Privacy Policy

1. Information We Collect

1.1 Information You Provide to Us:

• Account Information: When you register, we collect your username, email address, and password (encrypted).
• Profile Information (Optional): You may optionally provide additional profile details to personalize your experience:
  • Birthday: Used to personalize your experience and verify age requirements. You can clear this data anytime in your account settings.
  • Gender: Used by AI characters (Auras) to address you appropriately (e.g., correct pronouns and greetings in conversations).
  • Avatar: Optional profile picture (available to PRO subscribers).

  All profile information listed above is entirely optional. You can skip providing it during registration or remove it later in your account settings. Not providing this information will not affect your ability to use core platform features.

• Messages and Interactions: Your conversations with AI characters (Auras), including text messages, preferences, and interaction history. This data is used to provide the service, improve AI responses, and ensure content safety through moderation.
• User-Generated Content: Any content you create, upload, or share on the platform, such as comments, likes, and follows.

1.2 Information We Collect Automatically:

• Usage Data: Details about your interactions on the platform, including features used, content viewed, likes, follows, and time spent on different sections.
• Device Information: IP address, device type, operating system version, mobile device identifiers (for mobile apps), browser type and version, and language settings.
• Analytics and Crash Data (Firebase): We use Firebase Analytics to understand how users interact with our platform and Firebase Crashlytics to detect and fix technical issues. This includes:
  • App usage patterns and feature engagement
  • Screen views and navigation paths
  • Crash reports and performance data
  • Device characteristics and operating system information
  • Anonymized user identifiers for analytics purposes
  Firebase is operated by Google LLC. For more information about how Google handles data, visit: Google Privacy Policy
• Cookies and Similar Technologies: We use cookies and similar tracking technologies to maintain your session, remember your preferences, and analyze platform usage. You can manage cookie preferences through your browser settings.

1.3 Purchase and Payment Information:

In-App Purchases: When you make purchases through iOS App Store or Google Play Store, we receive confirmation of the purchase, transaction identifiers, and product details (such as token packs or subscription plans purchased). We do not collect or store your payment card information - all payment processing is handled securely by Apple or Google.

We store the following purchase-related data:

• Transaction IDs and purchase receipts
• Token balance and usage history
• Subscription status and renewal dates
• Purchase timestamps and product types

1.4 AI-Generated Content and Moderation Data:

We use AI to generate profiles, images, and videos of fictional characters called "Auras." All AI-generated content is fictional and created exclusively for entertainment and creative storytelling purposes. All AI-generated visual content is appropriate for general audiences and does not contain any suggestive, sexual, or inappropriate imagery.

Content Moderation: To ensure platform safety and compliance with our content policies, we collect and store:

• Messages flagged by our automated content filtering system
• Content reports submitted by users
• Moderation decisions and appeal records
• Account violation history for enforcement purposes

All Aura profiles, images, and videos are generated and moderated by mateaura.com. Human moderators review AI-generated content before publication to ensure compliance with safety standards. All AI-generated profiles, images, and associated content are entirely fictional and do not represent real individuals.

2. How We Use Your Information

We use the information collected for the following purposes:

• Service Delivery: To create and manage your account, process your requests, facilitate your interactions with AI characters (Auras), and deliver purchased features and subscriptions.
• Conversation History and Context: To maintain conversation history with AI characters, provide contextually relevant responses, and enable continuous storytelling experiences across sessions.
• Personalization: To analyze your activity (likes, follows, preferences) and recommend tailored content in your feed that matches your interests.
• Payment Processing: To manage token balances, process in-app purchases, handle subscription renewals, and maintain transaction records for accounting and support purposes.
• Analytics and Improvement: To monitor platform performance, understand user behavior through Firebase Analytics, identify technical issues via Firebase Crashlytics, and enhance user experience based on usage patterns.
• Advertising: To display relevant advertisements based on your interests and activity. We use anonymized data for ad targeting and do not share personally identifiable information with advertisers.
• Content Safety and Moderation: To monitor and prevent abuse, detect prohibited content, enforce our Terms of Service, prevent fraud, and maintain a safe environment for all users.
• AI Model Improvement: To improve AI responses, enhance content generation quality, and train content filtering systems. All data used for AI training is anonymized and aggregated.
• Communication: To send important updates about your account, respond to support requests, notify you of policy changes, and provide information about new features or promotions (with your consent).
• Legal Compliance: To comply with legal obligations, respond to lawful requests from authorities, protect our rights and property, and enforce our agreements.

