Privacy Policy

Last updated: April 2026

Anjo is an AI companion. We collect and use data to make the companion work. This policy explains exactly what we collect, why, and what control you have over it.

What we collect

• Account data — username, email address, hashed password. We never store your plain-text password.
• Conversation data — the messages you send and receive. These are stored on our servers and used to display your chat history, build memory, and generate personality embeddings.
• Usage data — daily message counts and subscription status, used to enforce tier limits.
• Billing data — payment is processed by FastSpring. We store only your FastSpring account ID and subscription status. We never see or store your card details. FastSpring's privacy policy governs their handling of payment data.
• Device data — IP address, browser type, and device identifiers for security and fraud prevention.

What we do not collect

• We do not sell your personal data to third parties.
• We never use your conversations for advertising or to train third-party AI models.
• We do not run ads or share conversation data with advertisers.
• By default, no human can read your conversation history — it is only accessed by automated systems for memory retrieval and response generation.
• In rare cases (e.g., technical troubleshooting with your explicit permission), authorized staff may access conversation data to resolve issues. This access is logged and limited to senior engineers.

How we use your data

• To generate responses through our AI provider (Anthropic). Your messages are sent to Anthropic's API to produce replies. