Legal

Privacy Policy

Last updated: 2026-06-03

Controller

Poetry Cove (poetry-cove.com) is operated by 82 Degrees, Amsterdam, The Netherlands.

For privacy questions or requests, contact hello [at] poetry-cove [dot] com.

Scope of this policy

This policy applies to data processed when you visit poetry-cove.com, browse poems and related metadata, or interact with search, filtering, or conversational poem features.

Poetry Cove offers optional user accounts to keep your discovery history with you across devices. Sign-in is via a one-time link emailed to your address or via Google Sign-In; we do not collect passwords. Poetry Cove does not currently offer subscriptions or direct payment processing.

Data we process

Poetry Cove does not intentionally collect special categories of personal data and asks users not to submit sensitive personal data in free-text inputs.

• Technical connection data: IP address, timestamp, requested URL, user agent, and basic device/browser details.
• Server and security logs: response status, error diagnostics, and abuse-prevention signals.
• Usage and interaction data: pages viewed, poem interactions, feature usage patterns, and language/country availability selections where applicable.
• Content input data: text prompts or interactions submitted through poetry assistant features.
• Chat history data: conversation messages, timestamps, and related technical metadata needed to provide continuity, moderation, reliability, and support.
• Feedback form submissions: information you choose to submit through our external feedback form link.
• Anonymous identifiers: a random per-browser identifier stored in your browser's local storage and used to group related interactions for quality and debugging purposes. It is not linked to your name, email, or account.
• Account data (only if you sign in): email address; display name and profile image returned by Google if you sign in with Google; account creation and last-sign-in timestamps; session records (an opaque session token, IP address, user-agent, and expiry) so we can keep you signed in and let you sign out from a single device; OAuth provider identifiers and access/refresh tokens for any sign-in providers you connect.

Purposes and legal bases (GDPR)

We process data for the following purposes:

• Website delivery and functionality (Art. 6(1)(f) GDPR, legitimate interests).
• Security, abuse prevention, and incident response (Art. 6(1)(f) GDPR).
• Service reliability and debugging (Art. 6(1)(f) GDPR).
• Product improvement using aggregated or pseudonymous analytics (Art. 6(1)(f) GDPR).
• Compliance with legal obligations, when applicable (Art. 6(1)(c) GDPR).

Hosting and processors

Poetry Cove is hosted by Hetzner Online GmbH. Hetzner processes infrastructure and log data on our behalf as a data processor for hosting and operations.

Poetry Cove uses Cloudflare for performance/security services.

Poetry Cove also runs Umami, a privacy-friendly, cookieless web analytics tool, self-hosted on Poetry Cove's own Hetzner infrastructure. Umami collects only aggregated, anonymous usage signals (such as page views, referrers, and coarse country, browser, and device information), sets no cookies, and builds no cross-site or personal profiles. Analytics data stays on our infrastructure and is not shared with Umami's company or any other third party.

Poetry Cove also uses third-party AI/model infrastructure providers to process prompts and generate responses. Depending on configuration, these providers may process prompt/response content and related technical metadata as processors/subprocessors acting on our behalf.

Poetry Cove uses Langfuse (Langfuse GmbH) as a tracing and quality-observability processor, hosted in the European Union. Langfuse receives prompt/response content, a session identifier, and an anonymous per-browser identifier so we can monitor reliability, debug issues, and improve the quality of poem-related responses.

Poetry Cove uses Resend (Resend, Inc.) as a transactional email processor for sign-in links and other account-related messages. Resend processes the recipient email address and the message body required to deliver the email.

Poetry Cove uses ElevenLabs (ElevenLabs, Inc.) as a text-to-speech synthesis processor to generate audio readings of poems for the Siren audio feature. ElevenLabs processes poem text and related prompts on our behalf to produce audio output. ElevenLabs' processing is governed by its own privacy policy and data processing terms.

Poetry Cove uses Google as an identity provider for users who choose to sign in with Google. Google returns the email address, display name, and profile image you have made available to applications. Google's processing of your data when you authenticate is governed by Google's own privacy terms.

If Poetry Cove engages additional processors (for email, payments, or support tooling), they will be listed in this policy.

Cookies and similar technologies

Poetry Cove distinguishes two categories of cookies and similar storage. You can change your choices at any time using the Cookies link in the site footer.

• Necessary — required for the site to function. Currently this includes a language preference cookie and a record of your cookie choices. These cannot be turned off.
• Functional — remember interface choices to improve your experience. Off by default; turn on via the cookie banner or the Cookies link in the footer.

Separately, Poetry Cove uses cookieless, first-party analytics (Umami, self-hosted) to understand overall site traffic. Because it sets no cookies and processes no personal data or cross-site identifiers, it relies on our legitimate interest (Art. 6(1)(f) GDPR) rather than consent, and so is not part of the cookie categories above. Our analytics also respects your browser's "Do Not Track" signal — enable it to opt out — and you can object to this processing; see Your GDPR rights.

Advertising and cross-site tracking

Poetry Cove does not use third-party advertising trackers, ad pixels, or cross-site profiling cookies.

Poetry content rights and availability metadata

Poetry Cove currently ingests poetry metadata/content from the PoeTree corpus and the DBNL public-domain Dutch poetry archive (dbnl.org, CC0-1.0), covering twelve languages: Czech, Dutch, English, French, German, Hungarian, Italian, Norwegian, Portuguese, Russian, Slovenian, and Spanish.

