Privacy Policy

Effective June 23, 2026

This Privacy Policy explains how Secure AI ("we", "us", or "our") collects, uses, discloses, and processes your personal data when you use secureai.one or our mobile applications (collectively, the "Services"). This Privacy Policy describes your privacy rights. More information about your rights, and how to exercise them, is set out in Section 4 ("Rights and Choices").

1. Collection of Personal Data

We collect the following categories of personal data:

Personal data you provide to us directly

Identity and Contact Data

We collect identifiers, including your name and email address when you sign up for a Secure AI account via Google or Apple Sign-In. We may also generate internal identifiers for your account.

Payment Information

If you choose to purchase a paid subscription, we collect payment information. Card details are held by our payment processor, Stripe, and are never stored directly by us. We retain subscription status and a Stripe customer reference.

Inputs and Outputs

You interact with the Services primarily through chat. The messages, files, and images you submit ("Inputs") are sent to your selected AI provider and generate responses ("Outputs"). If you include personal data in your Inputs, we will collect that information and it may be reproduced in your Outputs. Before your Inputs are transmitted to an AI provider, identifying details such as names, email addresses, and phone numbers are scrubbed from the message to protect your identity.

When you provide Inputs, you are responsible for ensuring you have the necessary rights and permissions to share that content.

Feedback

If you rate or report a response, we may store the related conversation as part of your feedback to help us improve the Services.

Communication Information

If you contact us for support or other purposes, we collect your name, contact information, and the contents of your messages.

Personal data we receive automatically from your use of the Services

When you use the Services, we automatically receive certain technical data ("Technical Information"), including:

  • Device and Connection Information: Your device type, operating system, browser, IP address (including approximate location derived from your IP), mobile network, time zone, and device or online identifiers.
  • Usage Information: Dates and times of access, pages viewed, features used, links clicked, and information about how you use the Services.
  • Log and Troubleshooting Information: Log files and error reports collected when our Services encounter issues, including the time of the error, the feature in use, and application state at the time.
  • Cookies and Similar Technologies: We and our service providers use cookies and similar technologies to manage the Services, recognize you, personalize your experience, and analyze usage. For more details on your opt-out options, please contact us.

2. Uses of Personal Data

We use your personal data for the following purposes:

  • To provide, maintain, and improve the Services offered to you under our Terms of Service;
  • To provide optional features that enhance platform functionality and user experience;
  • To send you service updates and communications relevant to your account;
  • To create and administer your Secure AI account;
  • To process payments for paid subscriptions;
  • To prevent and investigate fraud, abuse, and violations of our Terms of Service, unauthorized access to our systems, and to meet legal obligations;
  • To investigate and resolve disputes and security issues;
  • To debug and repair errors that impair existing functionality;
  • To improve the Services and conduct internal analytics; and
  • To enforce our Terms of Service and applicable agreements.

We do not use your Inputs or Outputs to train AI models. We do not sell your personal data. We do not use your conversations for advertising.

3. Recipients and Third-Party Data Sources

We disclose personal data to the following categories of third parties for the purposes described in this Policy:

  • Service providers and business partners: We share personal data with service providers and partners for purposes including hosting, data processing, payment processing, fraud prevention, and security. Our key providers include Google Firebase (authentication and encrypted data storage), Stripe (payments), Vercel (hosting), and Cloudflare (request routing).
  • AI providers: When you send a message, your anonymized Inputs are transmitted through our infrastructure to your selected AI provider — Anthropic (Claude), OpenAI (GPT), or Google (Gemini) — to generate a response. Your account identity is not shared with AI providers. Each provider processes message content under their own terms and privacy policies.
  • Corporate events: If we are involved in a merger, acquisition, bankruptcy, or transfer of business assets, your personal data may be transferred as part of that transaction.
  • Legal and safety disclosures: We may share personal data with government authorities, law enforcement, or other third parties where we have a good-faith belief that disclosure is reasonably necessary to (i) comply with applicable law or legal process; (ii) prevent serious harm to any person or property; (iii) detect, prevent, or address fraud or other illegal activity; or (iv) enforce our terms or protect the rights, property, or safety of Secure AI, our users, or others.
  • With your consent: We will otherwise disclose personal data when you give us permission or direct us to do so.

