Privacy Policy

Source of You is operated by Chaos Theory Studios LLC (“we,” “us”) and provides the Professional Identity Record platform at sourceofyou.com. This policy covers the data we process when you use it. Questions: legal@hue42.com.

• Account information. Your email address and name, established when you claim a record or sign in. If you sign in with Google, we receive your basic Google profile (name, email, avatar), never your Google password.
• Your record content. Everything you put into your Professional Identity Record: roles, work, story, proof, links, and any other fields you choose to provide. You decide what goes in.
• Generated outputs and versions. The resume, source page, LinkedIn summary, bio, and visibility audits produced from your record, plus version history so you can track changes.
• Assistant conversations. Messages you exchange with the in-app assistant, so it can help edit your record in context.
• Usage and technical data. First-party analytics events (for example, page views and when a record is published) and standard server logs (IP, browser, timestamps) used to operate and secure the service.

• To provide the product. Store your record and generate the surfaces you ask for from it.
• To improve and secure it. Understand how features are used, prevent abuse, and debug, using aggregate or first-party data, not profiling for ads.
• To communicate. Send the sign-in links and essential service messages you request.

Generating your outputs requires sending the relevant parts of your record to Anthropic’s Claude API. Under Anthropic’s commercial API terms, your inputs and outputs are not used to train their models. The optional AI-visibility audit reads publicly available web pages about you to assess how AI systems describe you. It reads public sources; it does not publish on your behalf.

Your record stays private until you publish. When you publish a source page (or share a resume link), that surface and the content you placed on it become publicly accessible to anyone with the link and to search engines and AI crawlers. That is the point of the product. Unpublishing removes it from public view going forward.

We don’t sell your data. We share it only with the service providers that run the product, under their data-protection terms:

• Supabase. Authentication (including Google sign-in) and our Postgres database. Hosted in the United States.
• Anthropic. Generating outputs from your record, as described above.
• Google. Only if you choose Google sign-in, to authenticate you.

We may also disclose information if required by law, or to protect the rights and safety of our users and the service.

We keep your data while your account is active. You can delete individual records, and you can ask us to delete your account and associated personal data at legal@hue42.com. We will do so except where we must retain limited records to meet legal obligations. Note that anything you previously published may persist in third-party caches or indexes outside our control.

Depending on where you live (for example, under GDPR or CCPA/CPRA), you may have the right to access, correct, export, or delete your personal data, and to object to certain processing. We honor these for all users; exercise them at legal@hue42.com. We don’t sell personal data, so there is nothing to opt out of there.

Data is encrypted in transit. Authentication is passwordless (magic link or Google), so there is no password for us to lose. No system is perfectly secure, but we work to protect your record and limit access to it.

We use first-party cookies strictly to keep you signed in and to operate the claim flow, plus first-party analytics to understand product usage. We do not use third-party advertising or cross-site tracking cookies.

The Source of You software is open source under the MIT License, so you can inspect exactly how your data is handled. Open code does not change this policy: our hosted service still stores and processes data as described here.

Source of You is for working professionals and is not directed to anyone under 16. We don’t knowingly collect data from children.

We may update this policy. We’ll revise the effective date above and, for material changes, give notice in-product. Continued use after a change means you accept the updated policy.

Questions or requests about your data: legal@hue42.com.