Privacy Policy
In short: Human OS collects only what is necessary to provide you with an AI thinking companion. We do not sell your data. We do not share your conversations with third parties. Your messages are processed solely to generate AI responses. You can delete all your data at any time.
Contents
01Information We Collect
We collect only the minimum information necessary to provide and improve our service. Here is a detailed breakdown:
a) Account Information
| Data Type | Purpose | Required | Shared |
|---|---|---|---|
| Email address | Authentication & account recovery | Yes | No |
| Display name | Personalization within the app | Optional | No |
| User ID | Account management & service delivery | Yes | No |
b) Chat Messages
When you use Human OS, your messages are:
- Sent to our server for processing and generating AI responses.
- Stored on your device for local chat history.
- Stored on our server for conversation continuity and memory features.
- NOT shared with any third parties, except the AI model provider (see Third-Party Services) solely for the purpose of generating responses.
You retain full control over your chat history. You can delete all conversations at any time via Settings > Privacy > Delete All Data in the app, or by contacting us directly.
c) App Activity
- Message count and usage patterns: Collected for quota tracking and service improvement. This data is aggregated and not used to identify individual behaviors.
d) Financial Information
- Purchase history: Managed entirely by Apple App Store (iOS) or Google Play (Android). We receive only confirmation of purchase status (active/expired). We do not collect, process, or store any payment card details, bank information, or financial credentials.
e) Crash Reports and Analytics
- Firebase Crashlytics: Crash logs, stack traces, device model, and OS version for diagnosing and fixing bugs.
- Firebase Analytics: Anonymous usage events (screens visited, features used) to understand product engagement. No personally identifiable information is included in analytics events.
- Firebase Cloud Messaging: Device push notification tokens for delivering notifications you opt into.
02Information We Do NOT Collect
We believe in data minimization. The following categories of data are never collected by Human OS:
We do not use any advertising SDKs, analytics trackers, or fingerprinting technologies.
03How We Use Your Information
We use the collected information for the following purposes only:
| Purpose | Data Used | Legal Basis (GDPR) |
|---|---|---|
| Provide AI conversation service | Chat messages, User ID | Contract performance |
| User authentication | Email, User ID | Contract performance |
| Personalize experience | Display name, chat memory | Consent / Legitimate interest |
| Manage subscription & quotas | User ID, message count, purchase status | Contract performance |
| Service improvement | Aggregated usage patterns | Legitimate interest |
| Respond to support requests | Email, conversation context | Contract performance |
We do not use your data for: targeted advertising, user profiling for marketing, sale to data brokers, training AI models outside of your active session, or any purpose unrelated to delivering the Human OS service.
04Third-Party Services
Human OS integrates with the following third-party services to deliver its core functionality:
a) Qwen API (DashScope / Alibaba Cloud)
- What is shared: Your chat messages (the text you type and the conversation context required to generate a response).
- Why: To process your messages and generate AI responses.
- Data retention by provider: Subject to Alibaba Cloud DashScope Privacy Policy.
- Note: We do not send your email, name, or any account identifiers to the AI provider. Only the conversation text is transmitted.
b) Apple App Store / Google Play Billing
- What is shared: Purchase transactions are handled entirely by Apple (iOS) or Google (Android). We receive only purchase confirmation tokens and subscription status.
- Why: To process subscription payments and verify purchase status.
- Privacy policies: Apple Privacy Policy | Google Privacy Policy.
c) Firebase (Google)
- Firebase Authentication: Handles user sign-in (email/password and Google Sign-In). Processes email, display name, and profile photo.
- Firebase Crashlytics: Collects crash reports and diagnostic data for bug fixing.
- Firebase Analytics: Collects anonymous usage events for product improvement.
- Firebase Cloud Messaging: Delivers push notifications via device tokens.
- Privacy policy: Firebase Privacy Policy.
c) DuckDuckGo
- What is shared: Search queries, only when you explicitly trigger a web search.
- Why: To provide real-time web search results within the conversation.
- Privacy policy: DuckDuckGo Privacy Policy.
- Note: DuckDuckGo does not track users or store personal search history.
We deliberately chose DuckDuckGo for web search because of its privacy-first approach. We do not use Google Search, Bing, or any search provider that tracks users.
05Data Storage & Security
We take the security of your data seriously and implement the following measures:
| Measure | Status | Details |
|---|---|---|
| Encryption in transit | Yes | All data transmitted via HTTPS/TLS 1.2+ |
| Encryption at rest | Partial | Server-side database (SQLite) with restricted access; on-device storage uses platform encryption |
| Access control | Yes | JWT-based authentication; role-based access |
| Server location | EU | Hosted in Germany (Hetzner Online GmbH), subject to EU data protection laws |
| Password security | Yes | Passwords hashed with industry-standard algorithms; never stored in plaintext |
On-Device Storage
Chat history is also stored locally on your device using secure platform storage mechanisms. This local data is not accessible to other applications and is deleted when you uninstall the app or clear app data.
