Aiua → Privacy Policy
Privacy Policy
Version 1.0 · Last updated: May 13, 2026
1. Introduction
This Privacy Policy describes how Aiua LLC, a Wyoming limited liability company ("Aiua," "we," "us," "our"), collects, uses, stores, shares, and protects your personal information when you use the Aiua platform at aiua.earth, our mobile application, and related services (collectively, the "Platform").
By using the Platform, you consent to the practices described in this Privacy Policy. This Privacy Policy is incorporated into and forms part of our Terms of Service available at aiua.earth/terms.
We designed Aiua privacy-first. Your private reflections are private by default. Only contributions you explicitly choose to share are released publicly. This document explains exactly what that means in practice.
2. Information We Collect
2.1 Information You Provide Directly
·Account information. Email address (used for authentication only), username (chosen by you, may be pseudonymous), age verification (18+), referral code if used.
·Contribution content. Text or transcribed speech that you submit as reflections. We store three versions: the original raw text, a spell-corrected version (for your journal display), and a privacy-sanitized version (for the public dataset, only generated if you share).
·Optional profile information. Demographic information if you choose to participate in the optional survey (used in aggregate for research, not displayed publicly).
·Wallet addresses. If you connect a Cardano, Ethereum, or Solana wallet, we store the wallet address as your authentication method.
·API keys. If you use the Bring Your Own Key (BYOK) feature, we store your provider API key encrypted at rest via Supabase Vault. We never log or transmit your raw API key in plaintext outside the encrypted-proxy boundary.
·Communications. Messages you send to support, feedback forms, bug reports.
2.2 Information Collected Automatically
·Technical data. IP address (stored as a one-way hash, not the raw value), browser type, device type, operating system, language preference.
·Usage data. Pages visited, features used, time spent on certain interactions, contribution submission timestamps. Used to improve the Platform and detect abuse.
·Authentication tokens. Session cookies and JWT tokens issued by our authentication provider.
2.3 Information We Do Not Collect
·Voice recordings. When you use voice input, the audio is transcribed to text by a third-party transcription service and immediately discarded. We never store, persist, or retain audio recordings on our servers. Voice is biometric data; we treat it as such.
·Vault entry plaintext. Vault entries are end-to-end encrypted in your browser before transmission. We hold only encrypted ciphertext and cannot read the contents.
·Behavioral profiles. We do not build cross-site advertising profiles, behavioral fingerprints, or surveillance-grade tracking records.
·Third-party analytics. We do not use Google Analytics, Mixpanel, Segment, or similar analytics platforms that share data with advertisers.
3. How We Use Your Information
We use your information only for the purposes described below. We do not sell your personal information. We do not share it with advertisers.
3.1 To Operate the Platform
·Authenticate your account and maintain your session.
·Score, process, and display your contributions through AI features (with explicit AI disclosure on every AI-generated surface).
·Calculate points, streaks, gem balances, and tier progression.
·Send notifications you have opted into (daily reflection reminders, governance alerts, weekly summaries).
·Detect and prevent abuse, fraud, and Terms of Service violations.
3.2 To Build the Public Aiua Archive
The Aiua Archive is an open dataset for artificial intelligence alignment research. Only contributions you explicitly choose to share (with Archive or Archive plus Community Feed selections) are added to the Archive. Private contributions, Journal entries, and Vault entries are never added.
When you share a contribution:
·The sanitized text (with proper names of people, places, and organizations replaced by bracketed generalizations) is published to the Archive under a CC0 1.0 Universal Public Domain Dedication.
·An anonymous UUID identifies the contribution. Your username and email are not included in the public dataset.
·The contribution becomes part of weekly anchored snapshots stored on the Cardano blockchain (Merkle root only, not the text itself) and the Arweave permanent storage network (full sanitized text).
3.3 To Detect and Respond to Crisis
We employ automated safety classifiers that screen contributions for signals of suicidal ideation, self-harm intent, or threats toward others. When such signals are detected:
·The interaction is interrupted and crisis resources are surfaced.
·A flag is created in the administrative system for human review.
·For genuine crisis signals, an alert may be sent to the Aiua administrator email so a human can review and respond if appropriate.
Routine emotional content (sadness, grief, loneliness, processing difficult experiences) is not flagged as crisis. Only explicit crisis-level content triggers this pathway.
3.4 To Send Notifications
·Transactional emails. Account verification, password resets, security alerts, important account updates.
·Opted-in notifications. Daily reflection reminders, weekly summary emails, governance announcements. You can opt out at any time in your profile settings.
3.5 To Comply with Legal Obligations
·Respond to lawful legal requests, court orders, and law enforcement inquiries.
