Privacy Policy
Who we are
Auserene is an evening journaling and AI companion app for iOS. Auserene is operated by Himanshu Pathak, an individual developer based in India (“Auserene,” “we,” “us,” or “our”). Auserene is not yet incorporated as a company; it is operated by an individual. This Privacy Policy explains what we collect, how we use it, who processes it on our behalf, and the choices and rights you have.
This app is intended for users 17 years of age or older. We do not knowingly collect information from anyone under 17.
If you have questions or want to exercise any privacy right, contact us at hpatsvnit@gmail.com.
The short version
- Auserene is a private space to reflect at the end of the day. The journaling you do and the conversations you have with the companion are the most personal things in the app, and we treat them that way.
- We encrypt your sensitive content at rest using per-user encryption keys.
- We do not use advertising, ad networks, third-party analytics SDKs, or crash-reporting SDKs. We don’t track you across apps or websites, and we don’t collect advertising identifiers.
- To generate and voice your sessions, we send the minimum necessary data to a small set of AI providers who are contractually prohibited from training on your content. Your raw journal entries reach only our language and embedding providers — never our voice providers.
- You can delete your account and all of your data from inside the app, permanently, at any time.
The rest of this policy is the detail behind those statements.
What we collect
Information you give us directly
- Account information: your email address and a password (handled by our authentication provider), or, if you choose Sign in with Apple, the identifier Apple returns to us. A display name if you provide one.
- Onboarding responses:your stated preferences for pace, directness, how you’d like to be addressed, and your free-text answer to what’s on your mind. These shape how the companion is present with you.
- Your journaling and conversations: the text of your evening sessions, conversations with the companion, and any journal entries, moods, reflections, or notes you record.
- Preferences and settings: session length, preferred voice, preferred time, pronouns, and similar in-app choices.
- Optional uploads: a profile avatar image, if you add one.
Information created by the app as you use it
To make the companion feel like it remembers you, the app derives a private, evolving understanding of how to be present with you and the world as you’ve described it— for example, themes you return to, what tends to help you feel settled, and goals you’ve named. This is descriptive only. We do not create, store, or infer any medical, psychiatric, or clinical assessment, diagnosis, or condition label about you, anywhere. This derived understanding is visible to you inside the app, and you can edit, correct, or remove any part of it.
Information collected automatically
- A user identifier assigned at account creation, used to associate your data with your account.
- Basic operational data such as usage counts and timestamps, your timezone, and aggregate token/cost counters we use to run and budget the service. These do not contain the content of your journals or conversations.
- We do not collect advertising identifiers (IDFA), device identifiers, push tokens, or precise location, and we do notuse Apple’s App Tracking Transparency tracking.
How we use your information
- To provide the core experience: your nightly session, the companion’s responses, generated reflections, and voiced meditations.
- To maintain continuity — so the companion can be present in a way that reflects what you’ve shared over time.
- To operate, secure, debug, and budget the service.
- To communicate with you about your account or material changes to the service.
We do not sell your personal information. We do not share it for cross-context behavioral advertising. We do not use your content to train our own models, and our AI providers are contractually prohibited from training on it (see below).
How your sessions are generated: AI subprocessors
Auserene uses third-party AI processors to generate and voice your sessions. We send each provider the minimum data it needs, and we choose providers for our most sensitive data based on their data-handling terms.
- Your journal entries and conversations are processed only by our language-model and embedding providers — Anthropic, OpenAI, and Fireworks AI — under terms that prohibit training on your content and that delete inputs within approximately 30 days or sooner. These transmissions occur over encrypted connections; content is decrypted in our secure server environment only to build each request.
- Our text-to-speech providers — ElevenLabs and Inworld AI — receive only the short, generated meditation script to voice. They never receive your raw journal text or conversations.
A full, current list of our subprocessors is available at www.auserene.com/subprocessors.
Because Auserene is operated by an individual and not an enterprise, we rely on these providers’ standard data-processing terms, data minimization (sending each provider only what it needs), and at-rest encryption — rather than enterprise-only features such as zero-retention guarantees. We disclose this openly so you can make an informed choice.
