Skip to main content
Hypno Admin Pro

Privacy Policy

Last updated: 13 April 2026

1. Who We Are

Hypno Admin Pro is operated by Dante Harker (“we”, “us”, “our”). We are the data controller for the personal data processed through this service. You can contact us at hello@danteharker.com.

The Hypno Admin Pro website and application software were created by DH Tech (danteharker.com/tech).

2. What Data We Collect

Account information

When you register, we collect your name and email address. Authentication is handled by Supabase; we do not store your password directly.

Content you create

Scripts, client records, session notes, audio files, and other content you create within the Service are stored in your account.

Payment information

Payments are processed by Stripe. We store your Stripe customer ID and subscription status but never store your card details. Stripe's privacy policy governs their handling of your payment data.

Usage data

We track how many times you use AI-powered features (e.g. script generations, audio creations) to enforce trial limits. For the public website and app shell we use Vercel Web Analytics (aggregated page views and related technical data) and Vercel Speed Insights (anonymous performance metrics such as Web Vitals). Per Vercel's documentation, these products do not use analytics cookies and do not identify you personally; data is used in aggregate to run and improve the Service.

3. How We Use Your Data

  • To provide and operate the Service.
  • To process your subscription and payments.
  • To send you service-related emails (e.g. trial expiry reminders, important updates).
  • To enforce usage limits during your trial period.
  • To improve and develop the Service.

We will never sell your personal data to third parties or use your content for marketing purposes without your explicit consent.

Legal bases (UK GDPR): We process personal data to perform our contract with you (providing the Service and taking payment), for our legitimate interests in keeping the Service secure, enforcing trial limits, and understanding aggregated use of the site—where those interests are not overridden by your rights—and, if we ever rely on consent for something optional (for example marketing emails), you may withdraw it at any time.

4. AI Processing

When you use AI features (script generation, suggestions, affirmations, etc.), the prompts and parameters you provide are sent to OpenAI for processing. OpenAI's API data usage policy applies. We do not send your client names, personally identifiable information, or session notes to AI providers unless you explicitly include them in a prompt.

Reflection Room: Conversations in the Reflection Room are processed by OpenAI but are not stored on our servers. They exist only in your browser session and are discarded when you leave the page.

5. Data Storage & Security

Your data is stored securely on Supabase infrastructure (hosted on AWS). Audio files are stored in Supabase Storage. All connections use HTTPS encryption. We apply Row Level Security (RLS) policies to ensure you can only access your own data.

6. Third-Party Services

We use the following third-party services that may process your data:

  • Supabase — authentication, database, and file storage.
  • OpenAI — AI content generation (scripts, suggestions, audio voice synthesis).
  • Stripe — payment processing and subscription management.
  • Vercel — hosting, deployment, Web Analytics (aggregated traffic), and Speed Insights (anonymous performance data). See Vercel's Web Analytics privacy information and Speed Insights privacy information.

7. Your Rights (UK GDPR)

Under UK data protection law, you have the right to:

  • Access your personal data.
  • Rectify inaccurate personal data.
  • Erase your personal data (“right to be forgotten”).
  • Export your data in a portable format.
  • Object to processing of your personal data.
  • Withdraw consent at any time where processing is based on consent.

To exercise any of these rights, email us at hello@danteharker.com. We will respond within 30 days.

You also have the right to lodge a complaint with the UK Information Commissioner's Office (ICO), the supervisory authority for data protection in the UK: ico.org.uk/make-a-complaint.

8. Data Retention

We retain your account and content data for as long as your account is active. If you cancel your subscription, your data remains accessible for 90 days. After that, we may delete it. If you request account deletion, we will remove all your personal data within 30 days.

9. Cookies and similar technologies

We use essential first-party cookies so the Service can work: for example, Supabase authentication and session cookies when you sign in, and a short-lived cookie to remember UI preferences (such as sidebar layout) where applicable. These are strictly necessary for the Service you have asked us to provide.

Vercel Web Analytics and Speed Insights are configured as described in section 2; according to Vercel, they do not use third-party or advertising cookies for analytics. We do not use advertising or social tracking cookies.

If we introduce any new non-essential cookies or similar technologies (for example optional marketing or cross-site tracking), we will update this policy and, where UK/ePrivacy rules require it, ask for your consent before they run.

10. Children

The Service is not intended for anyone under 18 years of age. We do not knowingly collect data from minors.

11. Changes to This Policy

We may update this policy from time to time. Material changes will be communicated by email or through the Service. The “Last updated” date at the top will always reflect the most recent version.

12. Contact

For any privacy-related queries, please contact us at hello@danteharker.com.