Plain language. No legalese hidden in small print. Here is exactly how we treat your data.
This policy covers everything you do on the Aimour AI App website, web app and native mobile apps published by Aimour Studio Ltd.
Aimour Studio Ltd. is a private company registered in the United Kingdom. We are the data controller for all information described here.
Account email, hashed password, basic device information, your chat history with your AI companion, voluntarily provided profile preferences and billing data when you subscribe.
We do not collect your contacts, your location at a precise level, your microphone audio outside of explicit voice features, or any third-party identifiers we do not need.
To run the service, keep your companion’s memory consistent, prevent abuse and process payments.
Contract performance, your explicit consent, and legitimate interest in keeping the platform secure.
Conversations are encrypted in transit with TLS 1.3 and at rest with AES-256. Encryption keys are isolated from application servers.
Nobody on our team reads individual conversations as part of normal operations. Access is strictly limited to legally required disclosures or your direct support request.
We do not train any model on your personal chats. Public, anonymised research datasets are only used with separate opt-in consent.
We use a short list of vetted providers for hosting, payments and email delivery. Every processor is bound by GDPR-aligned data processing agreements.
We use strictly necessary cookies for login sessions and anonymous analytics cookies. No advertising cookies, ever.
Aggregated, anonymised metrics only. We never link analytics events to the content of conversations.
We do not run third-party advertising on the platform and do not share data with ad networks.
Aimour AI App is strictly 18+. We delete any account discovered to belong to a minor and remove all associated data.
Account creation requires confirmation of age. Repeat misrepresentation triggers permanent suspension.
Card numbers never touch our servers. Payments are tokenised through PCI-DSS-compliant processors.
We retain billing records for as long as required by tax and accounting law in our jurisdiction.
You can delete your account from settings at any time. Deletion removes chats, profile data and companions within 30 days.
You can wipe individual conversations, individual messages or a single companion without touching the rest of your account.
You can request a machine-readable export of everything we hold about you and receive it within 30 days.
You can correct any inaccurate personal information from your account settings or by writing to us.
You can object to processing that relies on legitimate interest. We will stop unless we have an overriding legal reason.
You can request a temporary processing freeze while we investigate a complaint.
Some processors are based outside the EEA or UK. We rely on Standard Contractual Clauses and equivalent safeguards.
Chats stay for as long as your account is active. Inactive accounts are anonymised after 24 months unless legally required otherwise.
We run continuous monitoring, quarterly penetration tests and least-privilege access controls across all production systems.
If a breach affects your data, we will notify you within 72 hours of confirmation and explain the impact in plain language.
We only respond to valid legal orders from authorised jurisdictions and publish an annual transparency report.
We honour Global Privacy Control and Do Not Track signals where applicable.
If you are a California resident, you have the right to know, the right to delete, and the right not to be discriminated against for exercising your rights under CCPA / CPRA.
If you are in the EU, you may lodge a complaint with your local supervisory authority at any time.
Material changes will be announced inside the app at least 14 days before they take effect.
Privacy questions: privacy@aimour.app. We respond within 5 working days.