← Back to Pulse

Privacy Policy

Last updated: February 18, 2026

Pulse ("we," "us," or "our") is a task management application designed for people with ADHD, autism, and executive dysfunction. We are committed to protecting your privacy and being transparent about the data we collect, how we use it, and your rights regarding that data.

This Privacy Policy applies to the Pulse application and website (collectively, the "Service"). By using the Service, you agree to the collection and use of information as described in this policy.

1. Information We Collect

a. Account Information

When you create an account, we collect your phone number for authentication purposes. We use SMS-based one-time passcodes (OTP) to verify your identity. We do not collect your name, email address, or other personal identifiers unless you voluntarily provide them in your profile.

b. Task and Project Data

We store the tasks, projects, notes, and organizational data you create within the Service. This includes task titles, descriptions, categories, energy levels, estimated durations, completion status, and any text you enter during brain dump sessions.

c. Usage and Behavioral Data

To improve our AI recommendations, we collect anonymized usage events such as which tasks you start, complete, or skip, your energy level selections, focus session durations, and timing patterns. This data is used solely to personalize the Service for you and is never sold or shared with third parties for advertising.

d. Device Information

We may collect basic device information such as browser type, operating system, and screen size to optimize the Service experience. We do not collect device identifiers, location data, or contacts.

2. How We Use Your Information

We use your information to:

  • Authenticate your identity via SMS verification codes
  • Store and display your tasks, projects, and organizational data
  • Provide AI-powered task parsing, decomposition, prioritization, and project suggestions
  • Personalize focus recommendations based on your energy, time, and behavioral patterns
  • Improve the Service through aggregated, anonymized usage analytics
  • Communicate with you about your account or the Service (only via SMS to your registered phone number)

3. SMS Communications

Pulse uses SMS text messages solely for account authentication. When you sign in, we send a one-time verification code to the phone number you provide.

  • Message frequency: You will receive one (1) SMS message per sign-in attempt containing a 6-digit verification code.
  • Message content: Authentication codes only. We do not send marketing messages, promotional offers, or recurring campaign messages via SMS.
  • Message and data rates may apply. Standard carrier messaging and data rates apply to SMS messages sent to and from your device. Pulse does not charge for SMS messages, but your carrier may.
  • Opt-out: You may stop receiving SMS messages at any time by deleting your account. Since SMS is used only for authentication, opting out of SMS means you will not be able to sign in to the Service.
  • Carriers supported: The Service is compatible with all major US carriers including AT&T, Verizon, T-Mobile, Sprint, and others.
  • SMS delivery: SMS messages are sent via Twilio, a third-party communications platform. Twilio's privacy policy is available at twilio.com/legal/privacy.

We will never share, sell, or use your phone number for any purpose other than account authentication. Your phone number is not shared with any third parties except our SMS delivery provider (Twilio) as necessary to deliver verification codes.

4. AI Data Processing

Pulse uses AI (powered by Anthropic's Claude) to process your task data. When you use features like brain dump parsing, task decomposition, or focus suggestions, the text you provide is sent to Anthropic's API for processing.

  • AI processing is performed on-demand only when you use specific features. Your data is not continuously sent to AI services.
  • Anthropic does not use data sent via their API to train their models. See Anthropic's privacy policy for details.
  • We do not send your phone number, account ID, or other personal identifiers to AI services — only the task content necessary for the requested feature.

5. Data Storage and Security

Your data is stored securely using Supabase, a hosted PostgreSQL database platform with enterprise-grade security. All data is encrypted in transit (TLS) and at rest. Access to your data is protected by Row Level Security (RLS) policies — only you can read or modify your own data through the application.

We implement reasonable administrative, technical, and physical safeguards to protect your data. However, no method of electronic storage or transmission is 100% secure, and we cannot guarantee absolute security.

6. Data Sharing

We do not sell, rent, or trade your personal information. We share data only with the following service providers, solely as necessary to operate the Service:

  • Supabase — database hosting and authentication infrastructure
  • Twilio — SMS delivery for authentication codes
  • Anthropic — AI processing for task management features
  • Vercel — application hosting and delivery

We may also disclose your information if required by law, regulation, legal process, or governmental request.

7. Data Retention

We retain your data for as long as your account is active. If you delete your account, we will delete all associated data (profile, tasks, projects, and events) within 30 days. Anonymized, aggregated analytics data that cannot be linked back to you may be retained indefinitely.

8. Your Rights

You have the right to:

  • Access the personal data we hold about you
  • Correct inaccurate data in your account
  • Delete your account and all associated data
  • Export your data in a portable format
  • Withdraw consent for data processing at any time by deleting your account

To exercise any of these rights, contact us at privacy@getpulse.app.

9. Children's Privacy

The Service is not directed to children under the age of 13. We do not knowingly collect personal information from children under 13. If we discover that a child under 13 has provided us with personal information, we will delete it promptly. If you believe a child under 13 has provided us with personal data, please contact us at privacy@getpulse.app.

10. California Residents (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information we collect, the right to delete your personal information, and the right to opt out of the sale of your personal information. We do not sell personal information. To exercise your CCPA rights, contact us at privacy@getpulse.app.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting a notice in the Service. Your continued use of the Service after changes are posted constitutes your acceptance of the updated policy.

12. Contact Us

If you have questions about this Privacy Policy or our data practices, contact us at:

privacy@getpulse.app

© 2026 Pulse. All rights reserved.