Privacy Policy

Atlas Prep is an AI-powered college admissions platform built for high school students. This policy explains what we collect, why, who else sees it, and the controls you have. Plain-English summary first, the legal-style detail follows.

Plain-English version: we collect the things you type into Atlas Prep (your profile, essays, activity list, test scores), we send your inputs to the AI providers we use to generate coaching, we store your data with our hosting providers, and we delete everything if you ask. We never sell your data. We do not knowingly serve users under 13.

Atlas Prep is intended for people aged 13 and older. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe a child under 13 has created an account, contact us and we will delete the account and its data.

If you are a high school student aged 13 to 17, by using Atlas Prep you confirm you have permission from a parent or legal guardian.

The data we collect falls into four buckets.

1. Information you give us directly. Your student profile (grade, intended major, GPA, test scores, target colleges, activities, essay drafts, financial-aid context if you choose to provide it), the messages you send to our agents, and any feedback (thumbs-up / thumbs-down ratings, optional comments) you submit on agent responses.
2. Information your device sends us.A browser-generated identifier stored in your device's local storage (this is how we link your sessions to your profile without requiring an account password — we use no cookies for tracking), plus standard request metadata (IP address, browser, page visited).
3. Information our agents produce.When you use Atlas Prep, our agents write structured signals back to your profile (your "hook" positioning, study plan, college list bucketing, essay themes, change history). This is part of your profile.
4. Operational telemetry. Crash reports, latency metrics, error traces, and AI-call traces tied to your user identifier so we can improve the product.

• To run the agents you ask us to run (e.g., generate essay feedback, build a college list, surface admissions strategy).
• To remember your context across sessions so each agent can read what the others have written about you.
• To generate read-only views you share with parents (see "Parent share links" below).
• To improve our prompts and coaching by reviewing aggregated feedback and traces — including the eval harness we run in-house.
• To debug crashes and outages.

We do not use your personal data to train AI models. We do not sell your data. We do not show you advertising.

Atlas Prep relies on a handful of third-party services to operate. Each one only receives the data it needs to do its job, and each is contractually bound by their own privacy commitments.

• Anthropic and OpenAI— process the prompts our agents send when generating coaching. Anthropic and OpenAI's API terms prohibit them from using API content to train their public models by default.
• Supabase (Postgres) — stores your profile, essays, deadlines, parent share tokens, and feedback rows.
• Sentry — captures error traces and exceptions tagged with your user identifier so we can debug crashes.
• PostHog — captures product-analytics events (page views, agent calls, feedback events) tied to your user identifier.
• Langfuse — captures AI-call traces (prompts, responses, latency, costs) so we can monitor agent quality.
• Vercel — hosts the frontend and serves request logs.

You can generate an opaque parent share link from your profile settings. Anyone who has the link gets a read-only view of a redacted version of your profile — without essay drafts, without financial free-text fields, without agent narrative paragraphs. The link is bound to your profile via a randomly-generated token; we do not collect your parent's contact details.

You can revoke the link at any time. Revocation is immediate; previously-issued tokens stop working as soon as you revoke them.

Atlas Prep is not a school and does not maintain education records subject to FERPA. If you choose to paste content from your official school records into Atlas Prep — for example, a transcript or counselor letter — you become responsible for having the right to share that content. We treat anything you paste as user-provided data subject to this policy.

We keep your profile and the data you put in Atlas Prep for as long as you maintain an active account. If you ask us to delete your account, we delete your profile, essays, and agent-produced signals from our database. Some operational telemetry (crash traces, AI-call logs) may be retained by our subprocessors per their own retention windows; reach out and we can help you request deletion from those systems too.

Backups containing your data are kept for up to 30 days before they are overwritten in normal rotation.

You can:

• Access the data we have about you (your full profile is visible to you in the app).
• Correct any of it directly through the relevant agent interfaces.
• Deleteyour account and the data tied to it by emailing us (see "Contact" below).
• Revokeany parent share link you've issued.
• Export a copy of your profile by emailing us; we will provide it as a JSON file within 30 days.

We use TLS for every connection between your browser and our backend, and between our backend and our subprocessors. Your profile is stored in a managed Postgres database with backups, encryption at rest, and access controls. Production credentials are limited to the small number of people who operate the service.

No system is perfectly secure. If you discover a vulnerability, please contact us before disclosing publicly.

We'll update this policy when our practices change. The "Last updated" date at the top of the page reflects the most recent change. Material changes (new categories of data, new subprocessors that handle sensitive data) will be flagged in-app before the change takes effect.

Questions, deletion requests, or vulnerability reports can be sent to juanfmosqueda6@gmail.com.