Account information — your email address and name when you create an account.
Conversations — messages and conversations you have with Aevi.
Journal entries — anything you write in your journal.
Usage data — app usage patterns, session information, and feature interactions.
Device information — device type, operating system, and app version.
Payment information — handled entirely by Stripe. We never store your card details.
3. Why We Collect It
To provide and personalise the AI companion service.
To save your journal entries and conversation history across sessions.
To process subscription payments and manage your account.
To send account emails such as verification and password resets.
To improve the app experience through aggregate, anonymised analytics.
We never use your data for advertising, and we never sell your personal data to anyone, ever.
4. Who We Share It With
We only share data with the services strictly necessary to operate Aevi:
Supabase — database and authentication infrastructure. Data is stored on Supabase's secure, EU-based servers.
Anthropic — the AI model that powers Aevi's responses. Your conversation content is sent to Anthropic's API to generate replies. Anthropic does not use this data to train their models under our API agreement.
Stripe — payment processing for Plus and Pro subscriptions. Stripe is PCI-DSS compliant.
We do not share your data with advertisers, data brokers, or any other third parties.
5. How We Protect Your Data
All data is encrypted in transit using HTTPS/TLS.
Data is stored on Supabase's secure servers with row-level security.
Authentication tokens are stored securely on your device.
We follow industry-standard security practices.
We conduct regular security reviews.
6. Your GDPR Rights
Aevi is operated from Germany and fully complies with the EU General Data Protection Regulation (GDPR). As an EU user, you have the right to:
Access — request a copy of your personal data.
Rectification — correct any inaccurate data we hold.
Erasure — delete your account and all associated data. Available directly in the app under Profile → Delete Account.
Portability — export your data in a machine-readable format. Contact privacy@myaevi.app.
Restriction — limit how we process your data in certain circumstances.
Objection — object to processing based on legitimate interests.
Withdraw consent — at any time, without affecting the lawfulness of prior processing.
You also have the right to lodge a complaint with the German data protection authority (BfDI) at www.bfdi.bund.de.
To exercise any of these rights, contact us at privacy@myaevi.app. We will respond within 30 days.
7. Data Retention
Your data is kept for as long as your account remains active.
When you delete your account, all personal data is permanently deleted within 30 days.
Anonymised, aggregate usage statistics may be retained for longer periods.
8. Children's Privacy
Aevi is not intended for children under 13 years of age. We do not knowingly collect personal data from children under 13. If you believe a child has provided us with personal data, please contact privacy@myaevi.app and we will delete it immediately.
9. AI Processing
Your conversations are processed by Anthropic's Claude AI model to generate Aevi's responses. Anthropic processes this data in accordance with their own privacy policy and our data processing agreement.
Aevi's responses are AI-generated and are intended for personal reflection only. They should not be relied upon as professional medical, psychological, legal, or financial advice.
10. Cookies and Local Storage
We use minimal cookies and local storage solely for authentication sessions and app preferences. We do not use advertising cookies, tracking pixels, or any third-party analytics services that profile individual users.
11. International Transfers
Your data may be processed on servers outside the European Economic Area, including by Anthropic (United States). When this occurs, we ensure appropriate safeguards are in place — including standard contractual clauses approved by the European Commission — in accordance with GDPR requirements.
12. Changes to This Policy
We will notify you of any significant changes to this Privacy Policy via email or in-app notification at least 30 days before the changes take effect. Continued use of the app after that date constitutes acceptance of the updated policy.
13. Contact Us
For any privacy-related questions, data requests, or concerns: