Privacy

Last updated 23 May 2026

We collect as little as we can get away with. This page explains what that is, who processes it on our behalf, and how to make us delete it.

What we collect

• Email address when you join the waitlist or send a message via the contact form.
• Contact message contents if you write to us.
• Marketing attribution — the utm_source, utm_medium, utm_campaign, utm_term, utm_content, referring URL, and landing path at the moment you signed up. These tell us which post or ad brought you here.
• Anonymous product analytics — page views, scroll depth, form-interaction events. We use PostHog with cookie tracking disabled by default.
• Advertising pixels from Meta, TikTok, and Google — only if you consent via the banner. These let us measure whether an ad worked.

What we do not collect on this website

Audio recordings, journal entries, location, contacts, microphone access, or anything else of that shape. Those only exist inside the mobile app, governed by a separate in-app privacy disclosure shipped when the app launches.

Why we collect it

To send you the launch announcement, answer your messages, measure which channels work, and improve the marketing site. We do not sell your data, ever.

Who processes it on our behalf

These are our sub-processors. Each handles a narrow slice and only what is necessary to do their job.

• Supabase (United States) — database and authentication for waitlist and contact records.
• Resend (United States) — transactional email delivery (confirmations, replies).
• Cloudflare (global) — site hosting, request routing, and DDoS protection. Cloudflare may process IP addresses to block abusive traffic.
• PostHog (United States / EU region) — product analytics. Cookies disabled by default; identifies you only if you sign up.
• Meta, TikTok, Google — advertising attribution pixels, loaded only after you consent.

Legal basis

For visitors in the EU/UK we rely on consent (GDPR Art. 6(1)(a)) for advertising pixels and on legitimate interest (Art. 6(1)(f)) for essential analytics and security. For waitlist signups and contact messages we rely on consent and the steps necessary to respond to your request.

How long we keep it

• Waitlist emails: until the app launches plus 12 months, or until you ask us to delete.
• Contact messages: 24 months, or until you ask us to delete.
• Analytics events: 12 months.

Your rights

You can ask us to access, correct, export, or delete your personal data, and to withdraw consent at any time. Email privacy@thevoid.you and we will respond within 30 days.

Cookies

The site sets a small first-party cookie to remember your consent choice. No advertising or analytics cookies are set until you accept the consent banner.

Children

The Void is not directed to children under 13 (or under 16 in the EU/UK). We do not knowingly collect their data.

Changes

If this changes materially, we will update the date at the top and email everyone on the waitlist before the change takes effect.

Questions? Say something to the void.