4. Rights and Choices

Depending on where you live and the laws that apply, you may enjoy certain rights regarding your personal data. We strive to comply with all applicable privacy laws and to prioritize the protection of your personal data.

To exercise your rights, you or an authorized agent may submit a request by contacting us at secureai.one@gmail.com. After receiving your request, we may verify your identity by requesting information sufficient to confirm who you are (e.g., email address or account details). We will respond within the period required by the data protection law that applies to you.

The following rights may be available to you depending on your jurisdiction:

  • Right to know: The right to know what personal data we process about you, including the categories of data, sources, purposes, and third parties involved.
  • Access and data portability: The right to request a copy of the personal data we hold about you, and in certain cases to receive it in a portable format.
  • Deletion: The right to request deletion of your personal data. You can delete individual conversations directly in the app; they will be removed from your conversation history immediately and deleted from our systems within 30 days. To delete your entire account and all associated data, go to Settings → Delete Account or contact us at secureai.one@gmail.com.
  • Correction: The right to request correction of inaccurate personal data we hold about you.
  • Objection: The right to object to processing of your personal data, including for direct marketing. You can opt out of marketing communications using the unsubscribe link in any such messages.
  • Restriction: The right to request that we restrict our processing of your personal data in certain circumstances.
  • Withdrawal of consent: Where our processing is based on your consent, you may withdraw that consent at any time. Withdrawal does not affect the lawfulness of processing that occurred before withdrawal.
  • Automated decision-making: We do not engage in decision-making based solely on automated processing in a manner that produces legal effects or significantly affects you.

We will not discriminate against you for exercising any privacy rights you may have.

5. Data Transfers

Secure AI is based in the United States, and your personal data is processed on servers located in the US and in the countries where our service providers operate. If you are located outside the United States, your personal data will be transferred to and processed in the US or other countries whose data protection laws may differ from those in your country.

Where required by applicable law, we use appropriate safeguards — such as standard contractual clauses approved by relevant authorities — to protect personal data transferred internationally. If you have questions about how we safeguard international transfers, please contact us.

6. Data Retention and Security

We retain your personal data for as long as reasonably necessary to fulfill the purposes described in this Privacy Policy, maintain your account, comply with legal obligations, resolve disputes, and enforce our agreements.

When personal data is no longer required, we and our service providers will destroy, delete, erase, or anonymize it as permitted or required by applicable law.

Your conversation history is stored encrypted with AES-256-GCM using keys derived from your account. We cannot read your conversations.

Aggregated or De-Identified Information

We may process personal data in aggregated or de-identified form to analyze and improve the effectiveness of our Services. Where data is de-identified, we maintain and use it in de-identified form and will not attempt to re-identify it except as permitted by law.

Security

We implement appropriate technical and organizational security measures designed to protect personal data from loss, misuse, unauthorized access, disclosure, alteration, or destruction. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

7. Children

Our Services are not directed at children under the age of 13, and we do not knowingly collect personal data from children under 13. If you become aware that a child under 13 has provided personal data to us, please contact us at secureai.one@gmail.com and we will investigate and, if appropriate, delete the data.

8. Changes to Our Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the updated policy at secureai.one/privacy and updating the Effective Date at the top of this page.

9. Contact Information

If you have any questions about this Privacy Policy, or have questions, complaints, or requests regarding your personal data, please contact us:

Secure AI
Email: secureai.one@gmail.com

Depending on the laws that apply in your jurisdiction, you may also have the right to lodge a complaint with a local data protection supervisory authority.

10. Legal Bases for Processing

Where data protection laws require a legal basis for processing personal data, we rely on the following:

  • Contract: Processing necessary to provide the Services to you, manage your account, and process payments.
  • Legitimate interests: Processing for fraud prevention, security, debugging, product improvement, and analytics, where our interests are not overridden by your rights and freedoms.
  • Legal obligation: Processing required to comply with applicable laws, respond to lawful government requests, and meet regulatory requirements.
  • Consent: Where we rely on your consent, such as for certain cookies or optional communications. You may withdraw consent at any time.
  • Vital interests: Processing necessary to protect the vital interests of any person in emergency circumstances.