%20--%3e%3cdefs%3e%3cstyle%3e%20.st0%20{%20fill:%20%23efe3c8;%20}%20%3c/style%3e%3c/defs%3e%3cpath%20class='st0'%20d='M232.9,435.3c-25.1,0-42.9-14.3-53.5-42.9L45.9,33H11.8v-9.4h208.8v9.4h-47.6l107,291.1h8.8l71.7-171.7c14.5-34.1,21.8-57.4,21.8-70s-3.4-23.3-10.3-32.3c-6.9-9-15-14.9-24.4-17.6-3.1-.8-5.3-1.2-6.5-1.2-3.5,0-5.3,1.6-5.3,4.7s1.6,5.3,4.7,6.5c20,7.1,30,21,30,41.8s-4.3,25.4-12.9,35c-8.6,9.6-21.2,14.4-37.6,14.4s-30.4-5.6-41.8-16.8c-11.4-11.2-17.1-25.3-17.1-42.3s6.3-30.7,18.8-40.9c12.5-10.2,29-15.3,49.4-15.3s36.2,6.7,47.3,20c11.2,13.3,16.8,27,16.8,40.9s-4.3,31.5-12.9,52.6l-123.5,303.4h-24.1Z'/%3e%3cpath%20class='st0'%20d='M343.3,538.9c-12.8-12.5-19.2-26.5-19.2-42s4.3-27.8,13-36.8c8.6-9.1,19.4-13.6,32.2-13.6s23.4,4.2,31.9,12.5c8.5,8.3,12.7,18.2,12.7,29.5s-3.5,21.3-10.5,29.9c-7,8.6-16.2,13-27.7,13s-20-4-25.7-12.1c-.3-.6-.7-1.3-1.3-2.2-.6-.9-1-1.6-1.3-2.2-.9-1.5-2.1-2.2-3.6-2.2-3,0-4.5,1.3-4.5,4s1.5,6,4.5,9.8c8.3,10.7,20.5,19.3,36.4,25.7,15.9,6.4,33.3,9.6,52.3,9.6s34.8-3.9,47.8-11.8c13-7.9,19.4-19.7,19.4-35.5s-11.5-32.9-34.4-45.1c-10.1-5.4-21.3-10.6-33.5-15.9-12.2-5.2-24.4-11-36.6-17.4-12.2-6.4-23.4-13.5-33.5-21.4-10.1-7.9-18.4-18.1-24.8-30.6-6.4-12.5-9.6-26.6-9.6-42.4,0-27.4,12.4-50.1,37.1-68.1,24.7-18,52.9-27,84.4-27s58.1,5.8,79.5,17.4c21.4,11.6,32.2,27.5,32.2,47.8s-4.2,26.1-12.7,36.2c-8.5,10.1-19.4,15.2-32.8,15.2s-24.3-4-32.6-12.1c-8.3-8-12.5-18-12.5-29.9s3.4-21.8,10.3-29.7c6.8-7.9,16.4-11.8,28.6-11.8s22.2,6.3,29.9,18.8c1.5,2.4,3,3.6,4.5,3.6,3,0,4.5-1.6,4.5-4.9s-.7-3.9-2.2-6.3c-5.1-8.6-15.3-16.7-30.6-24.1-15.3-7.4-33-11.2-52.9-11.2s-35,4-45.1,11.8c-10.1,7.9-15.2,18.3-15.2,31.3s4.3,24.3,13,34.2c8.6,9.8,19.4,17.6,32.4,23.4,13,5.8,26.9,12.3,42,19.4,15,7.1,29,14.3,42,21.4,13,7.1,23.7,17.1,32.4,29.9,8.6,12.8,13,27.7,13,44.7,0,31.6-13,56.2-39.1,73.9-26.1,17.7-59,26.6-98.7,26.6s-71.4-11-94.9-33.1Z'/%3e%3c/svg%3e)
Privacy Policy
Effective date: 2026-06-09 Last updated: 2026-04-29
This Privacy Policy explains what information Versus collects, how we use it, and the rights you have. It applies to the Versus website and application at tryversus.app (the "Service").
Versus is operated by Francis Bissonnette, a sole proprietor based in Quebec, Canada ("we", "us"). Contact: info@tryversus.app.
This is a plain-English summary that we intend to be legally binding. If you find anything unclear, write to us — we'd rather rewrite a sentence than leave you guessing.
1. Information we collect
1.1 Information you give us
- Account information: email address, password (hashed), and any profile information you choose to add. If you sign in with Google, Apple, Microsoft, or GitHub, we receive a verified email address and a stable user identifier from that provider.
- API keys (BYOK): by default, your provider keys (OpenAI, Anthropic, Google, Ollama, custom endpoints) are stored in your browser and never sent to us. If you opt in to server-stored keys in Settings, your keys are encrypted at rest using a key managed by our
encrypt-keyedge function, and decrypted only at debate time. You can revoke server storage at any time, which deletes the encrypted record. - Debates and content: the questions you ask, the agent configurations you use, the resulting debate transcripts, citations, Report Cards, tags, and any notes you attach.
- Billing information: if you subscribe to a paid plan, payment is processed by Stripe. We receive a customer ID and subscription status; we do not see your card number.
- Workspace information: if you create or join a workspace, we store the workspace name, member list, scoped roles, and any debates created within the workspace.
- Support correspondence: anything you send us by email.
1.2 Information we collect automatically
- Authentication cookies: session cookies set by Lovable Cloud / Supabase to keep you logged in. These are required to use the Service.
- Operational logs: request timing, error traces, and basic event logs (debate started, debate completed, share-link created, etc.) so we can debug and improve the Service. These are scoped to your account and not sold.
