Privacy Policy
Last Updated: December 01, 2025
Quick Summary: We collect minimal data necessary to provide the service. Your conversations are private and stored securely. We use third-party services (OpenAI for AI, payment processor for payments). We don't sell your data.
1. Information We Collect
Account Information
When you register, we collect:
- Email address
- Password (encrypted and hashed)
- Age verification (18+ confirmation)
- Account creation date
Conversation Data
To provide the AI companion experience, we store:
- Text of your conversations with AI companions
- Voice recordings (temporarily, for speech-to-text conversion)
- Message timestamps
- Memory notes (facts about you that you want remembered)
- Character customization preferences
Usage Data
- Login timestamps and IP addresses
- Device and browser information
- Feature usage statistics
- Error logs and crash reports
Payment Information
We do not store payment card details. All payment processing is handled securely by payment processor. We only receive:
- Subscription status
- Transaction IDs
- Billing dates
2. How We Use Your Information
We use collected information to:
- Provide and maintain the AI companion service
- Personalize your experience based on conversation history
- Process subscription payments
- Send service-related communications (account, billing, updates)
- Improve the service through analytics
- Ensure security and prevent abuse
- Comply with legal obligations
3. Third-Party Services
Ami Your App integrates with the following third-party services:
OpenAI (AI Processing)
- Your conversation text is sent to OpenAI's API for processing
- OpenAI processes data according to their own Privacy Policy
- We use OpenAI's API in accordance with their usage policies
- Conversations may be subject to OpenAI's content policies
(Payment Processing)
- Handles all payment card processing
- Complies with PCI DSS standards
- See their Privacy Policy
Cloudflare (CDN and Security)
- Provides content delivery and DDoS protection
- May collect basic traffic analytics
4. Data Storage and Security
We take data security seriously:
- Encryption: All data transmitted is encrypted using HTTPS/TLS
- Password Security: Passwords are hashed using bcrypt (cost factor 12)
- Access Control: Conversations are isolated per user account
- Database Security: Access is restricted and monitored
- Regular Backups: Data is backed up regularly to prevent loss
5. Data Retention
- Active Accounts: Data retained while subscription is active
- Cancelled Accounts: Conversation data deleted 30 days after cancellation
- Voice Recordings: Deleted immediately after speech-to-text conversion
- Backups: May retain data in backups for up to 90 days
6. Your Privacy Rights
You have the right to:
- Access: Request a copy of your personal data
- Rectification: Correct inaccurate information
- Deletion: Request account and data deletion
- Export: Download your conversation history
- Opt-out: Unsubscribe from marketing emails
To exercise these rights, contact: [email protected]
7. Cookies and Tracking
We use minimal cookies:
- Essential Cookies: Authentication tokens (required for service)
- Preference Cookies: Remember your settings
- No Tracking: We don't use advertising or tracking cookies
8. Children's Privacy
Ami Your App is not intended for users under 18. We do not knowingly collect information from minors. If we become aware of underage usage, we will terminate the account and delete associated data.
9. International Data Transfers
Your data may be processed in countries outside your residence, including the United States (where OpenAI's servers are located). We ensure appropriate safeguards are in place for international transfers.
10. Changes to Privacy Policy
We may update this Privacy Policy periodically. Significant changes will be communicated via:
- Email notification
- In-app notification
- Notice on our website
Continued use after changes indicates acceptance.
11. Data Breach Notification
In the unlikely event of a data breach affecting your personal information, we will:
- Notify affected users within 72 hours
- Describe the nature of the breach
- Provide guidance on protective measures
- Report to relevant authorities as required by law
12. California Privacy Rights (CCPA)
If you are a California resident, you have additional rights under the California Consumer Privacy Act:
- Right to know what personal information is collected
- Right to know if personal information is sold or disclosed
- Right to opt-out of sale (we don't sell data)
- Right to deletion
- Right to non-discrimination for exercising rights
13. European Privacy Rights (GDPR)
If you are located in the European Economic Area (EEA), you have the following data protection rights:
Right to Access
You can request a copy of all personal data we hold about you.
Right to Rectification
You can request correction of inaccurate or incomplete personal data.
Right to Erasure ("Right to be Forgotten")
You can request deletion of your personal data when:
- The data is no longer necessary for its original purpose
- You withdraw consent and there's no other legal basis for processing
- You object to processing and there are no overriding legitimate grounds
- The data has been unlawfully processed
Right to Restriction of Processing
You can request that we limit how we use your personal data in certain circumstances.
Right to Data Portability
You can request your data in a structured, commonly used, machine-readable format and have it transmitted to another controller.
Right to Object
You can object to processing of your personal data based on legitimate interests or for direct marketing.
Right to Withdraw Consent
Where processing is based on consent, you can withdraw that consent at any time.
How to Exercise Your Rights
To exercise any of these rights, contact us at: [email protected]
We will respond to your request within 30 days as required by GDPR.
Legal Basis for Processing
We process your personal data under the following legal bases:
- Contract Performance: To provide the service you subscribed to
- Consent: For optional features and marketing communications (where applicable)
- Legitimate Interests: For service improvement, fraud prevention, and security
- Legal Obligation: To comply with applicable laws and regulations
Data Controller Information
Data Controller:Andrey Boguzki
Address: [Business Address will be added after launch]
Email: [email protected]
Complaints
If you believe we have not handled your personal data properly, you have the right to lodge a complaint with your local data protection authority.
For Poland: UODO https://uodo.gov.pl
EU Data Protection Authorities: https://edpb.europa.eu/about-edpb/board/members_en
14. Legal Basis for Processing
We process your data based on:
- Contract: To provide the service you subscribed to
- Consent: For optional features and communications
- Legitimate Interests: For service improvement and security
- Legal Obligation: To comply with applicable laws
15. Contact Information
For privacy-related questions or concerns:
Email: [email protected]
General Support: [email protected]
By using Ami Your App, you acknowledge that you have read and understood this Privacy Policy.
← Back to Home