Effective: April 17, 2026 · Last updated: April 28, 2026
The short version: We only collect what we need to run the service (your email, the content you put into the app, and payment info via Stripe). We don't sell your data. We don't share it with advertisers. We don't train AI models on your content. You can export or delete your data anytime.
1. Who we are
Mind Like Water ("we", "us", "our") is a software service operated by Titus Digital LLC, a company based in Washington State, United States. If you have questions about this policy, reach out at [email protected].
2. What we collect
Information you give us directly
Account info: your email address, display name, and password (stored as a one-way hash — we never see your plaintext password).
Your content: tasks, projects, notes, daily pages, areas of focus, tags, contacts, and anything else you create inside the app.
Billing info: when you subscribe, your card details are sent directly to Stripe and never touch our servers. We store your Stripe customer ID, subscription status, and billing history reference so we can show your current plan and link you to invoices.
Communications: if you email us for support, we keep the correspondence so we can follow up.
Information we collect automatically
Session data: standard authentication cookies and session tokens so you stay signed in.
Technical logs: IP address, user agent, and request timestamps from our hosting providers for security monitoring and debugging. These logs are retained for a short period (typically 30 days) and are not used to profile you.
3. How we use your information
To run the service — store your tasks and notes, sync across devices, keep you signed in.
To process subscription payments (via Stripe).
To send you transactional emails — password reset, trial-ending reminders, billing receipts, important account notices.
To respond to support requests you send us.
To prevent abuse and keep the service running reliably.
What we don't do with your information:
We don't sell it to anyone. Ever.
We don't share it with advertisers or use it for ad targeting.
We don't use your content — your tasks, notes, or anything you create in the app — to train AI models.
We don't send you marketing emails unless you opt in explicitly.
4. AI features (voice capture and triage suggestions)
Mind Like Water includes optional AI features that help you capture and organize tasks faster: voice capture (turning what you said into a task) and triage suggestions (proposing a project, area, tags, or due date for a new task). These features are off by default for free accounts and on by default for Pro accounts in suggest mode, where the AI proposes and you confirm.
What we send to AI providers, when these features are on
The text of the task you're triaging (and the voice recording, if you used voice capture).
The names of your areas, projects, tags, and contacts — so the AI can suggest matching ones rather than inventing new ones.
Up to 10 of your most recent accepted suggestions, as examples of how you like to organize.
What we do NOT send
The contents of any other tasks, notes, daily pages, or other content in your account.
Your calendar, email, or anything outside the specific task you're working on.
Your account email, real name, or billing information.
Which AI providers we use
Anthropic (Claude API) — for triage suggestions and voice transcript cleanup. Anthropic does not train models on data sent through their API.
Groq (Whisper API) — for voice-to-text transcription. Audio is processed and discarded; not used for training.
Your control
Off switch. You can turn AI features off entirely under Settings → AI. With AI off, no data is ever sent to AI providers.
Granular controls. You can choose which fields the AI suggests for (area, project, tags, due date), turn voice transcript cleanup on or off, and pause AI for 24 hours when you want focused work without suggestions.
Delete learning history. The "recent accepted suggestions" we use to personalize the AI live in your account and can be wiped from Settings → AI at any time.
Voice transcripts. When voice capture is on, the original transcript is saved to the task's notes by default so you can search it later. You can turn this off, and you can edit or delete any transcript like normal note content.
What we don't do — restated for AI
We don't sell or share your AI prompts or transcripts with anyone except the provider that processes them.
We don't use your content to train AI models, our own or anyone else's.
We don't use AI to analyze your account in the background. AI only runs when you take an action that needs it (capturing a task, dictating, triaging).
5. Who we share it with
We use a small number of trusted infrastructure providers to actually run the service. Each one handles a specific job and is bound by their own privacy practices:
Supabase — database, authentication, and real-time sync. Your content is stored on Supabase's infrastructure (US West region).
Stripe — payment processing. Stripe receives your card details directly from our checkout page; we never see or store them.
Vercel — application hosting and static content delivery.
Anthropic — Claude API for AI triage suggestions and voice transcript cleanup, when AI features are enabled. See section 4 for what we send and don't send.
Groq — Whisper API for voice-to-text transcription, when voice capture is used.
Email provider — when we enable transactional emails, we'll use a reputable email service (such as Resend or Postmark). We'll update this policy with the provider name when that's live.
We don't share your data with any third party beyond these infrastructure providers, except if required by law (for example, responding to a valid subpoena).
6. Your rights over your data
Your content belongs to you. You can:
Export everything you've put into Mind Like Water as a single JSON file, anytime, from your account settings.
Delete your account — this removes your profile, content, and associated data from our live systems immediately. Backups are purged within 30 days.
Correct information you've given us by editing it in the app or contacting us.
Ask us what we have about you — email [email protected] and we'll respond within a reasonable window (typically within a week).
If you're in the EU, UK, or California, you have additional rights under GDPR / UK GDPR / CCPA respectively, including the right to object to processing and the right to data portability. The rights listed above cover the practical versions of these — the same email address handles formal requests.
7. Data retention
Active accounts: we keep your data as long as your account is active.
Deleted accounts: your content is removed from live systems immediately and purged from backups within 30 days.
Billing records: Stripe retains transaction records for up to 7 years for tax and regulatory compliance — this is industry standard and outside our control.
Support emails: retained for up to 2 years unless you ask us to delete them sooner.
8. Security
We use industry-standard security practices: data is encrypted in transit (TLS) and at rest, passwords are one-way hashed, authentication is handled by Supabase Auth, and payments are processed by Stripe (PCI-DSS compliant). No system is perfectly secure, so if you discover a vulnerability, please email [email protected] — we'll respond promptly.
9. Children
Mind Like Water is not intended for users under 13. We don't knowingly collect information from children. If you're a parent or guardian and believe we have, contact us and we'll remove it.
10. International users
Mind Like Water is operated from the United States. If you use the service from outside the US, your data will be transferred to and stored in the US. By using the service, you consent to this transfer.
11. Changes to this policy
If we make a material change to this policy, we'll email registered users and update the "Last updated" date above. Non-material clarifications will just appear in the updated version. We'll preserve prior versions on request.