01 Who We Are
GoFindOne ("the Platform") is operated by Wolflow AI LLC ("we," "us," or "our"), a Missouri limited liability company. This Privacy Policy explains how we collect, use, disclose, and protect your information when you use our platform and services.
Questions about this policy? Contact us at hello@gofind.one.
02 Age Requirement
GoFindOne is intended for users who are at least 18 years of age. We do not knowingly collect personal information from anyone under 18. If you believe a minor has provided us with personal information, contact us at hello@gofind.one and we will promptly delete it.
03 Information We Collect
Information you provide
- Account information: email address, display name, password (hashed), city, country, and role when you register or complete onboarding.
- Sponsor content: problem titles, briefs, prize details, deadlines, attached files, and additional context you provide when posting a problem.
- Solver content: submission summaries, links, uploaded solution files, team member names, and story preferences you provide when entering a problem.
- Profile information: public display name, bio, organization name, and profile slug you choose to share.
- Payment information: payment details are collected and processed by Stripe. We do not store your full card number. We store Stripe customer and payment intent IDs.
- Communications: messages you send through support channels or email.
Information collected automatically
- Log data: IP addresses, access timestamps, browser type, operating system, and page request metadata.
- Usage data: pages visited and features used on the platform.
Information we do not collect
- We do not use advertising cookies or third-party tracking cookies.
- We do not collect biometric data.
- We do not sell your personal data to third parties.
04 How We Use Your Information
- Operate the platform: facilitate problem posting, solver submissions, winner selection, and prize processing.
- Process payments: handle prize escrow, platform fees, and refunds through Stripe.
- AI-assisted features: problem brief improvement and automated quality review are powered by the Anthropic API. Brief content you submit is sent to Anthropic for processing and is subject to their privacy policy.
- Trust and safety: detect fraud, enforce platform rules, and manage disputes.
- Send notifications: transactional emails (submission confirmations, winner declarations, account security) via Resend. You may opt out of non-essential notifications.
- Improve the platform: analyze anonymized usage patterns to improve features and performance.
- Legal compliance: respond to legal requests, enforce our Terms of Service, and protect rights and safety.
05 How We Share Your Information
We do not sell your personal information. Ever.
We share information with the following parties only as necessary to operate the platform:
Supabase
Database, authentication, and file storage
Cloudflare
Hosting, edge functions, and DNS
Stripe
Payment processing and escrow
Resend
Transactional email delivery
Anthropic
AI brief generation and quality review
We may also disclose information when required by law, regulation, or governmental request, or in the event of a merger, acquisition, or sale of assets.
Submissions and blind evaluation
Solver submissions are evaluated under blind conditions. Sponsors cannot see the identity of any solver until after a winner is officially declared. At that point, the winner's identity is revealed to the sponsor for prize fulfillment. Non-winning submissions remain associated with the solver's account for their own record.
Public information
Your public profile (display name, solver reputation score, win history) is visible to all platform visitors. Anonymous accounts display no identifying information — only their reputation score and win history.
06 Your Rights
All users
- Access: request a copy of the personal data we hold about you.
- Correction: request correction of inaccurate or incomplete personal data.
- Deletion: request deletion of your account and associated personal data.
- Notification preferences: manage your email preferences at any time.
California residents (CCPA)
- Right to know what personal information we collect, use, and disclose.
- Right to request deletion of your personal information.
- Right to opt out of the sale of personal information. Note: we do not sell personal information.
EEA residents (GDPR)
- Right to data portability — receive your data in a structured, machine-readable format.
- Right to restrict processing under certain circumstances.
- Right to object to processing based on legitimate interests.
To exercise any of these rights, contact us at hello@gofind.one.
07 Data Security
- Encryption in transit: all data between your browser and our servers is encrypted via HTTPS/TLS.
- Encryption at rest: Supabase encrypts all stored data using AES-256.
- Row-Level Security: database access is controlled by Supabase RLS policies — users can only access their own data.
- Password hashing: passwords are hashed by Supabase Auth before storage and are never accessible in plaintext.
- PCI-DSS compliance: all payment processing is handled by Stripe, which is PCI-DSS Level 1 certified.
No system is perfectly secure. We implement reasonable measures to protect your data but cannot guarantee absolute security. In the event of a breach affecting your personal information, we will notify affected users promptly.
08 Data Retention
- Account data: retained while your account is active; deleted within 30 days of an account deletion request.
- Payment records: retained for 7 years as required by financial regulations.
- Submission data: retained while your account is active and for a reasonable period after; deleted on account deletion request.
- Server logs: retained for 90 days, then purged.
09 Cookies
GoFindOne uses a minimal cookie approach. Supabase Auth sets cookies strictly necessary for maintaining your login session. These are essential cookies and do not require consent.
We do not use advertising cookies, tracking cookies, or third-party analytics cookies. No cookie consent banner is required.
10 Third-Party Links
Our platform may contain links to third-party websites or services. We are not responsible for the privacy practices of those sites. We encourage you to review the privacy policies of any third-party services you access through the platform.
11 Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the effective date. For significant changes we will provide additional notice via email. We encourage you to review this policy periodically.