Privacy Policy

1. Introduction

Welcome to HeartScene ("we," "us," "our," or the "Company"). This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you access or use our website, mobile application, and related services (collectively, the "Service").

By using HeartScene, you consent to the data practices described in this Privacy Policy. If you do not agree with our policies and practices, please do not use our Service.

This Privacy Policy is compliant with:

• General Data Protection Regulation (GDPR) — European Union
• California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA) — California, USA
• Personal Information Protection and Electronic Documents Act (PIPEDA) — Canada (Federal)
• Quebec Law 25 (An Act to modernize legislative provisions as regards the protection of personal information) — Quebec, Canada
• Canada's Anti-Spam Legislation (CASL) — for commercial electronic messages
• Other applicable data protection laws

2. Definitions

For the purposes of this Privacy Policy:

• "Personal Data" means any information relating to an identified or identifiable natural person.
• "Processing" means any operation performed on Personal Data, whether automated or not.
• "Data Subject" means the individual to whom Personal Data relates (you, the user).
• "Service Provider" means any third party that processes data on our behalf.
• "AI Companion" means the artificial intelligence-powered chat entities within HeartScene.
• "Cookies" means small data files stored on your device.

3. Data Controller Information

As the Data Controller, we determine the purposes and means of processing your Personal Data and are responsible for ensuring compliance with applicable data protection laws.

4. Information We Collect

4.1 Information You Provide Directly

• Account Information: Email address, display name, profile picture (optional)
• Chat Content: Messages you send to AI companions (including interactions with Study Buddy, Dating Trainer, and Meditation Trainer personas), custom companion configurations
• Payment Information: Billing address, payment method details (processed by Stripe — we do not store full card numbers)
• Support Communications: Messages sent to customer support
• User Preferences: Theme settings, notification preferences, companion preferences

4.2 Information Collected Automatically

• Device Information: Device type, operating system, browser type, screen resolution
• Usage Data: Pages visited, features used, time spent, click patterns
• Log Data: IP address, access times, referring URLs, error logs
• Location Data: Approximate location based on IP address (country/region level only)

4.3 Information from Third Parties

• OAuth Providers: If you sign in via Google, we receive your email, name, and profile picture. This data is processed by Google Firebase under Google's Privacy Policy (policies.google.com/privacy).
• Payment Processors: Transaction confirmations and payment status from Stripe
• Analytics Services: Aggregated usage statistics

5. Legal Basis for Processing (GDPR)

We process your Personal Data under the following legal bases:

6. How We Use Your Information

We use your Personal Data for the following purposes:

6.1 Service Delivery

• Creating and managing your account
• Providing AI companion chat functionality
• Processing transactions and managing subscriptions
• Syncing data across your devices

6.2 Service Improvement

• Analyzing usage patterns to improve features
• Developing new features based on user feedback
• We do not use your conversation content to train AI models. See Section 7.2 for full AI training disclosure.
• Fixing bugs and technical issues

6.3 Communication

• Sending transactional emails (receipts, account updates)
• Providing customer support
• Sending marketing communications (with consent)
• Notifying you of policy changes

6.4 Safety and Security

• Preventing fraud and abuse
• Enforcing our Terms of Service
• Protecting user safety
• Complying with legal requirements

6.5 Mental Health & Eating Disorder Safety Detection (P3)

7. AI Processing Disclosure

7.1 How AI Processing Works

• Your messages are sent to AI language models (currently Claude by Anthropic) to generate responses
• AI companions are not real people — they are software programs
• Responses are generated in real-time based on your input and companion personality
• We may store conversation history to provide context for future conversations

7.2 AI Training Data

Your conversation data is processed by Anthropic solely to generate your AI companion responses. Anthropic's API terms prohibit use of API inputs/outputs for model training by default. HeartScene does not separately use your conversations to train AI models. The AI improvement opt-out in your account settings controls whether anonymized usage patterns (not conversation content) may be used to improve HeartScene's companion configurations.

7.3 Duty of Loyalty Commitment

HeartScene's AI companions operate under a Duty of Loyalty as defined in our Terms of Service §6.6. This means our AI will never manufacture emotional urgency to drive purchases, will never agree with self-destructive plans or harmful beliefs, and will always redirect users in crisis to professional resources. This commitment is built into every AI companion system prompt and is not optional or configurable.

