Privacy Policy

Last updated: December 2024

At Reynote, we take your privacy seriously. This Privacy Policy explains how we collect, use, and protect your personal information when you use our AI-powered relationship therapy platform.

Information We Collect

Information You Provide

• Account Information: Name, email address, and profile details
• Therapy Sessions: Conversations, entries, and responses you share with Rey
• Relationship Data: Information about your relationship dynamics and progress
• Usage Data: How you interact with our platform and features

Information We Collect Automatically

• Technical Data: Device information, IP address, browser type
• Analytics: Usage patterns, feature interactions, and performance metrics
• Cookies: Essential cookies for platform functionality

How We Use Your Information

We use your information to:

• Provide personalized therapy sessions and insights
• Track your relationship progress over time
• Improve our AI models and platform features
• Send important updates about your account
• Ensure platform security and prevent abuse

Data Processing and AI

Third-Party AI Services

We use AI services from OpenAI and Anthropic to power Rey's capabilities. Your data is processed through these APIs under strict privacy agreements:

• Data Protection: Both providers have robust privacy policies
• No Training: Your data is not used to train their models
• Encryption: All data is encrypted in transit and at rest

Partner Data Separation

• Complete Privacy: Your partner cannot access your private entries
• Secure Architecture: We use a specialized Partner Advocate AI system
• No Cross-Access: Even through prompt engineering, private data remains secure

Data Security

We implement industry-standard security measures:

• Encryption: AES-256 encryption for data at rest, TLS 1.3 in transit
• Access Controls: Strict employee access controls and authentication
• Regular Audits: Security assessments and vulnerability testing
• EU Hosting: Servers hosted in EU with GDPR compliance
• Future Plans: End-to-end encryption on our roadmap

Your Rights

Under GDPR and other privacy laws, you have the right to:

• Access: Request a copy of your personal data
• Rectification: Correct inaccurate information
• Erasure: Delete your account and data
• Portability: Export your data in a readable format
• Restriction: Limit how we process your data
• Objection: Object to certain types of processing

Data Retention

• Active Accounts: Data retained while your account is active
• Deleted Accounts: Most data deleted within 30 days
• Legal Requirements: Some data may be retained for legal compliance
• Anonymous Analytics: Aggregated, non-personal data may be retained

Sharing Your Information

We do not sell your personal information. We may share data only in these limited circumstances:

• Service Providers: Trusted partners who help operate our platform
• Legal Requirements: When required by law or to protect rights
• Business Transfers: In case of merger or acquisition (with continued privacy protection)

International Transfers

• EU Hosting: Primary data storage in EU data centers
• Adequate Protections: Any transfers outside EU use appropriate safeguards
• Standard Contractual Clauses: Used for lawful international transfers

Children's Privacy

Reynote is not intended for users under 18. We do not knowingly collect information from children under 18.

Changes to This Policy

We may update this Privacy Policy periodically. We'll notify you of significant changes via email or platform notification.

Contact Us

For privacy-related questions or to exercise your rights:

• Email: [email protected]
• General Contact: [email protected]
• Address: [Company Address - To be added]

Data Protection Officer

If you're in the EU, you can contact our Data Protection Officer at: [email protected]