Last updated: April 2026
We collect: your email address, display name, role, industry, experience level, AI knowledge level, and learning goals (provided during onboarding). We also store your learning progress, session history, quiz responses, exercise responses, and AI mentor conversations.
We do NOT collect or store your AI API keys on our servers. Your API keys are encrypted using AES-256-GCM and stored only in your browser's local storage. They are decrypted in memory only when making direct calls from your browser to the AI provider.
Your data is used solely to provide personalized learning content, track your progress, and improve your experience. We do not sell, rent, or share your personal data with any third party.
When you use Day01.AI, your browser makes direct API calls to your chosen AI provider (OpenAI, Anthropic, or Google). These calls include your profile context (role, industry, learning history) to generate personalized content. Your API key and these interactions are governed by the respective provider's privacy policy.
Your account data is stored in Supabase (PostgreSQL) with Row Level Security (RLS) enabled, ensuring each user can only access their own data. Data is hosted in secure cloud infrastructure.
You can request deletion of your account and all associated data by contacting us. Since Day01.AI is open source, you can also self-host and maintain full control over your data.
We use essential cookies for authentication (Supabase session tokens). We do not use tracking cookies or third-party analytics cookies.
For privacy-related questions, please open an issue on our GitHub repository or email the project maintainer.