← Back to home

Legal

Privacy Policy

Superheadstart ("we", "our", "us") provides a daily morning briefing service. This Privacy Policy describes what personal information we collect, how we use and share it, and the choices available to you.

Last updated: February 23, 2026

Scope

This Privacy Policy applies to the Superheadstart website, product, and related services (collectively, the "Service"). It explains how we collect, use, disclose, and protect personal information.

Data We Collect

  • Account and profile information, such as your name, email address, and authentication identifiers.
  • Service configuration and preference data, such as delivery channel, locations, and briefing settings.
  • Optional integration data that you authorize, such as calendar, inbox, commute, and market preferences.
  • Usage and technical data, such as device, browser, logs, and feature interaction events.

How We Use Data

  • To generate and deliver your personalized daily briefing.
  • To operate, maintain, secure, and improve the Service.
  • To communicate transactional updates, account notices, and support responses.
  • To prevent abuse, fraud, security incidents, and policy violations.

Legal Bases (Where Applicable)

Depending on your location, we process personal information under one or more legal bases: performance of a contract, legitimate interests, legal obligations, and consent where required.

Cookies and Similar Technologies

We may use cookies or similar technologies for authentication, security, performance, and analytics. You can control cookies through your browser settings. Disabling certain cookies may impact Service functionality.

How We Share Information

  • Service providers and subprocessors that help us run the Service (for example infrastructure, analytics, messaging, and email providers).
  • Professional advisors and authorities where disclosure is required by law or to protect rights, safety, and security.
  • Successor entities in connection with mergers, acquisitions, financings, or asset transfers.
  • We do not sell personal information for monetary consideration.

California Privacy Rights (CCPA/CPRA)

California residents may have rights to know, access, delete, and correct personal information, and to limit certain uses of sensitive personal information. You may also have the right not to be discriminated against for exercising privacy rights.

We do not sell personal information for monetary consideration and do not share personal information for cross-context behavioral advertising as those terms are defined under California law.

International Data Transfers

Your information may be processed in countries other than your own. Where required, we use appropriate safeguards for cross-border data transfers.

EEA/UK Data Protection Rights

  • If you are in the EEA or UK, you may have rights to access, rectify, erase, restrict processing, object to processing, and data portability.
  • Where processing is based on consent, you can withdraw consent at any time without affecting prior lawful processing.
  • You may lodge a complaint with your local supervisory authority.

Data Retention

We retain data only for as long as necessary for the purposes described in this policy, including legal, accounting, or security needs. Retention periods vary by data type and operational requirements.

Security

We use reasonable technical and organizational safeguards designed to protect personal information. No method of transmission or storage is completely secure, so we cannot guarantee absolute security.

Your Rights and Choices

  • You can access, update, or correct certain account details through the Service.
  • You can disconnect optional integrations at any time.
  • You can request deletion of your account and associated personal information.
  • Depending on your location, you may have rights to access, delete, portability, or restrict certain processing.

Children's Privacy

The Service is not directed to children under 13 (or older minimum age where required by local law). If you believe a child provided personal information, contact us and we will take appropriate action.

Policy Changes

We may update this Privacy Policy from time to time. We will post the updated version and revise the "Last updated" date. Continued use of the Service after changes become effective means you accept the revised policy.

Subprocessors and Data Processing Addendum

For business customers, we may provide a Data Processing Addendum (DPA) on request.

Business Identity

Legal entity: Superheadstart (update with your registered legal entity name).

Business address: Update this section with your registered business mailing address.

Contact

Questions about privacy: hello@superheadstart.com

For privacy rights requests, include subject line: Privacy Request and the account email associated with your request.