Privacy Policy
Last updated: March 30, 2026
StoryTold is built by Daystar Studios ("we", "us", "our"). Your story is deeply personal, and we treat your privacy with the seriousness it deserves. This policy explains what we collect, how we use it, and the choices you have.
1. The Short Version
- Your story belongs to you. We do not use your content for AI training, analytics, or any other purpose.
- Voice recordings are transient. Audio is recorded, transcribed in real-time, and immediately discarded. We never store your voice recordings.
- Your data stays in your browser. Stories are currently stored in your browser's local storage. We do not have access to your story content unless you explicitly share it.
- You can export or delete everything. One-click export, one-click delete — your data, your choice.
2. What We Collect
Data you provide directly
| Data type | What happens to it |
|---|---|
| Voice recordings | Sent to OpenAI Whisper for transcription, then immediately discarded. Never stored on our servers. |
| Interview responses (text) | Stored in your browser's local storage. Sent to AI services for processing during your session only. |
| Generated story chapters | Stored in your browser's local storage. Available for download and sharing at your discretion. |
| Email address | Collected only if you contact us or sign up. Used solely for communication with you. |
| Payment information | Processed by our payment provider. We never see or store your card details. |
Data collected automatically
| Data type | Purpose |
|---|---|
| Page visits and interactions | We use Meta Pixel for advertising analytics. This tracks page visits and basic interactions on our marketing pages. |
| Basic device information | Browser type and screen size, used to ensure the service works properly on your device. |
3. Third-Party Services
StoryTold uses the following third-party services to operate. Your data is shared with them only as needed to provide the service:
| Service | Provider | What it does |
|---|---|---|
| Speech-to-text | OpenAI (Whisper) | Transcribes your voice into text. Audio is processed and not retained. |
| Interviewer voice | OpenAI (TTS) | Generates the interviewer's spoken responses. |
| Interview conversation | OpenAI (GPT-4o) | Powers the interview questions, acknowledgments, and follow-ups. |
| Story narrator | Anthropic (Claude) | Writes your story narrative from interview transcripts. |
| Payments | Creem | Handles payment processing. We never access your card details. |
| Advertising analytics | Meta (Facebook/Instagram) | Tracks page visits on marketing pages for ad performance. |
| Hosting | Vercel | Hosts the StoryTold website and API. |
We do not sell, rent, or share your personal data or story content with anyone beyond what is necessary to operate the service as described above.
4. AI and Your Data
This is important to us:
- Your stories are never used to train AI models. Neither by us, nor by the AI providers we use. We use API-only access, which is excluded from training by both OpenAI and Anthropic.
- Your interview data is processed, not stored, by AI providers. Data is sent for real-time processing and is not retained beyond the API request.
- We do not perform analytics on your story content. We do not read, analyze, or mine your stories for any purpose.
5. Data Storage and Security
- Story data is currently stored in your browser's local storage. This means it lives on your device, not on our servers.
- All data transmitted between your browser and our servers is encrypted in transit (HTTPS/TLS).
- We are building server-side storage with encryption at rest for a future release, which will allow cross-device access and better data resilience.
- Because your story currently lives in your browser, clearing your browser data will delete your story. We strongly recommend downloading your completed chapters.
6. Your Rights and Choices
You have full control over your data:
- Export: Download your complete story at any time from within the app.
- Delete: Clear your story data from the app at any time. Since data is stored locally, clearing your browser storage removes everything.
- Opt out of analytics: Use any standard ad blocker or browser privacy setting to block Meta Pixel tracking.
- Contact us: For any data-related requests, email support@storytold.app.
7. Children's Privacy
StoryTold is not intended for use by anyone under the age of 16. We do not knowingly collect information from children. If you believe a child has used the service, please contact us and we will take appropriate action.
8. Cookies
StoryTold itself does not use cookies. The Meta Pixel on our marketing pages may set cookies for advertising purposes. You can control these through your browser settings or by using an ad blocker.
9. International Users
Daystar Studios is based in Reykjavik, Iceland. If you are accessing StoryTold from outside Iceland, your data may be processed in other countries through our third-party service providers (primarily the United States). By using the service, you consent to this transfer.
10. Your Rights Under GDPR (EEA Users)
Daystar Studios is based in Reykjavik, Iceland, which is part of the European Economic Area (EEA). The General Data Protection Regulation (GDPR) applies to how we process your personal data. Our lawful bases for processing are:
- Contractual necessity — processing interview responses and generating your story (to provide the service you requested).
- Legitimate interest — basic analytics and service improvement.
- Consent — Meta Pixel advertising analytics (which you can opt out of at any time).
Under GDPR, you have the following rights:
- Right of access: Request a copy of all personal data we hold about you.
- Right to rectification: Ask us to correct inaccurate data.
- Right to erasure: Request deletion of your personal data.
- Right to restrict processing: Ask us to limit how we use your data.
- Right to data portability: Receive your data in a structured, machine-readable format.
- Right to object: Object to processing based on legitimate interest.
- Right to withdraw consent: Where processing is based on consent, withdraw it at any time.
To exercise any of these rights, email support@storytold.app. We will respond within 30 days. If you are unsatisfied with our response, you have the right to lodge a complaint with the Icelandic Data Protection Authority (Personuvernd) or your local supervisory authority.
11. Changes to This Policy
We may update this policy from time to time. If we make material changes, we will update the "Last updated" date at the top. Your continued use of StoryTold constitutes acceptance of the updated policy.
12. Contact
For privacy questions or data requests:
Daystar Studios
Reykjavik, Iceland
support@storytold.app