Privacy Policy

Mediator.ai LLC ("we", "us", "Mediator") provides an AI-assisted mediation tool. This page explains what we collect, why, and what we do with it. The short version: your mediation content is confidential to you and the parties you invite, we don't sell your data, and we keep what we collect to the minimum needed to run the service.

What we collect

• Account information: the email address you sign up with, and an optional display name.
• Mediation content: the messages you exchange with the AI mediator and any other parties you invite into a conversation.
• Usage and analytics: standard product analytics (page views, button clicks, feature usage) to understand how the product is used and to debug issues. We use PostHog for this. PostHog session replay is enabled on both the marketing site and the app; on the marketing site it records anonymous mouse movement, scroll position, and click positions only (form fields are automatically masked so we never capture what you type into an email or password field). Inside the app, replays may capture what you type into chat and other inputs so that we can diagnose product issues; chat and statement content are subject to the operator-visibility and confidentiality terms below.
• Payment information: credit-card and billing data is processed by Stripe; we never see or store full card numbers.
• Marketing attribution: if you arrived via a paid Google ad, we capture the click ID (gclid) so we can measure the ad campaign's effectiveness.

How we use it

• To run the AI mediation: your messages are sent to large-language-model providers (currently Anthropic) to generate the mediator's responses.
• To bill you for usage: we record token costs and debit your prepaid balance accordingly.
• To improve the product: aggregated, anonymized usage patterns inform what we build and what we fix.
• To send service emails: verification, payment receipts, and the occasional product update. We don't sell your email or send marketing blasts.

Confidentiality of mediation content

The substance of your conversations with the AI mediator — what you're negotiating, what you wrote in your statement, what positions you proposed — is treated as confidential. We do not use it to train models. We do not share it with anyone outside the parties you invited into that specific conversation, except (a) with the operational service providers we depend on to run the service, (b) for the operator-visibility purposes described below, and (c) under the "Safety exception" section that follows.

Operator visibility

The Mediator team may access conversation content for these specific purposes: debugging product issues, reviewing flagged or unusual sessions (including the safety review described below), evaluating product quality, and improving prompts. We do not browse conversations for any other purpose, and most day-to-day product work runs on aggregated and anonymized data. If you would prefer that we not retain a particular conversation, you can email hello@mediator.ai and we will delete it.

Service providers

To operate the service we send data to a small set of operational service providers, each under their own contractual terms. The current list:

• Anthropic — the LLM provider that generates the AI mediator's responses. Your messages are sent to Anthropic for inference. Anthropic's API terms specify they do not retain or train on this data.
• Neon — our hosted PostgreSQL database. Account, conversation, and billing data live here.
• PostHog — product analytics and session replay (see "Usage and analytics" above). PostHog Cloud is hosted in the United States.
• Stripe — payment processing for credit purchases.
• Resend — transactional email delivery (verification, receipts).
• Google — Google Sign-In as an alternative to magic-link sign-up. We receive only the email address and basic profile fields you authorize.
• Fly.io — application hosting (currently the Chicago region).
• Cloudflare — CDN and edge protection.

We may add or substitute service providers as the product evolves; material changes are reflected in this page with a new "Last updated" date.

If any provider's policies change in a way that affects how your data is handled (for example, if Anthropic ever changed its retention or training policy), we will update this page and notify users.

Safety exception

We run an automated content-safety classifier over conversation messages. If the classifier flags a message as indicating a credible threat of serious physical harm to a specific identifiable person (including the user) or imminent self-harm, the flagged session is escalated to a human operator for review. We may also escalate content identified through other means as belonging to a narrow set of unlawful categories (for example, child sexual abuse material). Where we judge in good faith that disclosure is necessary to prevent imminent harm or to comply with a legal obligation, we may share the relevant portion of the conversation, the account metadata, and any related logs with: our model provider (currently Anthropic), law enforcement or emergency responders, the at-risk person or their representatives, and our outside counsel. We will share only what is reasonably necessary for that purpose, and we will record each disclosure in an internal audit log. This is a narrow exception to the general confidentiality commitment above and is not used for routine product operation, marketing, or analytics.

Cookies and tracking

We use a small set of first-party cookies for: keeping you signed in, remembering your last conversation, attributing paid ad clicks, and measuring funnel performance. We honor browser Do Not Track signals where the analytics provider supports them, and we apply Google Consent Mode v2 defaults that deny advertising and analytics storage by default for visitors from the EU, UK, and EEA.

Your rights

You can request a copy of your data, ask us to correct it, or ask us to delete your account, by emailing hello@mediator.ai. EU residents have additional rights under GDPR, including the right to object to processing and the right to lodge a complaint with a supervisory authority.

Data retention

We retain account and conversation data for as long as your account is active. When you delete your account, we delete personal data within 30 days, except where we are required to keep records for legal or tax purposes (e.g., transaction records).

Security

Data in transit is encrypted via TLS. The application database (PostgreSQL on Neon) is encrypted at rest. We use industry-standard practices for authentication and access control. No system is perfectly secure; if you suspect a vulnerability, please report it to hello@mediator.ai.

Changes to this policy

We may update this policy as the product evolves. Material changes will be announced on this page with a new "Last updated" date. Continued use of the service after a change constitutes acceptance of the updated policy.

Contact

Questions about this policy or how your data is handled: hello@mediator.ai.