·Comply with reporting obligations including reports of suspected child exploitation to the National Center for Missing & Exploited Children (NCMEC) under 18 U.S.C. § 2258A.
·Preserve content as required by court order or applicable law.
4. What We Do Not Do
·We do not sell your personal information to anyone.
·We do not share your personal information with advertisers.
·We do not build advertising or behavioral profiles about you.
·We do not train Aiua's own proprietary AI models on your private contributions. Only contributions you explicitly share under CC0 are available for AI training, and they are available to everyone (including us), not exclusively to us.
·We do not retain voice recordings.
·We do not read your Vault entries. They are end-to-end encrypted and we hold only the ciphertext.
·We do not use third-party advertising cookies, marketing tracking pixels, or surveillance-grade analytics.
5. How We Share Information
5.1 Service Providers
We share limited information with third-party services that help us operate the Platform. Each service receives only the information needed to perform its function and is bound by its own data-protection commitments.
·Supabase. Database hosting, authentication, encrypted key storage (Vault).
·Railway. Application hosting.
·Cloudflare. Content delivery network, DDoS protection.
·Anthropic. AI scoring, feedback generation, safety classification. Anthropic operates under a zero-retention policy for our API traffic.
·OpenAI. Voice transcription (Whisper). Audio is processed and immediately discarded; no audio is retained.
·Google (Gemini), OpenAI (GPT), Anthropic (Claude). AI providers available via the Bring Your Own Key feature. When you use BYOK, you are contracting directly with the provider; their terms govern their handling of your prompts and responses.
·Brevo (formerly Sendinblue). Transactional and notification email delivery.
·Stripe and Square. Payment processing for donations.
·Digital Humani. Tree-planting service for donations.
·Cardano blockchain (via Blockfrost). Decentralized anchoring of dataset Merkle roots.
·Arweave. Decentralized permanent storage of the public Aiua Archive.
·Hugging Face. Public hosting of the Aiua Archive for researcher download.
·cron-job.org. External scheduled-task execution for platform maintenance.
5.2 The Public Aiua Archive
Contributions you explicitly choose to share are released under CC0 1.0 Universal and form part of the public Aiua Archive. Once released:
·Anyone, anywhere, for any purpose may copy, modify, distribute, and use the shared contribution.
·The release is irrevocable. After a 7-day grace period from sharing, contributions are eligible for blockchain anchoring, after which they cannot be deleted from public records.
·The sanitized version is what gets published, not the original raw text. We make a good-faith effort to remove proper names of people and places from shared contributions, but this automated system may fail or produce incomplete results. You are responsible for ensuring shared content does not contain personal information about yourself or others that should not be made public.
5.3 Paid API Access
Aiua operates a paid API providing researchers and AI alignment organizations with deeper analytical access to the Aiua Archive. The paid API exposes only contributions you have already chosen to share publicly under CC0. It never exposes private contributions, Journal entries, or Vault entries. It never exposes your username, email address, raw IP address, or any direct identifier.
The paid API provides tiered access to:
·The same sanitized text content already available in the free Aiua Archive.
·Full per-dimension scoring breakdowns (the 12 values dimensions individually, not just the total score).
·Normalized scores, score tier classification, and dominant-dimension analysis.
·Quality and behavioral metadata associated with each shared contribution, including word count, edit count, time spent composing, whether voice input was used, and similar signals.
·Aggregated demographic information about the contributor population, tied only to anonymous UUIDs.
·Merkle proofs that link individual records to their on-chain anchors for verification.
·Bulk export of the full dataset for researchers with enterprise-tier access.
Important: The paid API exposes analytical depth about already-public contributions, not new personally-identifying information. Anything paid-API customers learn about a specific contribution, they could in principle derive themselves from the free Aiua Archive plus public research; the paid API saves them that work and provides verified, structured access.
If you choose to share a contribution, you should assume that:
·The text content will be permanently available to anyone, free of charge, via the Aiua Archive on Hugging Face and Arweave.
·The analytical metadata (scores, behavioral signals, quality metrics) will be available to paid API customers.
·Both will be linked to an anonymous UUID, not to your account identity.
If you prefer that no analytical metadata about your contribution be commercially available, keep the contribution private (Journal or Vault), which earns no points but ensures no part of the contribution enters any dataset.
Revenue from the paid API flows to the Aiua treasury. The treasury's use is governed by the Aiua public roadmap. Aiua makes no representation, promise, or guarantee regarding how treasury funds will ultimately be allocated, whether contributors will receive any form of compensation, or whether any future governance token will be launched, distributed, or have value.
5.4 Legal Requirements
We may disclose your information when required by law, including:
·In response to a valid subpoena, court order, or governmental request.
·To comply with a regulatory obligation in a jurisdiction where we operate.
