Privacy Policy

HeartAlly AI Mental Health Companion

Last Updated: May 18, 2026
Effective Date: May 18, 2026

1. Introduction

Welcome to HeartAlly ("we," "our," or "us"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, store, and protect your data when you use our AI-powered mental health companion application.

HeartAlly provides emotional support through AI conversations, mood tracking, CBT tools, and mental health resources. We are not a medical service provider, and our app is not a substitute for professional medical advice, diagnosis, or treatment.

By using HeartAlly, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with our policies and practices, please do not use our application.

2. Information We Collect

2.1 Account Information

• Email Address: Required for account creation and communication
• Apple ID: If you choose to sign in with Apple
• Anonymous ID: For users who choose to use the app without registration
• Age Group: Optional information (18-35, 36-50, 50+, or prefer not to say) used to personalize the experience. This app is intended for users aged 18 and older only.

2.2 Conversation Data

• Chat Messages: Text conversations with our AI companion
• Voice Recordings: Audio messages you send (temporarily stored for transcription)
• Memory Tags: Keywords extracted from conversations to provide personalized responses
• Session Information: Conversation history and context

2.3 Mental Health Data

• Mood Check-ins: Daily mood scores (1-10), emotional labels, and stress sources
• CBT Journal Entries: Cognitive behavioral therapy exercise responses
• Sleep Logs: Sleep duration, quality ratings, and related notes (if provided)

2.4 Usage Data (Analytics)

• App Interactions (via PostHog): Feature usage, button clicks, screen views, session duration. Collected automatically by the PostHog SDK after user consent.
• Device Information (via PostHog): Device model, operating system version, app version, screen dimensions, device identifier (distinct_id). Collected automatically by the PostHog SDK.
• Performance Data (via PostHog): App crashes, loading times, error logs. Collected automatically for stability monitoring.
• User Identifier (via PostHog): After login and consent, your Supabase user UUID is shared with PostHog via the identify() API to associate events with your account. Anonymous users receive a random distinct_id.
• Regional Data: Country/region (for crisis hotline localization)

3. How We Use Your Information

4. Data Storage and Security

4.1 Storage Locations

• Cloud Storage: All data is stored securely in Supabase (PostgreSQL database) with AES-256 encryption
• Local Storage: App preferences and temporary data are stored locally using Hive (encrypted)
• Voice Data: Audio recordings are processed in real-time and not retained after transcription

4.2 Security Measures

• End-to-end encryption for all data transmission (TLS 1.3)
• AES-256 encryption for data at rest
• Regular security audits and penetration testing
• Access controls and authentication protocols
• No storage of payment information (handled by RevenueCat)

5. Third-Party Services

We use the following third-party services to provide our application:

All third-party services are contractually obligated to protect your data and are prohibited from using it for their own purposes.

6. AI Data Processing & Model Training

HeartAlly uses artificial intelligence to provide conversational support. We believe in complete transparency about how your data is processed by AI systems:

6.1 What Data Is Sent to AI Services

• Conversation Content: Your chat messages and voice transcripts are sent to OpenAI's API via our secure Edge Function to generate AI responses
• Voice Recordings: Audio files are temporarily uploaded to Supabase Storage, then transcribed by OpenAI's Whisper API. The audio is deleted immediately after transcription
• TTS Generation: AI response text is sent to OpenAI's TTS API to generate audio replies. The generated audio is stored temporarily in Supabase Storage
• System Context: Non-personal conversation context (turn count, session duration) is sent alongside messages to improve response quality

6.2 Data Is NOT Used for Model Training

• We use OpenAI's API with opt-out settings enabled for model improvement (where available)
• Your conversation data is never used to train, fine-tune, or improve any AI model
• OpenAI retains API request logs for up to 30 days for abuse monitoring only, not for training
• We do not share your data with any AI model training providers

6.3 Encryption & Transmission Security

• All data to OpenAI is transmitted via TLS 1.3 encrypted connections through our Supabase Edge Function
• Your messages are never sent directly from the device to OpenAI — they route through our secure Edge Function with JWT authentication
• Conversation data is stored in Supabase (AES-256 encrypted at rest) and never in plain text on any third-party system

7. Your Rights and Choices

7.1 Data Control

• Access: You can request a copy of all your data at any time
• Export: Free users can export data as JSON; Premium users can export as PDF report
• Deletion: You can delete all your data with one click in Settings
• Correction: You can update your account information in the app settings

7.2 Privacy Settings

• Toggle data analytics collection
• Manage notification preferences
• Control memory feature settings
• Enable/disable personalized insights

7.3 Legal Rights (GDPR/CCPA)

If you are in the European Union or California, you have additional rights including:

• Right to be informed about data collection
• Right to access your personal data
• Right to rectification of inaccurate data
• Right to erasure ("right to be forgotten")
• Right to restrict processing
• Right to data portability
• Right to object to processing

8. Account & Data Deletion

You have the right to delete your account and all associated data at any time. We provide both complete account deletion and selective data deletion options to ensure you have full control over your personal information.

