Privacy Policy

Account Information

When you create an account, we collect: email address, name, company, job title. This is stored encrypted and used only for account management and communication.

Practice Data (On-Device Only)

Your daily practice sessions—including emotional states, body awareness notes, and integration insights—are stored locally on your device. We never see this data unless you explicitly choose to share anonymized insights for research.

Biometric Data (On-Device Only)

Body state analysis, movement patterns, heart rate variability—all processed on your device using on-device machine learning. This data never leaves your device. Ever.

Account Management: Communicate about your account, beta access, and platform updates.

Service Delivery: Provide access to the platform, sync settings across devices (encrypted), deliver personalized practice recommendations.

• End-to-end encryption for all data in transit
• Encrypted storage for all account data
• On-device processing for all biometric data
• Regular security audits by third-party experts
• SOC 2 Type II compliance (target: Q2 2026)
• GDPR and CCPA compliant

Access: Request a copy of your data at any time
Deletion: Delete your account and all associated data
Portability: Export your practice data in standard formats
Opt-Out: Disable research participation at any time
Control: You own your data, always

We use minimal third-party services, all carefully vetted for security and privacy:

• Authentication: Industry-standard OAuth providers
• Analytics: Privacy-focused, anonymized usage metrics only
• Communication: Encrypted email service for account notifications
• Payment: PCI-compliant payment processor (data never touches our servers)