AI Buddy Privacy Policy

Last updated: January 2025

Overview

AI Buddy is a privacy-first emotional wellness companion that provides 24/7 AI-powered support with enterprise-grade security. We implement end-to-end encryption with a transparent, privacy-focused architecture, ensuring your mental health conversations remain secure. No personal data collection, no tracking - just encrypted, anonymous emotional support with full transparency about how your data is handled.

Privacy-First Design

Privacy-First Architecture with Smart Features

AI Buddy implements military-grade end-to-end encryption with a sophisticated dual-key system. Every message is encrypted on your device before leaving, ensuring your conversations remain private. Our intelligent features—like auto-generated conversation titles and personalized summaries—utilize secure server-side processing under strict privacy controls, with comprehensive audit logging for enterprise-grade transparency and accountability.

  • Device-based authentication with RSA-4096 encryption (no accounts, no passwords)
  • Zero personal data collection—no emails, phone numbers, or identifiable information
  • Forward secrecy through ephemeral keys—each message uses a unique encryption key
  • Optional biometric vault protection (Face ID/Touch ID/Optic ID) and PIN security
  • Automatic memory sanitization when app backgrounds for enhanced security
  • HIPAA-aligned infrastructure, fully GDPR and CCPA compliant
  • Enterprise-grade audit trail for all data processing activities

Information We Process

  • End-to-end encrypted conversation messages (processed securely for AI responses and smart features)
  • Wellness metrics and mood tracking data (up to 6 entries daily, fully encrypted)
  • Crisis safety indicators (anonymized patterns to improve mental health support)
  • App performance analytics (completely anonymized, used solely for optimization)
  • Device authentication tokens (UUID for secure access, never linked to your identity)
  • Technical compatibility data (iOS version, device model for seamless experience)
  • Secure session credentials (time-limited tokens with automatic expiration)

Information We Never Collect

  • Names, email addresses, or phone numbers
  • Location data or GPS coordinates
  • Contact lists or social media information
  • Payment information or financial data (App Store handles all subscriptions)
  • Biometric data (Face ID/Touch ID/Optic ID processed locally by iOS only, never transmitted to our servers)
  • Health records or medical information from Apple Health or other sources

Enterprise-Grade Security

Hybrid Encryption System

Military-grade hybrid encryption protects every interaction:

  • AES-256-GCM authenticated encryption for message security
  • RSA-4096 asymmetric encryption for secure key exchange
  • PBKDF2-HMAC-SHA256 key derivation (100,000 iterations)
  • Advanced dual-layer encryption architecture for maximum protection
  • Perfect forward secrecy through ephemeral key rotation
  • Hardware-backed iOS Keychain for cryptographic material storage

Advanced Security Features

Enterprise-grade security at every level:

  • Progressive brute force protection (1min at 5 attempts, 5min at 10, 15min at 15+)
  • Scalable partitioned database architecture for performance
  • Real-time network monitoring with seamless offline mode
  • Automatic token expiration and refresh
  • Recovery token system (180-day validity for account recovery)
  • Complete data erasure on request (right to be forgotten)
  • Built on memory-safe Rust backend for enhanced security

Authentication & Sessions

Secure, token-based authentication system:

  • JWT access tokens (24-hour expiry)
  • Refresh tokens (30-day expiry)
  • Recovery tokens (180-day expiry for account recovery)
  • Automatic token refresh before expiration
  • No passwords stored - device-based authentication only
  • Multi-device support with separate tokens per device

Offline Functionality

Seamless offline experience with automatic sync:

  • Messages queue locally when offline
  • Automatic synchronization when connection restored
  • Mood entries saved locally and synced automatically
  • Full encryption maintained in offline mode
  • No data loss during network interruptions
  • Conversation history accessible offline

How We Use Your Information

  • Personalized Support: To deliver deeply personalized emotional support and meaningful AI-powered conversations tailored to your unique needs
  • Proactive Safety: To identify potential crisis situations in real-time and provide immediate, life-saving support resources
  • Wellness Insights: To monitor your emotional well-being patterns and provide actionable insights for mental health improvement
  • Experience Enhancement: To improve app functionality and user experience using strictly anonymized, aggregated patterns (never your personal data)
  • Performance Excellence: To ensure lightning-fast, reliable performance across all features and devices
  • Crisis Prevention: To provide evidence-based crisis intervention strategies and verified mental health resources when you need them most

AI Processing & Crisis Detection

Intelligent AI & Crisis Protection

AI Buddy leverages enterprise-grade AI infrastructure to deliver personalized emotional support and proactive crisis detection. Your safety and privacy are engineered into every interaction.

