← Back to home

Privacy Notice

Last updated: 7 July 2026

This Privacy Notice explains how CORE Advisory Group ("we", "us", "our") — the operator of NeuroPlanner OS (the "Service") — collects, uses, and protects your personal data.

1. Data controller

CORE Advisory Group is the data controller for personal data processed through the Service. You can reach us at latrice@coreadvisorygrp.co.

2. Personal data we collect

  • Account data: name, email address, login credentials, authentication tokens.
  • Product data: entries you create in the app (priorities, moods, brain dump, focus sessions, wins), preferences, settings.
  • Support data: messages you send us and their metadata.
  • Technical data: device identifiers, IP address, browser type, usage/telemetry, error logs.
  • Order data: order confirmations and subscription status received from Paddle. Paddle collects and processes your billing details directly — see their Privacy Policy.

3. Purposes and legal bases

  • Provide the Service (contract performance): create your account, sync your data, deliver features.
  • Customer support (contract / legitimate interests): respond to your requests.
  • Security & fraud prevention (legitimate interests, legal obligation): detect abuse, protect accounts.
  • Product improvement (legitimate interests): understand usage patterns and fix issues.
  • Legal compliance (legal obligation): tax, accounting, responding to lawful requests.

4. Who we share data with

  • Service providers / subprocessors: hosting, database, authentication, email delivery, and error monitoring providers acting on our instructions.
  • Paddle, our Merchant of Record, which handles the sale of subscriptions, payments, tax compliance, invoicing, and refunds.
  • Professional advisers: legal, accounting, and compliance advisers where necessary.
  • Authorities: where required by law or to protect our rights.

We do not sell your personal data.

5. International transfers

Some subprocessors may process data outside your country. Where applicable, we rely on adequacy decisions or Standard Contractual Clauses to protect your data.

6. Data retention

We keep your account data for as long as your account is active. When you delete your account, we delete or anonymise your personal data within a reasonable period, except where we must retain it to comply with legal, tax, or accounting obligations.

7. Your rights

Depending on your jurisdiction, you may have the right to access, rectify, erase, restrict or object to processing, and to data portability. You may also withdraw consent at any time and lodge a complaint with your local data protection authority. To exercise any right, email latrice@coreadvisorygrp.co. We respond within one month.

8. Security

We use appropriate technical and organisational measures — including encryption in transit, access controls, and least-privilege database policies — to protect your personal data. No system is perfectly secure; report any suspected issue to the email above.

9. Cookies

We use essential cookies and local storage required to keep you signed in and to remember your preferences. We do not use advertising cookies.

10. Children

The Service is not directed at children under 16, and we do not knowingly collect data from them.

11. Changes to this notice

We may update this notice from time to time. Material changes will be announced in the Service or by email. The "Last updated" date above reflects the most recent version.

12. Contact

CORE Advisory Group — latrice@coreadvisorygrp.co

See also: Terms of Service · Refund Policy