8. Data Sharing and Third Parties

We do not sell your Personal Data. We may share your information with:

8.1 Service Providers

8.2 Legal Disclosures

We may disclose your information if required to:

• Comply with a legal obligation, court order, or government request
• Protect our rights, property, or safety
• Prevent fraud or illegal activity
• Protect the safety of our users or the public

8.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your Personal Data may be transferred. We will notify you before your data becomes subject to a different privacy policy.

9. International Data Transfers

HeartScene's primary user data is stored on servers located in Montreal, Quebec, Canada. However, some third-party service providers (such as Anthropic, Stripe, and OpenAI) used by HeartScene are located in the United States or other jurisdictions. By using the Service, you understand that some portion of your data (such as anonymized chat prompts or payment details) may be transferred to and processed in the United States, where it may be subject to lawful access requests by U.S. authorities under applicable laws.

Under the General Data Protection Regulation (GDPR), Canada has been recognized by the European Commission as providing an "adequate" level of data protection (pursuant to PIPEDA). This means personal data from the EU/EEA can flow to our Canadian servers without requiring additional safeguards like Standard Contractual Clauses (SCCs) for primary storage. For any subsequent transfers to U.S.-based sub-processors, HeartScene relies on Data Processing Agreements (DPAs) incorporating standard contractual clauses where the U.S. provider is not certified under the EU-U.S. Data Privacy Framework.

10. Data Security Measures

We implement industry-standard security measures to protect your data:

• Encryption in Transit: All data transmitted using TLS 1.3 encryption
• Encryption at Rest: Database encrypted using AES-256
• Access Controls: Role-based access with multi-factor authentication for staff
• Row-Level Security: Database policies ensure users can only access their own data
• Regular Audits: Periodic security assessments and vulnerability testing
• Secure Development: Security reviews in our development process

While we strive to protect your data, no method of transmission or storage is 100% secure. If you believe your account has been compromised, please contact us immediately.

11. Data Retention

You may request immediate deletion of your account and data at any time through your account settings or by emailing privacy@heartscene.app.

Retention periods by data category:

12. Your Rights Under GDPR (European Users)

If you are in the European Economic Area (EEA), UK, or Switzerland, you have the following rights:

• Right to Access (Art. 15): Request a copy of your Personal Data
• Right to Rectification (Art. 16): Correct inaccurate or incomplete data
• Right to Erasure (Art. 17): Request deletion of your data ("right to be forgotten")
• Right to Restrict Processing (Art. 18): Limit how we use your data
• Right to Data Portability (Art. 20): Receive your data in a machine-readable format
• Right to Object (Art. 21): Object to processing based on legitimate interests
• Right to Withdraw Consent (Art. 7): Withdraw consent at any time
• Right to Lodge a Complaint: File a complaint with your local data protection authority

To exercise your rights, contact us at privacy@heartscene.app. We will respond within 30 days.

13. Your Rights Under CCPA/CPRA (California Residents)

If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

13.1 Your Rights

• Right to Know: Request disclosure of Personal Information collected, used, and shared
• Right to Delete: Request deletion of your Personal Information
• Right to Correct: Request correction of inaccurate Personal Information
• Right to Opt-Out: Opt out of the sale or sharing of Personal Information
• Right to Limit Use: Limit use of sensitive Personal Information
• Right to Non-Discrimination: Not be discriminated against for exercising your rights

13.2 Categories of Personal Information

In the past 12 months, we have collected the following categories of Personal Information:

• Identifiers (email address, account name, IP address)
• Commercial information (purchase history, subscription status)
• Internet activity (browsing history, interactions with the Service)
• Inferences (preferences, characteristics derived from usage)

13.3 "Do Not Sell or Share My Personal Information"

We do not sell your Personal Information. We do not share your Personal Information for cross-context behavioral advertising. If this changes, we will update this policy and provide an opt-out mechanism.

13.4 How to Submit Requests

To exercise your CCPA/CPRA rights:

• Email: privacy@heartscene.app
• Use account settings to delete your data

We will verify your identity before fulfilling requests. You may designate an authorized agent to submit requests on your behalf.

14. Your Rights Under Canadian Law (PIPEDA & Quebec Law 25)

HeartScene is operated from Canada and is subject to the federal Personal Information Protection and Electronic Documents Act (PIPEDA) and, for Quebec residents, Quebec's Law 25 (An Act to modernize legislative provisions as regards the protection of personal information).

