.
- To send you email communications through Customer.io based on your assessment profile. You can unsubscribe at any time.
- To understand who the Provider community is and improve the experience over time.
- To display an aggregate count of men who have signed the Creed (your name is not displayed publicly).
Third-Party Services
We work with a small number of trusted services:
- Supabase — stores all user data (profiles, conversations, journals, standards, assessments) in a secure, encrypted PostgreSQL database hosted in the United States.
- Apple — handles authentication via Sign in with Apple.
- Anthropic (Claude) — powers the Oracle's intelligence. Your conversation context, profile summary, and relevant journal/trigger data are sent to Anthropic's API to generate responses. Anthropic does not use this data to train models and does not retain it beyond the API call.
- OpenAI — provides voice transcription (Whisper) and text embeddings for content search. Audio is processed in real time and not stored by OpenAI. Embeddings are mathematical representations of text used for search — they cannot be reversed into original content.
- ElevenLabs — provides text-to-speech for the Oracle's voice. Text is sent to generate audio and is not retained by ElevenLabs beyond the API call.
- Customer.io — sends your Dominion Report and follow-up email sequences.
- Vercel — hosts the website and serverless functions.
- OpenStreetMap / Nominatim — used for city autocomplete. No personal data is stored by this service.
Each of these services has its own privacy policy. We share only the minimum data needed for each service to function.
Data Security
Your data is stored in encrypted databases with row-level security — meaning each user can only access their own data. Authentication is handled by Apple's identity service. Sensitive credentials (such as your private PIN) are stored in your device's secure keychain, not on our servers.
Account Reset and Data Deletion
You can reset your account from inside the App at any time. When you do, your data is archived for 30 days in case you change your mind, then permanently deleted. Your Apple Sign-In identity is preserved so you can start fresh with the same login. You can also request full account deletion by emailing us.
Data Retention
We retain your data for as long as your account is active or as needed to operate the service. Archived account data is automatically deleted after 30 days. If you'd like your data deleted sooner, email us and we'll remove it within 30 days.
Your Rights
You have the right to access, correct, or delete any personal information we hold about you. To exercise any of these rights, contact us at trey@treystinnett.com. We'll respond within 30 days.
Children's Privacy
Provider is intended for adults. We do not knowingly collect information from anyone under 18. If you believe we have inadvertently collected data from a minor, please contact us and we will delete it promptly.
Changes to This Policy
If we make material changes to this policy, we'll update the effective date at the top of this page. Continued use of the site after changes constitutes acceptance of the updated policy.
Contact
Questions about this policy? Reach us at trey@treystinnett.com.
Architect Legacy Limited Company
Texas, United States