Legal
Privacy Policy
Effective June 12, 2026
This Privacy Policy explains what information TailoredAI LLC ("we," "us") collects when you use Simple Scenarios, how we use and share it, and the choices you have. It applies to the website and application at https://www.simple-scenarios.com and related services (the "Service").
1. Information we collect
Account information
When you sign up, our authentication provider Clerk collects and stores your name, email address, optional username and profile photo, and your organization memberships. We receive your user ID, display name, and organization ID from Clerk to operate the Service.
Simulation content
The Service stores the content you and other participants produce in a run: scenario templates you build, chat messages, coach conversations, turn submissions, artifacts you create or upload (documents, images, files), goals, relationship data, scores, and debriefs. Simulation state lives in our Upstash Redis data store; larger files and generated images are stored in Vercel Blob.
Billing information
Purchases are processed by Stripe and orchestrated by Autumn. We receive transaction status and balances, but your full payment card number is held by Stripe, not us.
Usage and technical data
We use Vercel Analytics, a privacy-friendly analytics service that collects aggregated page views and performance metrics without cross-site tracking cookies or persistent device identifiers. Our hosting infrastructure also produces standard request logs (IP address, user agent, timestamps) used for security and debugging.
2. How we use information
- To run simulations: storing room state, resolving turns, displaying messages and artifacts to the right participants.
- To power AI features: relevant scenario context, messages, and artifacts are sent to our AI providers (via the Vercel AI Gateway and the OpenAI API) to generate AI player decisions, coach replies, drafts, and images. Our AI providers do not use this API content to train their models.
- To meter and bill usage: counting runs and AI credits, processing purchases, and operating auto top-up if you enable it.
- To secure and improve the Service: debugging, abuse prevention, and aggregate product analytics.
- To communicate with you: transactional messages about your account, purchases, and material changes to the Service or our terms.
We do not sell your personal information, and we do not use your content for advertising.
3. How information is shared
With other participants
Simulation is multiplayer by design. Your display name, the messages you send to shared channels, and the artifacts you choose to share are visible to the participants you share them with. Run listings (title, mode, status) are visible to members of your organization. Your private goals, private case-file details, and coach conversations are not shown to other players, though they are stored as part of the run and processed by AI features.
Artifact files
Shared artifact files and generated images are stored in Vercel Blob at long, unguessable URLs. Anyone who possesses such a URL can retrieve that file, so treat artifact links like the documents themselves when sharing outside a run.
With service providers
We share data with the providers below, each acting on our instructions to deliver part of the Service:
| Provider | Purpose | Data involved |
|---|---|---|
| Clerk | Authentication and account management | Name, email address, username, organization membership, session cookies |
| Vercel | Application hosting, file storage (Blob), privacy-friendly analytics, AI gateway | Request logs, uploaded and generated artifacts, aggregated usage analytics, AI request payloads in transit |
| Upstash | Primary data store (Redis) for simulation state | Room state, messages, turn submissions, artifacts metadata, relationship graphs, scores |
| OpenAI | AI text and image models powering counterparts, coaching, and artifact generation | Scenario context, messages, and artifact content needed for each AI action |
| Autumn | Billing orchestration and usage metering | Account or organization identifier, pack purchases, metered feature usage |
| Stripe | Payment processing | Payment card details (held by Stripe, not us), billing contact information, invoices |
Legal and safety
We may disclose information if required by law, or when necessary to protect the rights, safety, or security of the Service, our users, or the public. If we are involved in a merger, acquisition, or asset sale, information may transfer with appropriate protections.
4. Cookies
The Service uses essential cookies set by Clerk to keep you signed in and protect your session. We do not use advertising or cross-site tracking cookies. Because these cookies are strictly necessary, the Service does not show a cookie-consent banner.
5. Data retention and deletion
- Simulation runs, templates, and artifacts persist until you or your organization delete them, so you can return to past runs and debriefs.
- You can delete runs you own from within the app; organization administrators manage shared simulations.
- To delete your account and associated personal data, contact info@tailoredai.solutions. We will delete or de-identify your data within 30 days, except where retention is required for legal, billing, or security purposes.
- Backups and logs age out on fixed schedules maintained by our infrastructure providers.
6. Security
Data is encrypted in transit (TLS) and at rest by our infrastructure providers. Access to production systems is restricted and credentialed. No system is perfectly secure — if we learn of a breach affecting your personal data, we will notify you as required by law.
7. Your rights
Depending on where you live (including under the GDPR and U.S. state privacy laws such as the CCPA), you may have rights to access, correct, export, restrict, or delete your personal information, and to object to certain processing. To exercise any of these rights, email info@tailoredai.solutions. We will verify your request through your account email and respond within the timeframe required by applicable law. We do not discriminate against you for exercising privacy rights.
8. International transfers
We are based in the United States and process data there. If you use the Service from outside the U.S., your information will be transferred to and processed in the U.S. under this policy and our providers' safeguards.
9. Children
The Service is not directed to children under 13, and we do not knowingly collect personal information from them. If you believe a child under 13 has created an account, contact us and we will delete it.
10. Changes to this policy
We may update this policy as the Service evolves. For material changes we will give reasonable notice — for example by email or an in-product notice — before they take effect. The effective date above always reflects the current version.
11. Contact
Privacy questions and requests: info@tailoredai.solutions. See also our Terms of Service.