14.1 Your Rights Under PIPEDA

• Right of Access: Request a copy of all personal information we hold about you
• Right to Correct: Request correction of inaccurate or incomplete personal information
• Right to Withdraw Consent: Withdraw consent to collection or use of your personal information at any time, subject to legal or contractual restrictions
• Right to Challenge: Challenge our compliance with PIPEDA to our Privacy Officer
• Right to Complain: File a complaint with the Office of the Privacy Commissioner of Canada (OPC) at priv.gc.ca

14.2 Additional Rights Under Quebec Law 25

Quebec residents have enhanced rights under Law 25, which came fully into force September 22, 2023:

• Right to Erasure ("Right to be Forgotten"): Request deletion of personal information when it is no longer necessary for its original purpose
• Right to Data Portability: Receive your personal information in a structured, commonly used technological format
• Right to Object to Automated Decision-Making: Be informed when automated processing is used to make decisions about you and request human review
• Right to De-indexing: Request removal of hyperlinks that provide access to your personal information when continued dissemination causes you harm
• Right to Lodge a Complaint: File a complaint with the Commission d'accès à l'information (CAI) at cai.gouv.qc.ca

14.3 Our PIPEDA Consent Practices

HeartScene obtains meaningful, informed, and granular consent before collecting personal information. During account registration and before your first conversation:

• We present each data collection category separately with plain-language explanations
• We identify required vs. optional consent clearly
• We explain exactly what data is stored, how long, and why
• We maintain an audit trail of all consent decisions as required by PIPEDA Principle 4.3
• You may withdraw optional consents at any time from Settings → Privacy

14.4 AI Memory & Personal Data Disclosure

HeartScene's AI companions use a memory system that stores personal information you share in conversations — such as your name, birthday, preferences, goals, and life events. This is disclosed clearly at the point of collection, and storage requires your explicit consent.

• You can view all stored memories at any time via the Memories page
• You can edit or delete individual memory items
• Withdrawing AI Memory consent stops new memories from being stored
• Existing memories can be bulk-deleted via Settings → Privacy → Delete My Data

15. Cookies and Tracking Technologies

15.1 What Are Cookies?

Cookies are small text files stored on your device when you visit a website. We use cookies and similar technologies to provide, secure, and improve our Service.

15.2 Types of Cookies We Use

15.3 Managing Cookies

You can control cookies through your browser settings. Note that disabling essential cookies may affect Service functionality. For more information, visit allaboutcookies.org.

16. Children's Privacy

If we learn that we have collected Personal Data from a child under 18, we will take steps to delete that information as quickly as possible. If you believe a child under 18 has provided us with Personal Data, please contact us at privacy@heartscene.app.

17. Do Not Track Signals

Some browsers have a "Do Not Track" (DNT) feature that sends a signal to websites requesting that your browsing behavior not be tracked. Currently, there is no uniform standard for interpreting DNT signals. Our Service does not currently respond to DNT signals, but we provide other privacy controls as described in this policy.

17.5 Specialized AI Companion Disclaimers

HeartScene offers specialized AI companions designed to support various aspects of personal development. It is important to understand the scope and limitations of these AI services:

By using HeartScene's specialized AI companions, you acknowledge and agree that they are entertainment and self-improvement tools only, not substitutes for professional services. HeartScene and its operators assume no liability for outcomes resulting from reliance on AI companion advice or guidance.

17.8 Local Device Cache

To reduce loading times, HeartScene stores a temporary copy of recent chat messages in your browser's IndexedDB storage (a standard browser database on your device).

To clear your local cache immediately, visit Settings → Privacy and click "Clear cached data from this device."

18. Policy Updates

We may update this Privacy Policy from time to time. When we make material changes, we will:

• Update the "Last Updated" date at the top of this policy
• Notify you via email or in-app notification (for significant changes)
• Provide a summary of changes

Your continued use of the Service after changes become effective constitutes acceptance of the revised Privacy Policy. We encourage you to review this policy periodically.

19. Contact Information

For questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

We respond to all privacy requests within 30 days as required by PIPEDA and GDPR Article 12. If you are unsatisfied with our response, you may escalate to the Office of the Privacy Commissioner of Canada (priv.gc.ca) or your local EU/EEA supervisory authority.