3. Sharing Your Information

We respect your privacy and do not sell your personal data to third parties. We may share your information only in the following limited circumstances:

• Service Providers: We share data with trusted service providers who help us operate the platform:
  • Google LLC (Firebase): For analytics, crash reporting, and performance monitoring
  • AI Service Providers: For generating AI responses and content (data is anonymized where possible)
  • Cloud Hosting Providers: For secure data storage and platform infrastructure
  All service providers are contractually obligated to protect your data and use it only for specified purposes.
• Payment Processors (Apple, Google): Transaction data is shared with Apple App Store or Google Play Store when you make in-app purchases. These platforms have their own privacy policies governing payment data.
• Legal Requirements: We may disclose information when required by law, to comply with legal processes, respond to lawful requests from authorities, protect our rights or the safety of users, or prevent illegal activities.
• Business Transfers: In the event of a merger, acquisition, reorganization, or sale of assets, your information may be transferred to the acquiring entity. We will notify you before your data is transferred and becomes subject to a different privacy policy.
• With Your Consent: We may share information with third parties when you explicitly consent to such sharing.

We do NOT share: Your private messages with AI characters, personal conversation content, or detailed interaction history with third parties for marketing or advertising purposes.

4. Data Retention

We retain your personal information for as long as necessary to provide our services and fulfill the purposes described in this Privacy Policy:

• Account Data: Retained while your account is active and for up to 90 days after account deletion (to allow for account recovery).
• Conversation History: Stored while your account is active. You can delete individual conversations at any time. All conversations are permanently deleted when you delete your account.
• Purchase Records: Retained for 7 years for accounting, tax compliance, and dispute resolution purposes, even after account deletion.
• Moderation Records: Content violations and moderation decisions are retained for 2 years to prevent repeat abuse and for legal compliance.
• Analytics Data: Firebase Analytics data is anonymized and retained according to Google's data retention policies (typically 14-26 months).
• Crash Reports: Firebase Crashlytics data is retained for up to 90 days for debugging purposes.

After the retention period, we securely delete or anonymize your data. In some cases, we may retain anonymized or aggregated data indefinitely for statistical analysis and platform improvement, but this data cannot be used to identify you personally.

You can request early deletion of your account and associated data at any time through your account settings or by contacting us at [email protected].

5. Your Privacy Rights

Depending on your location, you may have the following rights regarding your personal data:

• Access: Request access to the personal data we hold about you and obtain a copy of that data.
• Correction: Update or correct inaccurate or incomplete personal information through your account settings or by contacting us.
• Deletion: Request deletion of your personal data, subject to legal retention requirements (such as transaction records for tax purposes).
• Data Portability: Request a copy of your data in a structured, commonly used, machine-readable format (JSON or CSV).
• Opt-Out of Marketing: Unsubscribe from promotional emails or notifications at any time through email preferences or account settings.
• Cookie Management: Control cookie preferences through your browser settings. Note that disabling cookies may affect platform functionality.
• Withdraw Consent: Where we process data based on consent, you can withdraw consent at any time without affecting the lawfulness of processing before withdrawal.
• Object to Processing: Object to certain types of data processing, such as direct marketing or processing based on legitimate interests.
• Lodge a Complaint: File a complaint with your local data protection authority if you believe we have violated your privacy rights.

5.1 Rights for EEA, UK, and California Residents:

If you are located in the European Economic Area (EEA), United Kingdom, or California, you have additional rights under GDPR, UK GDPR, and CCPA respectively:

• Right to restriction of processing
• Right to object to automated decision-making and profiling
• Right to know what personal information is collected and how it's used (California)
• Right to opt-out of the sale of personal information (we do not sell your data)

How to Exercise Your Rights: To exercise any of these rights, contact us at [email protected] with the subject line "Privacy Rights Request." We will respond within 30 days (or as required by applicable law).

6. Security Measures

We take the security of your personal information seriously and implement industry-standard security measures to protect your data:

• Encryption: All data transmission is encrypted using TLS/SSL protocols. Sensitive data at rest is encrypted using industry-standard encryption algorithms.
• Access Controls: Strict access controls ensure that only authorized personnel can access user data, and only when necessary for providing support or maintaining the service.
• Password Protection: User passwords are hashed using secure algorithms (bcrypt) and are never stored in plain text.
• Secure Infrastructure: Our servers and databases are hosted on secure cloud infrastructure with regular security updates and monitoring.
• Regular Audits: We conduct regular security assessments and vulnerability testing to identify and address potential security risks.
• Incident Response: We have incident response procedures in place to quickly detect, respond to, and mitigate security breaches.

Important Notice: While we implement robust security measures, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security, but we continuously work to protect your information to the best of our ability.

Your Responsibility: Please help protect your account by using a strong, unique password, not sharing your credentials, and logging out from shared devices. If you suspect unauthorized access to your account, contact us immediately.

7. Children's Privacy

Age Requirements: Our service is intended for users aged 16 and older. Users between the ages of 16 and 18 must obtain permission from a parent or legal guardian before using the platform.

Children Under 16: We do not knowingly collect personal information from children under 16 years of age. If we discover that a user under 16 has provided us with personal information, we will immediately:

• Delete the account and all associated data
• Remove any content created by that user
• Cease processing their personal information

Parental Notice: If you are a parent or guardian and believe your child under 16 has created an account or provided personal information to mateaura.com, please contact us immediately at [email protected] with the subject line "Underage User Report." We will take immediate action to delete the account and data.

