How we handle your data

When you take the Reality Check we collect:

• The email address you provide on the final step.
• Your answers to the eight questions, including any free-text you type into the open questions.
• The industry and role you select (used to stratify aggregated, anonymous insights).
• Two cookies on your browser (rc_runs and rc_last_run) so the site remembers if you have already taken the test.

To deliver your reading and the permalink you can revisit, to prevent abuse of the diagnostic, and to improve the framework over time using anonymous, aggregated patterns. We do not sell your data and we do not use it for advertising.

Your free-text answers (not your email) are sent to an OpenAI model to generate the personalised paragraphs of your reading. OpenAI’s API data-usage policy applies; OpenAI does not train its models on API inputs by default.

Run records are stored on cloud infrastructure providers we use to operate the site: Vercel for hosting and Neon for the Postgres database.

We use Cloudflare Turnstile to tell automated bots apart from real users on the submission step. Turnstile runs in the background while you take the diagnostic and collects technical signals about your browser (timing, mouse movement, browser characteristics) to make that judgement. It does not identify you and does not set advertising cookies. Cloudflare’s privacy policy.

No data is shared with any other third party.

The diagnostic asks about your AI system, not about you or your colleagues. Please don’t put names, client details, or anything confidential into the free-text fields. The Reality Check uses a deterministic scoring engine plus an OpenAI model to generate the personalised text. You are interacting with an AI system.

By default, we hold your email address for 12 months from your most recent reading. After that, an automated job runs daily and anonymises your records: the email is removed and the run record stays as an anonymous data point used only for aggregate insight.

On the email step you can tick a box to let Niya email you with occasional updates and invitations. If you tick it, we keep your email until you tell us to remove it; if you don’t, it’s anonymised at the 12-month mark. You can ask for earlier deletion at any time (see “Your rights” below).

Cookies live in your browser for up to twelve months, or until you clear them. We do not store your IP address. We do compute a one-way HMAC hash of it for spam-prevention counting (so we can tell when a single network has submitted too many times in an hour) and keep the hash for 24 hours, after which it is deleted by the daily anonymisation job. The hash cannot be reversed to recover the original IP.

Under the EU GDPR you have the right to:

• Request a copy of your data.
• Ask us to correct inaccurate data.
• Ask us to delete your data.
• Object to specific uses of your data.

To exercise any of these, write to bookings@niyasto.com from the same email you used for the diagnostic. We’ll respond within 30 days.

rc_runs stores a count of how many readings you have taken from this browser. rc_last_run stores the id of your most recent reading so the site can offer it back to you. Both are essential for the rate-limit and returning-user experience; we do not use cookies for advertising.

We use Vercel Web Analytics to understand which pages and topics draw attention. It is cookie-free and does not identify you. Each page view is hashed into an anonymous, daily-rotating signature that lets us count visitors without recognising who they are. No personal data is collected, no third-party advertising networks receive your data, and the data never leaves Vercel’s infrastructure (which already hosts this site). Vercel’s analytics privacy policy.

The Reality Check is a partly AI-driven diagnostic. The scoring (which pattern you fall into) is deterministic and rule-based. The personalised written interpretation in your reading is generated by an OpenAI model, prompted with your answers and the resulting scores. The model output is reviewed for structure and voice but not edited per-user. Treat the reading as input to your own judgement, not as a final verdict.

For any privacy or data-protection question: bookings@niyasto.com.