Other service providers
- Google Firebase(a Google service) provides our authentication, database, file storage, and server functions. Your data is stored on Google’s infrastructure.
- Google Cloud KMS holds the master key used to protect your per-user encryption key.
These providers process data on our behalf under their respective terms.
How we protect your information
- Encryption at rest.Your sensitive content — including your journals, conversations, derived understanding, the user’s own quoted words, and onboarding free-text — is encrypted at rest using a unique encryption key generated for each user. Each user’s key is itself protected by a master key held in a managed key service.
- Encryption in transit. Data moves between the app, our servers, and our providers over encrypted (TLS) connections.
- Important limit — this is not end-to-end encryption. To generate your sessions, our servers and our AI providers must process your content in unencrypted form in memory at the moment of generation. Encryption protects your data as stored; it does not hide your content from our servers or from the AI providers listed above during processing.
- No analytics or crash SDKs. We do not embed third-party analytics, advertising, attribution, session-replay, or crash-reporting software.
No method of storage or transmission is perfectly secure, and we cannot guarantee absolute security.
How long we keep your data
We keep your information for as long as your account is active. You can delete it at any time (see below). Operational records that do not identify you — such as aggregate usage statistics — may be retained after deletion. Our AI providers delete the content we send them on their own short retention schedules (approximately 30 days or sooner).
Your choices and rights
Delete everything, yourself, from inside the app. Settings includes a Delete my account option. After a confirmation step, this permanently and irreversibly deletes your account, your journals and conversations, your derived understanding, your encryption key, and your stored files. Because your encryption key is destroyed in this process, encrypted content becomes permanently unrecoverable. You may also email hpatsvnit@gmail.com to request deletion.
See and correct your derived understanding. The app shows you the understanding it has formed, in your own words, and lets you edit it, mark items as wrong, tell the companion not to bring something up, or delete it.
Access, correction, and portability. You may request a copy of your personal information or ask us to correct it by emailing hpatsvnit@gmail.com.
For United States users (including California): Depending on your state, you may have the right to know what personal information we collect, to access or delete it, to correct it, and to not be discriminated against for exercising these rights. California residents (under the CCPA/CPRA) have these rights. We do not sell or share your personal information for cross-context behavioral advertising, and we do not process sensitive personal information for purposes other than providing the service you requested. To exercise any right, contact hpatsvnit@gmail.com; we will not deny you service for doing so.
For users in the EU, EEA, and UK: You have the right to access, correct, delete, and receive a copy of your personal information, to ask us to restrict or stop certain processing, and to withdraw any consent you have given. You can use the in-app controls or email hpatsvnit@gmail.com. You also have the right to lodge a complaint with your local data protection authority.
For users in India:Under India’s Digital Personal Data Protection Act, 2023, you have the right to access and correct your personal data, to have it erased, and to grievance redressal. You can use the in-app controls or email hpatsvnit@gmail.com, which is also our contact for any grievance.
We honor these requests regardless of where you live.
Children
Auserene is for users 17 and older. We do not knowingly collect personal information from anyone under 17. If you believe a minor has provided us information, contact hpatsvnit@gmail.com and we will delete it.
International users and data location
Auserene is operated from India and is available to users in multiple countries. Your data is stored and processed on infrastructure operated by our providers, which may be located in the United States, India, and elsewhere. Wherever you use Auserene from, your information may be transferred to and processed in these locations. By using Auserene, you understand and agree to this processing.
Not a medical or crisis service
Auserene is a journaling and reflection app. It is not a medical device, not therapy, and not a substitute for professional care, and it does not provide medical or mental-health diagnosis or treatment. If you are in crisis or may be in danger, contact your local emergency services or a crisis line immediately. In the US, you can call or text 988(Suicide & Crisis Lifeline). If you are outside the US, contact your local emergency number or a crisis hotline in your country — you can find one at findahelpline.com.
Changes to this policy
We may update this policy. If we make a material change, we’ll update the date above and, where appropriate, notify you in the app. Continued use after an update means you accept the revised policy.
Contact
Himanshu Pathak, operating as Auserene
hpatsvnit@gmail.com