Server Infrastructure
Our servers are located in Germany and operated by Hetzner Online GmbH, a GDPR-compliant hosting provider within the European Union. Access to the server is restricted and monitored.
06Data Retention
We retain your data only as long as necessary to provide the service:
| Data Type | Retention Period | After Deletion |
|---|---|---|
| Account information | Until account deletion or 1 year of inactivity | Permanently deleted within 30 days |
| Chat messages (server) | Until user deletes or account expires | Permanently deleted within 30 days |
| Chat messages (device) | Until user deletes or app uninstalled | Immediately removed from device |
| Usage statistics | Aggregated; no personal identifiers retained | Anonymized data may be retained indefinitely |
| Purchase records | As required by applicable tax/accounting laws | Retained per legal obligation |
After the retention period expires, data is permanently deleted from our servers. We do not keep backup copies of deleted user data beyond the 30-day deletion processing window.
07Your Rights
Depending on your location, you have certain rights regarding your personal data. We honor these rights for all users worldwide, regardless of jurisdiction:
Under GDPR (European Economic Area)
- Right of Access (Art. 15): Request a copy of all personal data we hold about you.
- Right to Rectification (Art. 16): Request correction of inaccurate personal data.
- Right to Erasure (Art. 17): Request deletion of your personal data ("right to be forgotten").
- Right to Restriction (Art. 18): Request restriction of processing of your personal data.
- Right to Data Portability (Art. 20): Request your data in a structured, machine-readable format.
- Right to Object (Art. 21): Object to processing based on legitimate interests.
- Right to Withdraw Consent (Art. 7): Withdraw consent at any time where processing is based on consent.
- Right to Lodge a Complaint: File a complaint with your local Data Protection Authority.
Under CCPA (California, USA)
- Right to Know: Request disclosure of what personal information is collected, used, and shared.
- Right to Delete: Request deletion of personal information.
- Right to Opt-Out: We do not sell personal information. There is nothing to opt out of.
- Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights.
How to Exercise Your Rights
You can exercise your data rights through:
- In-App: Settings > Privacy > Delete All Data (for data deletion).
- Email: Send a request to [email protected] with the subject line "Privacy Rights Request".
We will respond to all privacy rights requests within 30 days. For complex requests, we may extend this to 60 days with notice. We may request identity verification before processing your request.
We will never charge a fee for processing privacy rights requests, unless a request is manifestly unfounded or excessive.
08Children's Privacy
Human OS is not intended for children under the age of 13 (or the applicable minimum age in your jurisdiction, e.g., 16 in the EEA under GDPR).
We do not knowingly collect personal information from children. If we become aware that we have inadvertently collected data from a child under the applicable minimum age, we will take immediate steps to delete that information from our servers.
If you are a parent or guardian and believe your child has provided us with personal information, please contact us at [email protected] and we will promptly remove the data.
09International Data Transfers
Your data may be processed in the following jurisdictions:
| Service | Location | Safeguard |
|---|---|---|
| Human OS Server | Germany (EU) | GDPR applies directly |
| Qwen API (DashScope) | China / Singapore | Data processing agreement; messages only |
| Apple App Store (iOS) | United States | EU-US Data Privacy Framework |
| Google Play (Android) | United States | EU-US Data Privacy Framework |
| Firebase (Google) | United States | EU-US Data Privacy Framework; Standard Contractual Clauses |
| DuckDuckGo | United States | No personal data transmitted; search queries only |
Where personal data is transferred outside the EEA, we ensure appropriate safeguards are in place, including standard contractual clauses or adequacy decisions as applicable.
10App Tracking Transparency (iOS)
Human OS does not track you across other companies' apps or websites. We do not use the IDFA (Identifier for Advertisers). We do not participate in any advertising tracking frameworks. When iOS asks about tracking, the honest answer is: we do not track.
Human OS contains zero advertising SDKs and zero tracking pixels. We do not fingerprint your device. We do not build behavioral profiles for advertising purposes.
10Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.
When we make changes:
- The "Last Updated" date at the top of this page will be revised.
- For material changes (changes that significantly affect your rights or how your data is handled), we will notify you via an in-app notification at least 14 days before the changes take effect.
- Your continued use of Human OS after the effective date of a revised policy constitutes acceptance of the updated terms.
We encourage you to review this policy periodically. Previous versions of this policy are available upon request.
11Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
| [email protected] | |
| Website | mmtorbit.com |
| App Package | com.mmtorbit.humanos |
| Response Time | Within 30 days of receipt |
For urgent privacy concerns, please include "URGENT: Privacy" in the subject line and we will prioritize your request.