Privacy Policy

Information You Provide

• Account Information: Name, email address, and phone number provided during registration.
• Profile Preferences: Wake time, wind-down time, preferred communication tone, and energy preferences you configure during onboarding.
• Memory Vault Data: Personal context you choose to share, including passions, comfort items, important people (e.g., pet names), triggers, and daily context updates. This data is used solely to personalize your AI companion experience.
• Conversation History: Messages exchanged between you and the FocusFlow AI via Telegram, stored to maintain conversation continuity and improve personalization.
• Care Circle Data: Information provided by individuals you explicitly authorize to share context about your state.
• Payment Information: We use Paddle as our Merchant of Record for payment processing. We do not store your credit card details. Paddle handles all payment data in compliance with PCI DSS standards.

Automatically Collected

• Usage Data: Information on how you access and use the Service, including energy self-reports, task completion patterns, and interaction frequency.
• Device Data: IP address, browser type, and version (web dashboard only).
• Telegram Data: Your Telegram chat ID, used to route messages. We do not access your broader Telegram profile or contacts.
• Cookies: Essential cookies for authentication and session management on the web dashboard only.

• Personalization: To power the AI companion — generating contextual, empathetic messages tailored to your energy, preferences, and personal context.
• Service Delivery: To send scheduled check-ins, task reminders, dopamine deliveries, and body-doubling pings via Telegram.
• Payment Processing: To process subscription payments via Paddle.
• Service Improvement: To understand aggregate usage patterns and improve the Service. We do not use your personal Memory Vault data for model training.
• Communication: To contact you about your account, service updates, or policy changes via email.

FocusFlow uses Anthropic's Claude AI to generate personalized messages. Your Memory Vault data and conversation context are sent to Anthropic's API for response generation. Anthropic does not use customer inputs/outputs to train their models. We do not use your personal data to train any AI models.

We do NOT sell your data to third parties. We only share data with trusted service providers necessary to operate the Service:

• Paddle: For payment processing and billing compliance (Merchant of Record).
• Supabase: For secure database hosting and file storage (SOC 2 Type II certified infrastructure).
• Anthropic: For AI response generation via their API (data processed but not retained for training).
• Resend: For delivering transactional emails.
• Telegram: For message delivery via the Telegram Bot API.

The security of your data is paramount given its sensitive nature. We implement:

• Encryption at Rest: All data stored using AES-256 encryption on Supabase's infrastructure.
• Encryption in Transit: All communications secured via TLS 1.3.
• Row-Level Security: Database-level policies ensure users can only access their own data.
• Webhook Verification: Telegram webhook requests are verified using secret tokens.
• No Local Storage: Payment credentials are never stored on our servers.

• Active Accounts: Data is retained for the duration of your subscription.
• Cancelled Accounts: Personal data is retained for 30 days after cancellation to allow for reactivation, then permanently deleted.
• Financial Records: Transaction records may be retained for up to 7 years as required by applicable tax and accounting regulations.

You have the right to:

• Access: Request a copy of all personal data we hold about you, including your Memory Vault and conversation history.
• Rectification: Request correction of inaccurate data at any time via your Settings page or by contacting us.
• Deletion: Request complete deletion of your account and all associated data (subject to legal retention requirements for financial records).
• Portability: Request an export of your data in a machine-readable format.
• Withdraw Consent: Revoke Care Circle access at any time from your Settings page.

To exercise any of these rights, email privacy@abassolutions.net.

FocusFlow is not intended for children under 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal data, please contact us at privacy@abassolutions.net.

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and notifying you via email at least 30 days before changes take effect.

If you have any questions about this Privacy Policy, please contact us: