This policy explains Greywell's beta privacy practices in plain language. Greywell does not sell personal information and does not use programme records for advertising.
Last updated: June 3, 2026.
1. Information Collected
Greywell may collect information submitted during intake, Term Fit Assessment, waitlist registration, Telegram bot use, partner consent, dashboard administration, checklist review, DNS declarations, document generation, fee status checks, requests, appeals, infractions, suspensions, exits, archives, and support contact.
- Contact and routing details, including email address and Telegram username.
- Intake answers about schedule, premises, routines, constraints, living situation, preferences, and selected programme options.
- Telegram messages sent to Greywell bots, including musters, movement notices, requests, appeals, and checklist submissions.
- Checklist evidence, which may include images or files submitted by the participant.
- Partner nomination, consent, role, access status, partner bot messages, and revocation records where partner involvement is selected.
- Fee status, Stripe checkout/session identifiers, payment status, and recovery logs. Greywell does not store full card numbers.
- Operational logs, including dashboard actions, bot routing events, webhook errors, and access checks.
2. How Information Is Used
Information is used to review intake, administer Terms, route bot access, generate documents, confirm readiness, maintain records, process partner involvement, review requests and appeals, support safety boundaries, prevent unauthorized access, and operate the beta service.
Greywell does not use programme records to sell advertising or market unrelated services.
3. Services Used
Greywell relies on third-party services to operate:
- Cloudflare for hosting, Workers, database storage, access control, DNS, and operational security.
- Telegram for participant, House Officer, Governor, and partner bot communication.
- Stripe for fee checkout, fee status, and payment receipts.
- Google Workspace for support email and administrative communication.
Those services process information according to their own terms and privacy practices as well as Greywell's configuration.
4. Access and Disclosure
Programme records are intended for Greywell administration. Governor/dashboard access is restricted. Partner access, when approved, is limited by role and does not include unrelated intake disclosures, fee information, private Governor notes, or general account access.
Greywell may disclose information if required by law, to protect service security, to prevent abuse, or where necessary to address an urgent safety concern.
5. Retention
Greywell keeps records for operational continuity, audit trail, payment reconciliation, safety boundary review, and beta improvement. Completed, exited, archived, or revoked Terms may retain historical records while blocking active access. Some tokenized document access may expire or be revoked.
Retention periods may be refined as the beta develops.
6. Your Choices
- You may withdraw from participation.
- You may ask for partner access to be revoked.
- You may contact Greywell to ask about records, access, correction, or deletion.
- Deletion may be limited where records are needed for payment, security, audit, legal, or operational reasons.
7. Security
Greywell uses Cloudflare Access, Governor key checks, Telegram webhook secrets, tokenized document links, route-level authorization, and operational logs to reduce unauthorized access. No online service can guarantee perfect security.
Participants and partners are responsible for the security of their own Telegram accounts, devices, and email accounts.
8. No Children
Greywell is for adults only. It is not intended for anyone under 18 years of age.
9. Contact
Privacy questions or record requests may be sent to [email protected].