  • Multi-provider AI architecture with automatic redundancy for uninterrupted 24/7 support
  • Lightning-fast crisis detection (sub-500ms response) with intelligent severity assessment
  • Instant access to vetted mental health resources and verified crisis hotlines
  • Intelligent conversation memory maintains context for deeply personalized support
  • All processing occurs within military-grade encrypted infrastructure
  • Your conversations never train AI models—complete anonymity guaranteed
  • Comprehensive security audit logging ensures enterprise-level accountability

Important Medical Disclaimer

AI Buddy is not a substitute for professional mental health care. This app provides emotional support and wellness tools but is not intended to diagnose, treat, cure, or prevent any medical condition.

  • Always consult with qualified mental health professionals for serious concerns
  • In crisis situations, contact emergency services (911) or crisis hotlines immediately
  • AI Buddy supplements but does not replace professional therapy or medical treatment

Data Protection & Limited Disclosure

Your privacy is sacrosanct. We never sell, trade, or rent your information. Our privacy-first architecture ensures we have minimal data footprint. In rare circumstances, we may share strictly anonymized, aggregated insights:

  • Infrastructure Partners: Enterprise-grade service providers operate within our encrypted infrastructure under comprehensive data protection agreements and strict privacy controls
  • Mental Health Research: Fully anonymized crisis detection patterns may contribute to advancing mental health safety research (no personal data, ever)
  • Legal Compliance: Only when legally mandated or essential for user safety protection—our zero-knowledge design inherently limits disclosable data
  • Corporate Events: In unlikely business transitions, only anonymized operational metrics would transfer (personal conversations remain protected)

Your Rights and Choices

  • Access: Request information about data associated with your device UUID
  • Deletion: Request complete deletion of all data associated with your device (right to be forgotten)
  • Opt-out: Disable analytics and non-essential data processing in app settings
  • Data Portability: Export your conversation history and wellness data (PDF/CSV format - coming soon)
  • Anonymity: Continue using the app without providing any personal information (no accounts required)
  • Recovery: Restore your data on new device using recovery token (180-day validity)

To exercise these rights, please contact us at contact-us@darkmasters-pottery.com with your device UUID (available in app settings).

Children's Privacy

AI Buddy is not directed to children under 13. We do not knowingly collect information from children under 13. Our device-based authentication system makes it virtually impossible for us to identify users by age. If you believe a child under 13 has used the app, please contact us immediately.

Global Infrastructure & Data Protection

AI Buddy leverages enterprise-grade global infrastructure to deliver optimal performance and 24/7 reliability worldwide. All data remains encrypted at rest and in transit across our secure, geographically distributed systems. We implement comprehensive data protection frameworks compliant with international privacy regulations including GDPR, CCPA, and regional data sovereignty requirements. Your encrypted information benefits from redundant, fault-tolerant architecture while maintaining the highest privacy standards regardless of physical location.

Crisis Resources

Immediate Help Available

If you're experiencing a mental health crisis, please reach out for immediate help:

United States

  • Crisis: 988 (Suicide & Crisis Lifeline)
  • Emergency: 911
  • Text Crisis: Text HOME to 741741

International

  • UK: 116 123 (Samaritans)
  • Canada: 1-833-456-4566
  • Australia: 13 11 14 (Lifeline)

Changes to This Policy

We may update this privacy policy from time to time. We will notify you of any material changes by posting the new privacy policy in the app and updating the "Last updated" date above.

Contact Information

If you have any questions about this Privacy Policy or our data practices, please contact us:

Email: contact-us@darkmasters-pottery.com

Company: Darkmaster's Pottery

App: AI Buddy - Emotional Wellness Companion

← Back to AI Buddy View Terms of Use →