Privacy Policy
Last updated: 28 March 2026
Who We Are
RATTO Michael, individual entrepreneur registered in France, operates the PULSE application.
Contact: michael.ratto@pm.me
Data We Collect
Account Data
- Email address
- First and last name (if provided)
- Authentication method (Apple Sign In, email)
Profile Data
To personalize your PULSE score and impact analysis:
- Age range
- Gender
- Country and city
- Profession
- Housing situation
- Family status and composition
- Transport mode
- Health treatments and conditions
- Personal interests
Usage Data
- Your PULSE score and daily updates
- Impacts you have read
- Actions you have taken
- Current streak
- Badges earned
- Friend circle information
Technical Data
- App version and device type
- Crash reports and error logs
- Hashed IP address
- Timestamps of app usage
What We Don't Collect
- Exact income or financial data
- Phone number
- Precise geolocation (GPS)
- Contact list or address book
- Photos or media files
- Banking or payment information
- Browsing history outside PULSE
Why We Collect Your Data
- Account Management: Create and maintain your account, authenticate you securely
- Impact Personalization: Analyze global events against your unique profile to calculate impact
- PULSE Score: Generate your daily score based on collected world news and personal data
- App Functionality: Enable friend circles, badges, streaks, and usage features
- Performance & Improvement: Fix bugs, improve features, understand how the app is used
Data Sharing & Third Parties
We use the following services to operate PULSE. Your data is shared with:
- Supabase (hosting, authentication, database) — EU-based, GDPR compliant
- Anthropic (Claude AI for impact analysis) — US-based, encrypted in transit
- RevenueCat (subscription management) — US-based
- Apple (Sign In, payments, App Store) — US/EU-based
- Google (authentication for Android, Play Store) — US-based
Your data is NEVER sold to third parties. We do not monetize your personal information.
Data Retention
- Active Account: Kept for the duration of your account
- PULSE Scores & History: Retained for 2 years after generation
- Technical Data: Retained for 12 months
- After Account Deletion: Completely removed within 30 days (backup retention may add 30 days)
Your GDPR Rights
Under GDPR (if you are in the EU) and similar laws, you have the right to:
- Access: Request a copy of your personal data
- Rectification: Correct inaccurate data
- Erasure: Delete your data (right to be forgotten)
- Portability: Download your data in a standard format
- Objection: Opt out of certain data processing
- Restriction: Limit how we process your data
- Withdrawal of Consent: Stop data collection (where applicable)
To exercise these rights, contact: michael.ratto@pm.me
Security
- All data transmitted via TLS 1.3 encryption
- Data at rest encrypted in the database
- Row Level Security (RLS) ensures you only see your own data
- Passwords handled via secure authentication providers (Apple Sign In, email verification)
- No passwords stored in plaintext
International Data Transfers
Some of our service providers are based in the United States. We ensure adequate safeguards via:
- Data Processing Agreements (DPA) with GDPR Standard Contractual Clauses (SCCs)
- Data Protective Framework (DPF) where applicable
- Encryption in transit
Children & Minors
PULSE is not intended for individuals under 16 years old. We do not knowingly collect data from minors. If we become aware that a minor has provided personal data, we will delete it promptly.
Cookies & Tracking
- The PULSE app does NOT use cookies
- The PULSE website does NOT use tracking cookies or analytics that identify individuals
- No third-party advertising tracking
Changes to This Policy
We may update this privacy policy to reflect changes in our practices or legal requirements. We will notify you of significant changes via email or an in-app notice.