For jurisdictions where Poetry Cove provides full-poem availability under public-domain status, we apply a life-of-the-author plus 70 years baseline policy unless local law requires stricter treatment or another lawful rights basis applies.

As an operational safeguard, Poetry Cove generally limits full-poem availability to works by authors with a verified date of death on or before 31 December 1955 unless a separate lawful rights basis is documented.

Poetry Cove maintains internal rights and provenance metadata, including source identifiers/links, rights basis and country availability signals, and confidence/review flags for ambiguous records.

This metadata supports content governance and lawful availability decisions. Ambiguous records may be excluded from normal display until further review.

Accounts, sign-in, and account deletion

Sign-in by email magic link relies on a short-lived (10-minute) one-time token sent to your address by Resend. Sign-in via Google relies on Google's OAuth flow; Poetry Cove does not see your Google password.

If you sign in, the discovery history previously kept anonymously in your browser's local storage is uploaded to your account on first sign-in so you can see it from other devices. The original anonymous identifier in local storage is then cleared from that browser.

You can sign out at any time, and you can delete your account from the Account page. Deleting your account removes your user record, sessions, OAuth account links, and your server-side discovery history. Aggregated, non-identifiable analytics counts may persist after deletion.

Anthologies and shared collections

DRAFT — pending owner review. The clauses in this section describe data processing for the Harbour anthologies feature and are provided for review before publication.

If you sign in, you can create "Anthologies" — named collections that arrange references to works in Poetry Cove's corpus. To provide this feature, Poetry Cove stores the data you supply (such as the collection name and description), the references and ordering of the items you add, and a curator display name associated with your account. To support display names that survive un-saving, Poetry Cove may also store a limited snapshot of stable, non-sensitive metadata for items you add (such as title, author, and language); it does not store private or sensitive personal data for this purpose.

To show your name on collections you choose to share, Poetry Cove processes a display name you provide (for example, a first name or an optional pen name). This name is processed to identify you as the curator of your Anthologies and, where you enable sharing, to display you as the curator on the shared page. The legal basis is provision of the service you have requested (Art. 6(1)(b) GDPR) together with your consent to public display when you enable sharing (Art. 6(1)(a) GDPR). You may choose a pen name rather than your real name, and you can change your display name from your profile at any time; changes apply going forward.

Anthologies are private by default. If you enable sharing for an Anthology, it becomes viewable by anyone with the unlisted link, and the curator display name and the collection's contents are shown on that page. The shared page is marked to discourage search-engine indexing, but an unlisted link should be treated as semi-public. You can disable sharing at any time; Poetry Cove cannot recall copies or screenshots others may already have made.

Deleting your account removes your Anthologies and the associated stored data along with the rest of your user record, as described under Accounts, sign-in, and account deletion.

Chat history and storage

Poetry Cove may store conversation history submitted through chat or interactive poem tools to operate the service and improve quality.

Chat history may include message text, assistant responses, timestamps, session identifiers, and technical diagnostics needed for reliability, abuse prevention, and debugging.

Chat history is stored in service infrastructure controlled by Poetry Cove and its processors, with access restricted to authorized personnel on a need-to-know basis.

Chat/prompt content may be transmitted to AI/model providers for response generation and service operation.

A copy of prompt/response content and related metadata is also sent to our observability processor (Langfuse, EU-hosted) for quality monitoring and debugging.

Poetry Cove asks users not to submit sensitive personal data in chat inputs. Where feasible, chat data is reviewed and retained using minimization principles.

Feedback form submissions

When you click the feedback button, a new browser tab opens to an external form provider URL configured by Poetry Cove (currently Tally, if enabled).

Data submitted in that form is processed by the form provider under its own privacy policy and terms, and Poetry Cove receives submitted feedback for product and support purposes.

Data retention

• Short-term retention of server/security logs for stability and abuse prevention.
• Retention of chat history for continuity, safety, and service improvement, subject to periodic review and deletion/anonymization practices.
• Longer retention of aggregated, non-identifiable usage statistics.
• Retention required by applicable law or to resolve disputes and enforce terms.

Exact retention periods may vary by data type and operational need.

International data transfers

Poetry Cove currently uses EU/EEA hosting infrastructure for core services.

If personal data is transferred outside the EU/EEA in the future, Poetry Cove will apply appropriate safeguards under GDPR, such as adequacy decisions or Standard Contractual Clauses.

Your GDPR rights

• Right of access.
• Right to rectification.
• Right to erasure.
• Right to restriction of processing.
• Right to object to processing based on legitimate interests.
• Right to data portability where applicable.
• Right to lodge a complaint with a supervisory authority.

To exercise rights, contact hello [at] poetry-cove [dot] com.

Children

Poetry Cove is not directed to children.

Where local law sets a specific digital-consent threshold, users below that threshold should use the service only with valid parent or guardian consent where required.

If you believe a child has provided personal data without required consent, contact hello [at] poetry-cove [dot] com so we can review and delete data where appropriate.

Changes to this policy

Poetry Cove may update this Privacy Policy from time to time to reflect product, legal, or operational changes.

The latest version will remain available at this policy URL with an updated Last updated date.