- Audit logs: privileged actions in the admin console and changes to your account (suspension, tier override, key encryption, etc.) are recorded for security accountability.
- Cookies and similar technologies: see the Cookie Policy for the full list.
1.3 Information we do not collect
- We do not train AI models on your debates, prompts, or content.
- We do not sell your data.
- We do not run third-party advertising trackers.
- We do not see the content of your API requests to providers — those go directly from your browser to the provider you chose.
2. How we use information
We use the information above to:
- Provide the Service: run debates, store your history, sync across your devices, send notifications you've subscribed to (e.g. scheduled-debate completion).
- Operate billing through Stripe and enforce entitlements for your tier.
- Provide support when you ask for it.
- Detect, investigate, and prevent abuse — including takedown reports against public share links.
- Comply with legal obligations.
- Send transactional email related to your account: signup confirmation, password reset, magic link, email change, workspace invites, billing receipts, and infrequent product or security announcements. You can opt out of non-essential email at any time.
We do not use your information for any other purpose without telling you first.
3. Public share links
You control whether each debate is private (default), unlisted, or public.
- Private: only you (and your workspace, if applicable) can see it.
- Unlisted: anyone with the tokenized URL can view it, but it isn't indexed.
- Public: appears in
/explore, is included insitemap-shares.xml, and may be surfaced by search engines.
Before we render a public share, we strip:
- your owner identity (display name, email, avatar)
- the cost of the debate
- exact model versions
- the workspace ID, if applicable
What remains is the question, the agents' role labels, the transcript, and the synthesis. You can optionally attach a "Run by [first name]" footer with your first name only — this is off by default.
You can delete a share at any time and the public page becomes inaccessible immediately. Anyone — including non-users — can submit a takedown report against a public share via the form on the public page. Three valid reports auto-hide the share pending review by us. We may remove a share at any time if it violates the Acceptable Use Policy.
If your account is suspended, all your public shares are auto-flagged as taken down for the duration of the suspension. If you downgrade from Pro to Free, public shares above the Free-tier limit auto-hide after a 7-day grace period; nothing is deleted.
4. Who we share information with
We share information only with the third parties below, only for the purposes listed, and only to the extent strictly necessary.
- Lovable Cloud / Supabase — hosts our database, authentication, and edge functions. They process all account data, debates, and encrypted server-stored keys on our behalf.
- Stripe — processes payments and manages subscriptions. They receive billing details directly; we never see card numbers.
- AI providers (OpenAI, Anthropic, Google, your Ollama instance, your custom endpoints) — receive the prompts and debate context required to run the agents you configure, using your API key. Each provider has its own privacy policy and retention rules. Read them; they apply to your prompts.
- Email delivery providers — used to send transactional email related to your account.
- OAuth providers (Google, Apple, Microsoft, GitHub) — used only when you choose to sign in with one of them, to verify your identity.
We do not sell, rent, or trade your information. We may disclose information if we are legally required to (subpoena, court order, lawful request from a Canadian or applicable foreign authority), and we will tell you when permitted to do so.
If we ever sell or transfer the Service to another operator, we will tell you in advance and give you a chance to delete your data first.
5. Where data is stored
Account data, debates, and encrypted server-stored keys are stored by Lovable Cloud / Supabase in their managed infrastructure. AI provider calls go to whichever provider you configured, in whatever region they operate.
We are based in Quebec, Canada. If you access the Service from outside Canada, your information will be transferred to and processed in jurisdictions where our processors operate. We rely on the providers above to maintain industry-standard security and to honor applicable data-protection law.
6. How long we keep information
- Account information: until you delete your account.
- Debates: until you delete them, or — for old debates — until they're archived by the automatic archiving job (
/api/public/hooks/archive-old-debates). - API keys (server-stored): until you revoke server storage in Settings or delete your account.
- Audit and security logs: retained as long as necessary for security and abuse prevention, typically up to 24 months.
- Billing records: retained as required by Canadian tax and consumer-protection law.
- Suspended accounts: content remains stored but inaccessible; deleted on request or after a reasonable period.
You can delete your account at any time from Settings. Deletion removes your debates, server-stored keys, workspace memberships, and personal information from our active systems. Audit logs and aggregated usage statistics may be retained where legally required.
7. Your rights
Depending on where you live, you have rights over your personal information. We honor all of these regardless of jurisdiction:
- Access — ask for a copy of what we have on you.
- Correction — fix anything that's wrong.
- Deletion — delete your account and the associated data.
- Portability — get your debates exported in Markdown or PDF (built into the app) or request a structured export of your account data.
- Objection / restriction — tell us to stop processing for a particular purpose.
- Withdraw consent — for anything we do with your consent, you can withdraw it at any time.
To exercise any of these, write to info@tryversus.app. We aim to respond within 30 days.
If you live in Quebec, you also have the right to file a complaint with the Commission d'accès à l'information (CAI). If you live elsewhere, you can complain to your local data-protection authority.
8. Security
We take reasonable measures to protect your information: encrypted transport (HTTPS), encrypted storage of opt-in server-stored keys, Row-Level Security in the database, scoped service-role access for edge functions, and audit logging on privileged actions.
No system is perfectly secure. If we discover a breach affecting your information, we will notify you without undue delay, in accordance with applicable law.
9. Children
The Service is not intended for anyone under 16. If you believe a child has provided us with information, contact info@tryversus.app and we'll delete it.
10. Changes to this policy
We may update this Privacy Policy from time to time. Material changes will be announced by email and the "Last updated" date at the top will change. Continued use of the Service after a change constitutes acceptance.
11. Contact
Questions, complaints, or requests:
Versus Quebec, Canada info@tryversus.app