Last Updated: January 2026

Privacy Policy

Your privacy matters to us. This policy explains how ikiro collects, uses, and protects your information.

1. Information We Collect

We collect information you provide directly to us, as well as information generated through your use of our service.

Personal Information

  • Phone number (for account verification and iMessage delivery)
  • Email address (optional, for account recovery)
  • Payment information (processed securely through Stripe)

Photos and Media

During onboarding, you may upload photos which are analyzed to understand your personality traits and preferences. This analysis helps personalize your AI companion experience.

  • Photos you upload during onboarding or conversations
  • AI-generated personality analysis derived from your photos
  • Visual memories extracted from shared images

Conversation Data

  • Messages exchanged with your AI companion
  • Conversation context and preferences
  • Emotional patterns and communication style
  • Memories and facts you share (stored to enhance personalization)

Connected Services

If you choose to connect external services, we may access:

  • Google Calendar events (with your explicit permission)
  • Gmail data (with your explicit permission, for workflow features)

2. How We Use Your Information

We use your information to provide, maintain, and improve our AI companion service:

  • PersonalizationTailoring your AI companion's responses based on your personality, preferences, and conversation history
  • MemoryRemembering important details, events, and preferences you share to provide contextually relevant responses
  • RelationshipTracking trust and rapport to evolve your companion's communication style over time
  • ProactiveUsing connected calendar and email data to provide timely reminders and insights
  • ImprovementAnalyzing usage patterns to enhance our AI models and user experience
  • CommunicationSending service-related updates and support messages

3. Data Storage and Security

We take the security of your data seriously and implement industry-standard measures to protect it.

Encryption

  • All data is encrypted in transit using TLS 1.3
  • Sensitive data is encrypted at rest
  • OAuth tokens are encrypted using Fernet symmetric encryption

Memory Storage

Your conversation memories are stored using Supermemory, a secure memory system with:

  • Strict namespace isolation ensuring your data is never mixed with other users
  • Semantic search capabilities for intelligent memory recall
  • Automatic deduplication to maintain data quality

Infrastructure

  • Hosted on Railway with enterprise-grade security
  • Database managed by Supabase with automatic backups
  • Regular security audits and vulnerability assessments

4. Third-Party Services

We work with trusted third-party services to provide our platform:

Stripe

Payment processing is handled by Stripe. We do not store your full credit card information. Stripe's privacy policy applies to payment data.

OpenAI

Our AI companion uses OpenAI's GPT models to generate responses. Conversation data is processed by OpenAI in accordance with their API data usage policies. OpenAI does not use API data to train their models.

Google OAuth

If you connect Google Calendar or Gmail, we access only the data you explicitly authorize. You can revoke access at any time through your Google account settings or within ikiro.

Supabase

User authentication and database storage is provided by Supabase, which maintains SOC 2 compliance.

Twilio

Phone verification is handled through Twilio's Verify service. Phone numbers are used solely for authentication purposes.

5. Your Rights

You have significant control over your data. We support GDPR and CCPA rights:

Access

You can request a copy of all personal data we hold about you at any time through your account settings.

Export

You can export your data in JSON format, including conversation history, memories, and profile information.

Deletion

You can request deletion of your account and all associated data. We provide a 30-day grace period during which you can cancel the deletion request.

Correction

You can update or correct your personal information through your account settings or by contacting support.

Objection

You can object to certain data processing activities. Contact us to discuss your concerns.

6. Data Retention

We retain your data as follows:

  • ActiveData is retained as long as your account is active
  • HistoryConversation history stored indefinitely while your account is active to maintain continuity with your AI companion
  • MemoriesRetained until you delete them or request account deletion
  • Deletion30-day grace period, then permanent deletion within 30 additional days
  • BillingRecords retained for 7 years as required by law
  • AnalyticsAnonymized analytics may be retained indefinitely for service improvement

7. Contact Information

If you have questions about this Privacy Policy or our data practices, please contact us:

Privacy Inquiries

privacy@ikiro.ai

General Support

support@ikiro.ai

For data access, export, or deletion requests, you can also use the Account Settings in the ikiro dashboard.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. We encourage you to review this policy periodically.

This policy is subject to legal review before launch.

Terms of ServiceBack to Home