8.1 Complete Account Deletion

When you choose to delete your account, the following will occur:

• Permanent Deletion: Your account and all personal data will be permanently deleted. This action is irreversible and cannot be undone.
• No Freeze or Deactivation Alternative: We do not offer account freezing or deactivation as a substitute for deletion. Account deletion is the only option for users who wish to remove their account entirely.
• Data Removed: All account information, conversation history, mood check-ins, CBT journal entries, sleep logs, voice recordings, memory tags, and analytics data linked to your account will be permanently erased from our systems.
• Third-Party Data: We will also initiate deletion requests with our third-party service providers (Supabase, PostHog, RevenueCat) to remove your data from their systems within 30 days.

8.2 Partial Data Deletion (Without Deleting Account)

If you wish to delete specific types of data while keeping your account active, you can do so through the following methods:

• Chat History: Clear all chat conversations from Settings. Chat history older than 30 days is automatically deleted.
• Mood Check-ins: Delete individual mood entries from the Data screen.
• CBT Journal Entries: Remove specific CBT exercise entries from the Tools section.
• Voice Recordings: Audio recordings are automatically deleted after transcription and are not retained.
• Memory Tags: Reset or disable the memory feature in Settings to clear all stored memory keywords.
• Analytics Data: Opt out of analytics collection in Privacy Settings. Previously collected analytics data will be anonymized and cannot be linked to you.

8.3 How to Request Deletion

You can request data deletion through the following methods:

• In-App Deletion: Go to Settings → Account → Delete Account (for complete account deletion) or Settings → Privacy → Clear Data (for partial deletion).
• Email Request: Send a deletion request to e313530996828@163.com with your registered email address. We will process your request within 30 days.

8.4 Deletion Timeline

• Immediate: Your account will be deactivated immediately upon deletion request.
• Within 30 Days: All personal data will be permanently deleted from our primary systems and third-party services.
• Legal Exceptions: In limited circumstances, we may retain certain data as required by law or for legitimate business purposes (e.g., fraud prevention, legal compliance). Any retained data will be anonymized or pseudonymized where possible.

9. Data Retention

• Active Accounts: Data is retained while your account is active
• Chat History: Text conversations and voice recordings are automatically deleted after 30 days of creation (both locally and in the cloud)
• Deleted Accounts: All data is permanently deleted within 30 days of account deletion
• Anonymous Users: Data is retained for 90 days of inactivity, then deleted
• Backup Data: Encrypted backups are retained for 30 days
• Analytics Data: Aggregated and anonymized after 12 months

10. Children's Privacy

Important: HeartAlly is intended for users aged 18 and older. We do not knowingly collect personal information from anyone under the age of 18. If you are under 18, please do not use our application or provide any personal information.

If we discover that we have collected personal information from a user under 18, we will take steps to delete that information as soon as possible. If you believe we might have any information from or about a user under 18, please contact us at e313530996828@163.com.

11. Crisis Intervention and Safety

If our system detects signs of self-harm or suicidal ideation:

• We will provide immediate crisis resources and hotlines
• We may retain related data longer if required by law or for safety purposes
• We do not notify third parties (including parents) unless required by law
• Emergency services may be contacted only if explicitly requested by the user

Important: HeartAlly's crisis detection is based on keyword matching and is not a substitute for professional emergency services. If you or someone you know is in immediate danger, please call your local emergency number (e.g., 911, 112, 120, 119) or go to the nearest hospital immediately.

12. International Data Transfers

Your data may be transferred to and processed in countries other than your country of residence, including the United States. These countries may have different data protection laws. We ensure appropriate safeguards are in place to protect your data, including:

• Standard Contractual Clauses (SCCs)
• Data Processing Agreements (DPAs)
• Adequacy decisions where applicable

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by:

• Posting the new Privacy Policy on this page
• Updating the "Last Updated" date
• Notifying you via email or in-app notification for significant changes

Your continued use of the application after changes constitutes acceptance of the updated policy.

14. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: e313530996828@163.com
Address: HeartAlly Privacy Team
Response Time: We aim to respond within 48 hours

15. Legal Compliance

This Privacy Policy complies with:

• General Data Protection Regulation (GDPR) - European Union
• California Consumer Privacy Act (CCPA) - California, USA
• Apple App Store Privacy Guidelines
• Google Play Store Data Safety Requirements
• Children's Online Privacy Protection Act (COPPA) - USA

© 2026 HeartAlly. All rights reserved.
Your mental health journey is private, and we're committed to keeping it that way.