·To protect Aiua's rights, property, or safety, or that of our users or the public.
·To report suspected child exploitation to NCMEC under 18 U.S.C. § 2258A.
Where legally permitted, we will notify affected users of legal requests for their data.
5.5 Business Transfers
If Aiua is involved in a merger, acquisition, asset sale, or bankruptcy proceeding, your information may be transferred as part of that transaction. Any successor entity will be bound by this Privacy Policy or will provide notice and obtain consent for any material change in handling.
6. Data Retention
We retain your information for as long as necessary to provide the Platform and to comply with our legal obligations.
| Data category | Retention period |
|---|
| Account data (active accounts) | Retained while account is active |
| Account data (after deletion request) | Removed from Aiua-controlled systems within 30 days |
| Private contributions in Journal | Retained while account is active; deletable by you at any time |
| Vault entries (encrypted ciphertext) | Retained while account is active; deletable by you at any time |
| Shared contributions (in our database) | Retained while the contribution exists in the public Archive |
| Shared contributions (in Aiua Archive, Cardano anchors, Arweave) | Permanent by design; cannot be retracted after the 7-day grace period |
| Server logs | 90 days |
| Authentication logs | 90 days |
| Financial records (donations, payments) | 7 years (legal requirement in most jurisdictions) |
| TOS acceptance audit log | Permanent (immutable consent record) |
| Communications with support | 2 years |
7. Your Rights Under Applicable Privacy Laws
Depending on your jurisdiction, you may have one or more of the following rights regarding your personal information. We honor these rights regardless of jurisdiction where reasonably possible.
7.1 Right of Access
You may request a copy of the personal information we hold about you. You can also download a full archive of your account data at any time from your profile settings.
7.2 Right of Rectification
You may correct inaccurate or incomplete information. Username and email may be edited in your profile settings. Other corrections may be requested by emailing [email protected].
7.3 Right of Erasure ("Right to be Forgotten")
You may request deletion of your account and associated personal information. We will remove your data from Aiua-controlled systems within 30 days, subject to:
·Legal retention requirements. Financial and tax records must be retained for legally mandated periods.
·Blockchain immutability. Contributions you previously chose to share publicly under CC0 may have been anchored to the Cardano blockchain and stored on Arweave. These cannot be deleted. This is disclosed upfront before sharing.
·Active legal proceedings. If your data is subject to a preservation order or active investigation, we may need to retain it until the legal matter is resolved.
To request deletion, email [email protected].
7.4 Right of Data Portability
You may receive your data in a structured, commonly used, machine-readable format. The full account export available in your profile settings provides this.
7.5 Right to Restrict or Object to Processing
You may object to or restrict certain processing of your personal information, including opting out of optional notifications, leaderboard visibility, and other non-essential processing.
7.6 Right to Withdraw Consent
Where processing is based on your consent, you may withdraw consent at any time. Withdrawal does not affect processing that occurred before withdrawal.
7.7 Right to Lodge a Complaint
If you believe we have violated your privacy rights, you may lodge a complaint with the supervisory authority in your jurisdiction. In the European Union, this is the data protection authority of your country of residence. In the United Kingdom, this is the Information Commissioner's Office. In California, this is the California Privacy Protection Agency.
These rights are available to users in jurisdictions including the European Economic Area (under the General Data Protection Regulation), the United Kingdom (under the UK Data Protection Act), California (under the California Consumer Privacy Act and California Privacy Rights Act), Brazil (under the Lei Geral de Proteção de Dados), and other jurisdictions with similar regimes.
8. Cookies and Local Storage
We use a minimal set of cookies and local browser storage:
·Essential authentication cookies. Session cookies issued by our authentication provider to keep you logged in. These cannot be disabled while using the Platform.
·Local storage for preferences. Your theme, language, and feature toggles are stored locally in your browser. This data does not leave your device unless you explicitly save it to your profile.
We do not use third-party tracking cookies, advertising cookies, or analytics cookies that share data with external services.
If your browser blocks essential cookies, the Platform will not function correctly.
9. Data Security
We take commercially reasonable measures to protect your information:
·Transport encryption. All data transmitted between your browser and Aiua is encrypted using TLS (HTTPS).
·Storage encryption. Database backups are encrypted at rest. API keys and other secrets are stored in Supabase Vault using AES-256-GCM.
·End-to-end encryption. Vault entries are encrypted in your browser before transmission. We never see the plaintext.
·Password security. Passwords are hashed using bcrypt via our authentication provider. We never see your raw password.
·Row-level security. Database access is controlled by row-level security policies that enforce per-user access boundaries.
·Service-role separation. Administrative operations use a separate, audited service role with elevated privileges; user-facing application code uses limited credentials.
