Expansion Playbooks

Expansion Playbooks Privacy Policy

Last updated: July 6, 2026

Draft for review. Not legal advice; have an attorney review before or shortly after GA.

Effective date: July 6, 2026 Controller: Northside Ventures LLC, doing business as Expansion Playbooks

This Privacy Policy explains how Expansion Playbooks ("we," "us") collects, uses, and shares information when you use app.expansionplaybooks.com and related services (the "Service"). Questions: jeff@expansionplaybooks.com.

Plain-English summary: we collect what we need to run the Service, we do not sell your data, we do not run ads, and we do not use ad-tracking cookies. Your work product is yours, you can export it, and you can ask us to delete it.

1. What we collect

Account information. Name, email address, password credentials (managed by our authentication provider; we do not see your password), and account settings.

Content you create ("User Content"). The information you enter into the Service and the artifacts you build with it: customer results maps, playbooks, career materials, notes, and related inputs. This may include information about your employer and your customers, such as company names, goals, roles, and business metrics, at your discretion. The Service is a professional B2B tool: it is not designed for, and you should not enter, consumer personal data or sensitive data such as health or financial account information.

Payment information. Payments are processed by Stripe. We receive subscription status, plan, and billing metadata. We never store your card numbers.

Usage and technical data. Log data, device and browser information, IP address, and product usage events (for example, which features you use and AI credit consumption), used for security, quota enforcement, and product improvement.

Communications. Emails you send us, feedback you provide, and support conversations.

Web pages you point us at. If you use features that fetch a public web page (for example, to seed a draft from your company's website), we retrieve and process the content of the pages you specify.

We do not knowingly collect information from children under 18. The Service is for professional use by adults.

2. How we use information

  • Provide, operate, secure, and maintain the Service.
  • Generate AI drafts from your inputs (see Section 3).
  • Process payments and manage subscriptions and credit allowances.
  • Communicate with you about the Service: transactional emails, product updates, and, if you opt in, our newsletter (you can unsubscribe at any time).
  • Improve the product, including analyzing aggregate usage patterns and acting on feedback.
  • Comply with legal obligations and enforce our Terms of Service.

We do not sell your data. We do not share your data for advertising. We do not run ads.

We do not use your User Content to train AI models. Our AI provider processes inputs to generate outputs for you, as described below.

3. AI processing

When you use AI features, relevant inputs (which can include User Content) are sent to Anthropic's API to generate drafts. Anthropic processes this data as a service provider under its commercial terms. AI outputs are drafts for your review; see the Terms of Service for the AI disclaimer.

4. Subprocessors and service providers

We share data only with service providers that help us run the Service, under agreements limiting their use of the data:

ProviderPurposeData involved
Supabase (hosted in the US)Database, authentication, and file storageAccount data, User Content, usage data
VercelApplication hosting and deliveryTechnical/log data, content in transit
AnthropicAI model API (Claude) for generating draftsInputs you submit to AI features
StripePayment processing and billingBilling details, payment method (held by Stripe, not us)
InngestBackground job processing (for example, long-running generation tasks)Job payloads, which may reference User Content
FirecrawlFetching public web pages you point the Service atURLs you provide and fetched page content
KitEmail delivery (transactional and newsletter)Name, email address, email engagement data

We will update this list as providers change. Material changes will be reflected in an updated policy.

5. Where data is stored

Our primary data infrastructure (Supabase) is hosted in the United States. If you use the Service from outside the US, you understand your data is transferred to and processed in the US.

6. Retention

  • Account data and User Content: retained while your account is active.
  • After cancellation: retained for 90 days so you can reactivate or export, then deleted (see the Beta Terms for the same rule during beta).
  • On deletion request: deleted within a reasonable period, typically 30 days, except residual copies in encrypted backups, which are purged on a rolling basis, and records we must keep for legal, billing, or security reasons.
  • Billing records: retained as required for tax and accounting purposes.

7. Your rights: access, export, deletion

  • Export. The product itself exports your artifacts (for example, PPTX and Markdown). Use the export features at any time, or email us for help.
  • Deletion. Email jeff@expansionplaybooks.com from your account email to request deletion of your account and data.
  • Access and correction. You can view and edit most of your data in the app; email us for anything else.

Depending on where you live, you may have additional statutory rights (for example, under state privacy laws or the GDPR). We will honor valid requests as required by applicable law. We do not discriminate against you for exercising your rights.

8. Cookies

At this stage the Service uses essential cookies only: authentication and session cookies required to keep you signed in and to secure the Service. We do not use advertising or cross-site tracking cookies. If we add analytics cookies later, we will update this policy and, where required, ask for consent.

9. Security

We use industry-standard measures, including encryption in transit, row-level security on our database, access controls, and payment handling delegated entirely to Stripe. No system is perfectly secure; if we learn of a breach affecting your data, we will notify you as required by law.

10. Your responsibilities for information about others

If you enter information about your employer or your customers, you are responsible for having the right to use that information in the Service. Enter business-level information (companies, goals, metrics, roles), not consumer personal data.

11. Changes to this policy

We may update this policy as the Service evolves. For material changes we will notify you by email or in the app before the changes take effect. The effective date at the top always reflects the current version.

12. Contact

Northside Ventures LLC, doing business as Expansion Playbooks Email: jeff@expansionplaybooks.com