Age Verification: While we require users to confirm they are at least 16 years old during registration, we rely on users' honesty. We do not use invasive age verification methods but reserve the right to request additional verification if we suspect an account belongs to an underage user.

8. AI Content and Limitations

Entertainment Purpose: All content generated by AI characters (Auras) is entirely fictional and created exclusively for entertainment and creative storytelling purposes. AI content should not be relied upon for factual information, legal advice, medical guidance, financial decisions, or professional consultation.

Content Safety: We employ robust content filtering systems and human moderation to promote a safe environment. However, AI systems may occasionally produce unexpected or inappropriate outputs despite our best efforts. We are not liable for unintended AI-generated content, but we take all reports seriously and continuously improve our filtering systems.

No Emotional Dependency: AI-generated content should not be interpreted as factual, personal, or emotional communication. The platform is designed for creative entertainment only. Users should not develop emotional dependency on AI characters or treat AI interactions as real relationships.

Reporting Inappropriate Content: If you encounter AI-generated content that violates our policies or is inappropriate, please report it immediately through our in-app reporting system. We review all reports and take appropriate action, including improving our content filters.

9. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience and analyze platform usage. Types of cookies we use:

• Essential Cookies: Required for basic platform functionality, such as maintaining your session and authentication status. These cannot be disabled.
• Analytics Cookies (Firebase Analytics): Help us understand how users interact with the platform, which features are most popular, and where improvements are needed.
• Preference Cookies: Remember your settings and preferences, such as language selection and display options.
• Advertising Cookies: Used to deliver relevant advertisements based on your interests and activity (with your consent where required by law).

Managing Cookies: You can control cookie preferences through your browser settings. Most browsers allow you to block or delete cookies. However, blocking essential cookies may affect platform functionality and your ability to use certain features.

10. International Data Transfers

Service Location: Our service is operated from Ukraine and uses cloud infrastructure that may be located in various countries. By using our platform, you consent to the transfer and processing of your information outside your country of residence, including to jurisdictions that may have different data protection laws than your home country.

Data Protection Standards: When transferring data internationally, we ensure appropriate safeguards are in place to protect your information:

• Contractual protections with service providers
• Compliance with GDPR requirements for international transfers (where applicable)
• Use of secure, encrypted data transmission
• Regular security assessments of international service providers

GDPR Compliance: We strive to comply with the General Data Protection Regulation (GDPR) when processing personal data of individuals in the European Economic Area and United Kingdom. We process personal data lawfully, fairly, and transparently, ensuring appropriate legal bases for all processing activities.

11. Third-Party Services and Links

External Links: Our platform may contain links to third-party websites, services, or resources. We are not responsible for the privacy practices, content, or terms of service of any third-party sites. When you leave our platform, we encourage you to review the privacy policy of every website you visit.

Third-Party Services We Use:

• Google Firebase: Analytics and crash reporting ( Privacy Policy)
• Apple App Store: Payment processing for iOS ( Privacy Policy)
• Google Play Store: Payment processing for Android ( Privacy Policy)

These services have their own privacy policies and data practices. We recommend reviewing their policies to understand how they handle your information.

12. Data Breach Notification

In the unlikely event of a data breach that affects your personal information, we will:

• Notify affected users within 72 hours of becoming aware of the breach (or as required by applicable law)
• Provide details about what information was affected
• Explain the steps we are taking to address the breach
• Recommend actions you can take to protect yourself
• Notify relevant data protection authorities as required by law

We maintain incident response procedures and conduct regular security assessments to minimize the risk of data breaches.

13. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, services, legal requirements, or operational needs. When we make changes, we will:

• Update the "Effective Date" at the top of this policy
• Notify you of significant changes through the platform, email, or in-app notification
• Provide a summary of key changes when applicable

Your Acceptance: Continued use of the platform after changes to this Privacy Policy constitutes your acceptance of the updated terms. If you do not agree with the changes, please discontinue using the platform and contact us to delete your account.

We encourage you to review this Privacy Policy regularly to stay informed about how we protect your information.

14. No Sale of Personal Data

We do NOT sell your personal data to third parties. This includes:

• Your conversation history with AI characters
• Personal messages and interactions
• Detailed user profiles or behavior patterns
• Contact information or account details

All data is used strictly for service delivery, platform improvement, content safety, and analytics. We may share anonymized, aggregated data that cannot identify individual users for research or industry analysis purposes.

California Residents: Under the California Consumer Privacy Act (CCPA), you have the right to opt-out of the sale of personal information. Since we do not sell personal information, this opt-out does not apply to our practices.

15. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

• Email: [email protected]

Response Time: We aim to respond to all privacy-related inquiries within 30 days (or as required by applicable law).

For urgent privacy concerns or data breach reports: Please mark your email with "URGENT - Privacy Issue" in the subject line for priority handling.