CEO Mirror

Dashboard

Privacy Policy

Last updated: February 3, 2026

Introduction

CEO Mirror ("we," "our," or "us") operates ceo-lab.vercel.app. This page informs you of our policies regarding the collection, use, and disclosure of personal data when you use our service and the choices you have associated with that data.

Information We Collect

Personal Information

When you create an account, we collect:

  • Email address
  • Name (via Google OAuth)
  • Profile information from authentication provider

Assessment Data

We collect and store your responses to:

  • Hook assessment (12 questions)
  • Baseline assessment (100 questions)
  • Weekly check-in questions
  • Quarterly focus selections

Payment Information

Payment processing is handled by Stripe. We do not store your credit card information. We receive and store: subscription status, customer ID, and subscription ID from Stripe.

Usage Data

We may collect information about how you access and use the service, including:

  • Log data (IP address, browser type, pages visited)
  • Device information
  • Usage patterns and engagement metrics

How We Use Your Information

We use the collected data for:

  • Providing and maintaining the service
  • Calculating your leadership scores and progress
  • Sending weekly check-in reminders
  • Processing payments and managing subscriptions
  • Improving and personalizing your experience
  • Communicating with you about updates and features
  • Detecting and preventing fraud or abuse

Data Storage and Security

Your data is stored securely using Supabase, a SOC 2 Type 2 certified infrastructure provider. We implement appropriate technical and organizational measures to protect your personal data.

However, no method of transmission over the Internet is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

Data Sharing

We do not sell your personal data. We may share your information with:

  • Service Providers: Supabase (database), Stripe (payments), Vercel (hosting), Resend (email)
  • Legal Requirements: When required by law or to protect our rights
  • Business Transfers: In connection with a merger, acquisition, or sale of assets

Your Rights (GDPR)

If you are in the European Economic Area, you have the right to:

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate data
  • Erasure: Request deletion of your data
  • Restriction: Limit how we use your data
  • Portability: Receive your data in a structured format
  • Objection: Object to certain data processing

To exercise these rights, contact us at privacy@ceo-lab.com

Data Retention

We retain your personal data for as long as your account is active or as needed to provide services. If you cancel your subscription, we will retain your data for 90 days before permanent deletion, unless you request immediate deletion.

Cookies

We use cookies and similar tracking technologies to maintain your session and improve the service. You can control cookies through your browser settings.

Children's Privacy

Our service is not directed to individuals under 18. We do not knowingly collect personal information from children. If you become aware that a child has provided us with personal data, please contact us.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last updated" date.

Contact Us

If you have questions about this Privacy Policy, please contact us:

  • Email: privacy@ceo-lab.com
  • Website: ceo-lab.vercel.app