Privacy Policy

Account Information

• •Name, email address, phone number, and other registration details
• •Authentication credentials and security preferences
• •Participant type (individual, organization, government, network, or Vanguard member)
• •Payment and billing information for subscription services and WFI (Wellbeing Futures Investing) accounts

Wellbeing and LEWs Data

• •LEWs (Lifetime Expected Wellbeing-Years) measurement data and assessments
• •Wellbeing scores, progress tracking, and related analytics
• •GoldJourney™ progress and transformation pathway data

GoldCastle™ Content

• •Data you create, upload, or store within your self-sovereign GoldCastle™
• •Compositions you create for personal use or for sale through GoldStore™
• •GoldSage™ interaction history — your lifelong AI partner builds continuity across interactions to serve you better

Usage and Device Information

• •Log data, device identifiers, browser type, and operating system
• •Pages visited, features used, and interaction patterns
• •IP address and approximate location (for security and service optimization)

• •Providing and maintaining the GoldBird platform and all associated services
• •Powering your GoldSage™ AI partnership — GoldSage builds continuity across your interactions to provide personalized guidance, not generic responses
• •Calculating and tracking your LEWs (Lifetime Expected Wellbeing-Years) measurements
• •Processing transactions for WFI investment accounts, GoldStore™ commerce, and GoldDataMarkets™
• •Matching you with relevant GoldOpportunities™ — careers, businesses, partnerships, and freelance work
• •Authenticating your identity and securing your account (including SMS verification via Twilio)
• •Improving platform performance, reliability, and user experience
• •Detecting and preventing fraud, abuse, and security threats
• •Complying with legal obligations and regulatory requirements

AI Providers We Use

• •GoldSage™ currently operates on AI technology from Anthropic (Claude) and Google (Gemini), and may incorporate additional AI providers in the future.
• •We select AI providers based on capability, safety, privacy practices, and alignment with our ethics-first principles.
• •We may add, change, or remove AI providers at any time to improve the quality and reliability of GoldSage™. Your relationship is with GoldBird and GoldSage™ — not with any specific underlying AI provider.

What Data Is Processed by AI Providers

• •When you interact with GoldSage™, the content of your conversation — including questions, instructions, and context you provide — is sent to one or more AI providers for processing.
• •To provide personalized guidance, GoldSage™ may include relevant context from your GoldCastle™, such as your wellbeing data, LEWs measurements, goals, and interaction history. Only the context needed to serve your request is transmitted.
• •AI providers process this data to generate responses and return them to the platform. We do not permit AI providers to use your data to train their general-purpose models, where our contractual agreements allow us to enforce this restriction.

AI Output Accuracy

• •AI-generated content, guidance, and recommendations are provided for informational purposes and should not be treated as professional advice (medical, legal, financial, or otherwise).
• •AI systems can produce inaccurate, incomplete, or misleading outputs. You should verify important information independently.
• •GoldBird does not guarantee the accuracy, completeness, or reliability of any AI-generated content.

How We Protect Your Data in AI Processing

• •All data transmitted to AI providers is encrypted in transit.
• •We maintain contractual agreements with AI providers that restrict how they may use your data and require them to implement appropriate security measures.
• •AI providers are prohibited from sharing your data with third parties except as necessary to provide the AI service to us.
• •We regularly review our AI providers’ privacy and security practices for alignment with our commitments.

How Your GoldCastle™ Works

• •Your data stays in your castle. It is encrypted and accessible only through permissions you control.
• •You decide what data to share, with whom, and under what terms. No data leaves your castle without your explicit permission.
• •Your GoldCastle™ is designed to operate independently. By architectural principle, your castle must be able to cut off all connections to GoldBird and continue operating. Your data is never held hostage.
• •GoldSage™, your AI partner, operates within the context of your castle. Your interaction history belongs to you, not to us.
• •Organizations, governments, and networks each receive castle types designed for their specific needs, all built on the same self-sovereign principles.

How GoldDataMarkets™ Works

• •You decide what data to make available — nothing is shared by default
• •You choose who can access your data — researchers, organizations, analytics services, or specific participants
• •You set the price — your data, your terms
• •Each transaction requires your explicit consent
• •You can revoke access at any time
• •Revenue from your data goes to you, minus a platform transaction fee

• •With your explicit consent — including data you choose to share through GoldDataMarkets™, compositions you publish through GoldStore™, or information you share with other participants
• •With service providers who help us operate the platform (hosting, payment processing, authentication) — these providers are contractually bound to use your data only for the services they provide to us
• •When required by law, regulation, legal process, or governmental request
• •To protect the rights, property, or safety of GoldBird, our participants, or the public
• •In connection with a merger, acquisition, or sale of assets, with notice to affected participants

• •Encryption in transit (TLS/SSL) and at rest for all participant data
• •Self-sovereign castle architecture ensures data isolation between participants
• •Role-based access controls and permission management
• •Regular security audits and vulnerability assessments
• •Incident response procedures and breach notification protocols
• •Multi-factor authentication options for account access

• •You can export your data from your GoldCastle™ at any time in standard formats
• •If you delete your account, we will remove your personal information from our active systems within 30 days
• •Some data may be retained longer where required by law (e.g., financial transaction records)
• •Anonymized and aggregated data that cannot identify you may be retained for platform improvement
• •GoldDataMarkets™ transactions that have already been completed are subject to the terms agreed upon at the time of the transaction

• •Access — Request a copy of the personal information we hold about you
• •Correction — Request that we correct inaccurate or incomplete information
• •Deletion — Request that we delete your personal information, subject to legal retention requirements
• •Portability — Receive your data in a structured, commonly used format (built into the GoldCastle™ architecture)
• •Opt-out — Opt out of any optional data collection or processing, including GoldDataMarkets™ participation
• •Restriction — Request that we limit how we process your information in certain circumstances
• •Objection — Object to processing based on legitimate interests

• •Essential cookies — Required for platform functionality, authentication, and security. These cannot be disabled.
• •Analytics cookies — Help us understand how participants use the platform so we can improve it. These can be disabled in your account settings.