Privacy Policy

We collect the following data when you use Aumaï:

• Account information: name, email address
• Body measurements: weight, body measurements, progress photos
• Nutrition data: food logs, meal descriptions, meal photos, ingredients, nutritional values
• Fitness data: workout logs, exercises, sets, repetitions, muscle activation data
• Sleep data: sleep duration, quality, and notes
• Coach conversations: messages exchanged with the AI coaching assistant
• Preferences: dietary goals, language settings, notification preferences
• Technical data: browser type, device information, IP address (for security purposes only)

Your data is used exclusively to:

• Provide personalized nutrition and fitness coaching
• Track your progress toward your goals
• Generate AI-powered analysis of your meals and workouts
• Send you daily recaps and weekly reviews (if enabled)
• Improve the quality of our service

We do not sell your personal data to third parties. We do not use your data for advertising purposes.

Aumaï uses artificial intelligence (powered by Anthropic's Claude) to analyze your meals, workouts, and provide coaching advice. When you interact with the AI coach:

• Your messages and relevant context (recent meals, workouts, goals) are sent to Anthropic's API for processing
• Anthropic does not use your data to train their models (per their data processing agreement)
• AI responses are generated in real-time and not stored by Anthropic beyond the processing window

Important: AI-generated advice is for informational purposes only and does not replace professional medical or nutritional guidance.

Your data is stored securely:

• Database: hosted on Neon (PostgreSQL), with encryption at rest and in transit
• Files: images are stored on Vercel Blob Storage with secure URLs
• Authentication: passwords are hashed using industry-standard algorithms (bcrypt)
• Transport: all data is transmitted over HTTPS/TLS

We implement appropriate technical and organizational measures to protect your data against unauthorized access, alteration, or destruction.

We use the following third-party services to operate Aumaï:

• Vercel — hosting and file storage (USA)
• Neon — database hosting (USA/EU)
• Anthropic — AI processing (USA)

Each provider has their own privacy policy and data processing agreements. We only share the minimum data necessary for each service to function.

Aumaï uses:

• Authentication cookies: to keep you signed in (essential, no consent needed)
• Locale preference: stored in a cookie to remember your language choice

We do not use tracking cookies, analytics cookies, or any third-party advertising cookies.

You have the right to:

• Access your personal data at any time through the app
• Rectify inaccurate data through your settings
• Delete your account and all associated data (available in Settings)
• Export your data in a portable format (contact us)
• Object to certain data processing
• Withdraw consent at any time

To exercise any of these rights, contact us at emma@aumai.app.

For EU residents: you also have the right to lodge a complaint with your local data protection authority (e.g., CNIL in France).

For California residents: under the CCPA, you have the right to know what personal information we collect, request deletion, and opt-out of any sale of personal information (we do not sell your data).

We retain your data for as long as your account is active. When you delete your account:

• All personal data is permanently deleted from our database
• All associated files (photos, images) are deleted from storage
• This process is immediate and irreversible

We do not keep backups of deleted user data beyond our standard 7-day database backup retention period.

Aumaï is not intended for children under 16 years of age. We do not knowingly collect personal data from children. If you believe we have collected data from a child, please contact us immediately at emma@aumai.app.

We may update this privacy policy from time to time. We will notify you of significant changes via email or through a notice in the app. Continued use of Aumaï after changes constitutes acceptance of the updated policy.

For any privacy-related questions or requests:

• Email: emma@aumai.app
• Address: Aumaï, Paris, France