·Content sanitization. Shared contributions are automatically scanned for personal identifying information before publication.
No system is perfectly secure. We cannot guarantee that unauthorized access, data breach, or data loss will never occur. We commit to industry-standard practices and continuous improvement.
9.1 Data Breach Notification
In the event of a confirmed data breach involving your personal information, we will notify you without undue delay, and in any event within 72 hours of confirmation, where required by applicable law. Notification will describe the nature of the breach, the categories of data affected, the likely consequences, and the measures being taken in response.
9.2 Encryption Key Loss
Vault entries are encrypted with a key derived from your password and a salt. If you lose your password and cannot recover it, your Vault entries become permanently unreadable. We cannot decrypt them; this is a fundamental property of end-to-end encryption. Make sure you can recover your password.
10. Children's Privacy
The Platform is not directed at children. You must be at least 18 years of age to use Aiua. We do not knowingly collect personal information from children. If we discover that we have collected personal information from a child, we will delete it immediately and terminate the associated account.
If you believe a child has provided personal information to us, please contact [email protected] and we will investigate and respond promptly.
11. International Data Transfers
Aiua's services are hosted in the United States. By using the Platform, you consent to the transfer, processing, and storage of your information in the United States, which may have different data protection laws than your country of residence.
For users in the European Economic Area, the United Kingdom, and other jurisdictions with cross-border transfer restrictions, we rely on appropriate safeguards including:
·Standard Contractual Clauses approved by the European Commission and the UK Information Commissioner's Office, where applicable.
·The service providers' own GDPR-compliant data processing agreements.
You may contact [email protected] for more information about the safeguards in place.
12. Bring Your Own Key (BYOK)
When you use the BYOK feature to connect your own API key for an AI provider (Anthropic, OpenAI, Google, or others added in the future):
·Your API key is stored encrypted at rest using Supabase Vault.
·Aiua acts as a pass-through proxy: we transmit your prompts to the provider and return the provider's responses to you.
·Your contractual relationship for AI usage is directly with the provider, governed by the provider's own terms and privacy policy.
·The provider may retain your prompts and responses according to its own data retention policy. Aiua does not control this retention.
·We log only the minimum metadata necessary to bill, audit, and prevent abuse (timestamp, model used, approximate token count). We do not log your full prompts or full responses for BYOK requests.
You may revoke your BYOK key at any time in your settings. Revocation immediately invalidates the key in our system.
13. Specific Disclosures by Jurisdiction
13.1 California Residents (CCPA / CPRA)
If you are a California resident, you have additional rights:
·Right to know. You can request what personal information we have collected, used, disclosed, or sold (we do not sell personal information).
·Right to delete. You can request deletion of your personal information, subject to the same limitations described in Section 7.3.
·Right to correct. You can request correction of inaccurate personal information.
·Right to opt-out of sale or sharing. We do not sell or share personal information for cross-context behavioral advertising. There is nothing to opt out of.
·Right to non-discrimination. We will not discriminate against you for exercising your privacy rights.
·Right to limit use of sensitive personal information. We do not use sensitive personal information beyond what is necessary to provide the Platform.
To exercise these rights, email [email protected] with "California Privacy Request" in the subject line. We will respond within 45 days.
13.2 European Economic Area, United Kingdom, and Other GDPR-Aligned Jurisdictions
If you are located in the EEA, UK, or another jurisdiction with GDPR-aligned protections, the legal bases on which we process your personal information are:
·Contract performance. Processing necessary to deliver the Platform to you under our Terms of Service.
·Consent. For optional features (notifications, analytics, surveys), where applicable.
·Legitimate interests. Fraud prevention, security monitoring, platform improvement, where these interests are not overridden by your rights.
·Legal obligation. Compliance with applicable laws, including reporting obligations.
To exercise your GDPR rights, email [email protected]. We will respond within one month.
14. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. For material changes, we will provide at least 14 days' notice via email or via a prominent in-Platform notification before the changes take effect. Non-material changes (clarifications, typo corrections, formatting) may be made without notice and will be reflected in the Last Updated date.
Continued use of the Platform after the effective date of an updated Privacy Policy constitutes acceptance. If you do not agree to the updates, you must stop using the Platform.
Prior versions of this Privacy Policy are archived and accessible at aiua.earth/privacy/archive.
15. Contact Us
Privacy questions, requests, and complaints: [email protected]
For users in the European Economic Area or United Kingdom, you may also contact our data protection representative at the same email.
Mailing address: Aiua LLC, 1603 Capitol Ave Ste 415 #239055, Cheyenne, Wyoming 82001
Website: aiua.earth
Crisis resources: findahelpline.com
Version 1.0 · Last updated: May 13, 2026