Privacy Policy

Who we are

Hello Alvie (“we”, “us”) is the data controller for information collected through helloalvie.com. We do not currently have a Data Protection Officer. You can reach us at hey@helloalvie.com.

What we collect

Demo requests (helloalvie.com): name, work email, company, role, team size, plus standard web logs (pages visited, browser type, referring URL).

Waitlist signups on /try: your work email, the free-text reply you type into the scenario (up to 280 characters), the AI coaching response that is generated for you, a one-way hash of your IP address, your user-agent, and the referring URL. We never ask you to type personal information about colleagues and we encourage you not to.

The pitch deck at /deck: a single strictly necessary session cookie holding an HMAC signature of the shared password. No analytics cookies. No marketing cookies.

Lawful basis

We rely on legitimate interests (Art. 6(1)(f) UK GDPR / EU GDPR) to respond to demo and waitlist requests that you have voluntarily submitted to us. You can object at any time by emailing us. For any future marketing email we would rely on your consent, collected separately.

AI processing

The coaching response you see on /try is generated by Anthropic's Claude API(Sonnet 4.5). Your reply is sent to Anthropic's infrastructure in the United States under Anthropic's commercial API terms, which prohibit training on customer API traffic and cap retention at 30 days for abuse review. Transfers outside the UK/EEA are covered by the Standard Contractual Clauses and the UK International Data Transfer Addendum; a copy is available on request. Alvie does not make automated decisions about you under Art. 22 GDPR — the coaching response is content, not a decision about your rights or access.

Who we share it with

We do not sell, rent, or share your personal information with third parties for their marketing purposes. We use a small number of processors who act on our instructions under written data processing agreements:

• Vercel (hosting and function logs, US/EU)
• Anthropic (AI coaching inference, US) — see the section above
• Notion (waitlist record of contact, US)

Data in the product

Hello Alvie processes leadership practice responses and behavioral data within the product. Individual responses are never visible to managers, HR, or other employees. Only aggregate behavioral patterns are surfaced in the admin dashboard. All product data is encrypted at rest and in transit.

Data retention

Waitlist and demo records are retained for up to 24 months after last contact, or until you ask us to delete them — whichever is sooner. Server runtime logs are retained for up to 30 days. Hashed IPs used for abuse prevention are retained for up to 90 days.

Your rights

Under UK and EU GDPR you have the right to access, rectify, erase, restrict, port, and object to the processing of your personal data. You also have the right to withdraw consent where we rely on it. To exercise any of these rights, email hey@helloalvie.com. We will respond within one month.

If you believe we have mishandled your data, you can lodge a complaint with the UK Information Commissioner's Office at ico.org.uk/make-a-complaint or with your local EU supervisory authority.

Security incidents

If we become aware of a personal data breach that poses a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours and will contact you directly where required.

Contact

If you have questions about this policy, email us at hey@helloalvie.com.