Privacy & data

Client data ownership has to be visible, not just promised.

This page summarizes the policies behind Arcline. The full legal privacy policy and terms of service are reviewed by counsel before each launch. Last reviewed: April 2026.

Data principles

Implemented in product, not just stated.
OwnershipClients can export their full engagement history at any time.
Least accessCoaches see only engagements they're assigned to — enforced at the database, not the app.
ConsentOptional measurement and external sharing require explicit, revocable consent.

What we collect

Operational essentials, not behavioral surveillance.
  • Account: name, email, role, time zone.
  • Engagement: client–coach pairing, goals, meeting times, completion confirmations, optional notes.
  • Measurement: ORS, SRS, optional WHO-5 / CAAS / WAI-SR responses, when consented.
  • Operational: sign-in events, billing receipts (via Stripe), email delivery status, error reports.
  • What we don't collect: session recordings, third-party tracking, advertising identifiers, social media profile data.

Where your data lives

Hosting and residency.
Primary regionManaged Postgres on AWS US-East-1 (N. Virginia).
EU residencyEU-region hosting is on the roadmap for Q4 2026. Email hello@arcline.life if your practice has a residency requirement before then.

Security overview

How we keep data safe.
  • Encryption in transit: TLS 1.2+ between every browser, edge function, and database connection.
  • Encryption at rest: AES-256 on the underlying managed Postgres volumes.
  • Tenant isolation: Postgres Row-Level Security policies on every table — a coach cannot read another coach's data even via direct API access.
  • Authentication: Passwords hashed with bcrypt. Magic-link and OAuth are on the roadmap.
  • Audit logging: Every coach read of client measurement data is logged with a 1-hour de-dupe window. Clients can see this log on their My Progress page.
  • Compliance status: SOC 2 Type 1 targeted late 2026; Type 2 the year after. Pre-cert security questionnaire available for Studio customers on request.

How long we keep data

Retention timelines per data type.
Active account dataFor the lifetime of the account.
After account deletion requestSoft-delete with 30-day grace, then hard-delete by daily batch job.
Audit logsRetained 12 months for fraud and legal-hold reasons.
Email delivery logsRetained 90 days for bounce / complaint handling.
Billing records (via Stripe)Retained as required by tax law (typically 7 years).

Your rights (GDPR & CCPA)

How to exercise them.
  • Right to access & portability: Use Account → Data export to download a complete JSON of your data.
  • Right to rectification: Edit your profile, goals, and check-ins directly. For data you can't edit, email privacy@arcline.life.
  • Right to erasure ("right to be forgotten"): Account → Danger zone → Request account deletion. Hard-delete completes within 30 days.
  • Right to restrict / object: Toggle optional measurements off in Data sharing choices.
  • Right to opt out of "sale" (CCPA): We don't sell personal information. There's nothing to opt out of.
  • Right to non-discrimination: Exercising any of the above will not change the price you pay or the features you can use.

Sub-processors

Trusted vendors who help run Arcline.
Supabase (Postgres + Auth)Application data, authentication, edge functions.
StripeSubscription billing and customer portal.
ResendTransactional email delivery (reminders, nudges, invites).
CalendlyCalendar sync — only when a coach explicitly connects an account.
VercelStatic hosting and CDN for the marketing site and app shell.

Contact

Privacy questions, data requests, or anything you'd like clarified.

Email privacy@arcline.life for privacy-specific questions, or hello@arcline.life for everything else. We aim to acknowledge within one business day and resolve within 30 days for any rights request.