Privacy Policy

Last updated: February 19, 2026

1. Introduction

BESSL (“we”, “us”, or “our”) operates Unask. This Privacy Policy explains how we collect, use, and protect your personal information when you use our Service.

2. Information We Collect

Account Information

When you create an account, we collect your email address and authentication credentials.

Project Data

We store the project descriptions, domain information, and research parameters you provide to generate simulations.

Generated Data

AI-generated personas, interview transcripts, analysis results, and reports created through your use of the Service.

Payment Information

Payment transactions are processed by our third-party payment processor. We do not store your credit card details. We retain transaction records (amount, date, credit pack purchased) for accounting purposes.

Usage Data

We may collect basic usage data such as login timestamps, pages visited, and feature usage to improve the Service.

3. How We Use Your Information

  • To provide and operate the Service, including generating AI simulations.
  • To process payments and manage your credit balance.
  • To communicate with you about your account or the Service.
  • To improve and develop the Service.
  • To comply with legal obligations.

4. AI Processing

Your project descriptions are sent to third-party AI providers (Anthropic) to generate personas and conduct simulated interviews. These inputs are processed according to the AI provider's data usage policies. We do not use your project data to train AI models.

5. Data Sharing

We do not sell your personal information. We may share data with:

  • Service providers: Cloud hosting (Vercel, Railway, Supabase), AI providers (Anthropic), and our payment processor Paddle.com Market Limited (Merchant of Record), solely to operate the Service.
  • Legal requirements: When required by law, regulation, or legal process.

6. Data Storage and Security

Your data is stored on secure cloud infrastructure with encryption at rest and in transit. We implement industry-standard security measures including row-level security policies, JWT authentication, and HTTPS encryption.

7. Data Retention

We retain your account data and research outputs for as long as your account is active. You may request deletion of your account and associated data at any time by contacting us.

8. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal data we hold about you.
  • Request correction of inaccurate data.
  • Request deletion of your data.
  • Export your data in a portable format.
  • Withdraw consent for data processing.

To exercise these rights, contact us at bessl.framework@gmail.com.

9. Cookies

We use essential cookies for authentication and session management. We do not use third-party tracking cookies or advertising cookies.

10. Children

The Service is not intended for users under the age of 16. We do not knowingly collect personal information from children.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page.

12. Contact

For questions about this Privacy Policy, contact us at bessl.framework@gmail.com.