Privacy Policy

Last updated: April 19, 2026

This page explains what we collect, what we never collect, and what we do with it. If anything here is unclear, reach out via our help center and we'll rewrite it.

Who this applies to

Anyone who visits freedailyquestion.com, creates a Daily Question account, or receives a question from a group that uses our service.

What we collect

Account information. When you sign up we store your email, the name you provide, a hashed version of your password (we never see your actual password), and the organization you create or join. If you sign in with a third-party identity provider, we receive your email, name, and profile picture from them.

Organization information. The name of your organization, its industry, and the members you invite (email plus optional name).

Billing information. If you upgrade to a paid plan, our payment processor handles your card details. We only see the plan you chose, your billing email, and the last four digits of your card for your records.

Question responses. When a member of your group taps an answer, we record which option they picked and the day they picked it. Nothing else. The response is stored without any link back to the person who answered. For more on how that works, see our Trust page.

Basic traffic data. Like most websites, our servers log the pages that are requested, the approximate location they came from, and the browser used. We use this to diagnose errors and understand which pages are useful.

What we don't collect

• Any link between a question response and the person who submitted it.
• The location of a member when they answered. We don't track where you are.
• The time of day a response was submitted. We keep the date, not the clock time.
• Whether a member opened a question email. We don't use invisible open-tracking images.
• Device fingerprints, ad-network IDs, or any third-party advertising profiles.
• Payment card numbers. Those stay with our payment processor.

How we use what we collect

• To send the daily question email to your group at the schedule you picked.
• To show aggregated results and Health Score trends to your organization's managers.
• To keep you logged in, process upgrades, and send you account-related emails (receipts, password resets, delivery failures).
• To reply when you write to support.
• To improve the product. We look at anonymized usage patterns to find what's confusing or slow.

Cookies and analytics

We use a small number of cookies: a session cookie that keeps you logged in, a CSRF cookie that protects form submissions, and analytics cookies used by the tools below. None of these cookies are used for advertising.

On our marketing pages (not inside the app), we use third-party analytics and session-replay providers to understand which pages bring people in and where visitors drop off. You can turn off analytics cookies in your browser to opt out. These tools automatically mask password fields and do not run inside the authenticated product.

Analytics tools do not run on question emails, answer pages, or anywhere inside the authenticated member experience.

Who we share data with

We work with a small number of service providers who handle specific pieces of the product on our behalf. They only receive the data they need to do their job. A current list of subprocessors is available on request via our help center.

• Cloud hosting and database. Our app runs on a US-region cloud provider. Your data is stored there.
• Payment processing. Handles your card when you upgrade. We never see the card number.
• Transactional email delivery. Sends the daily question and account emails.
• Web analytics. Aggregate usage analytics and session replay on our marketing pages only.
• AI question drafting. When you ask our AI to draft a question bank, the prompt you type is sent to our AI provider to generate the output. The AI never receives individual response data.

We don't sell your data. We don't share it with advertisers.

How long we keep data

• Account and organization data. Kept while your account is active. If you cancel, we delete it 90 days later.
• Question responses. Kept indefinitely as anonymous counts. Because they have no link to the person who submitted them, there's nothing to "delete by user."
• Support emails and tickets. Kept for two years so we can reference past conversations when you write in again.
• Traffic and analytics logs. Kept for 14 months, then deleted automatically.

Your rights

You can:

• Access a copy of the account data we have about you.
• Correct anything that's wrong.
• Delete your account and associated data.
• Turn off marketing emails at any time from your account settings.
• Stop your team's daily question emails at any time using the one-click unsubscribe link in any message footer. The setting is per-team and reversible from your profile page.

To use any of these, contact us through our help center using the email address on your account. We respond within five business days.

If you're in California, the EU, or the UK, you have additional rights under CCPA, GDPR, or UK GDPR. You can exercise all of them through the same channel.

Children

Daily Question is not designed for children under 13, and we don't knowingly collect their data. If you believe a child has signed up, email us and we'll remove the account.

Security

We encrypt data in transit (HTTPS) and at rest in our database. Access to production systems is limited to the people who need it. We'll notify affected users within 72 hours if we ever discover a breach involving personal data.

International transfers

Our servers are in the United States. If you access Daily Question from outside the US, your data will be transferred to and processed in the US.

Changes to this policy

When we make material changes, we update the "Last updated" date at the top and notify account holders by email. Minor wording changes happen quietly.

Contact

Questions or requests: visit our help center.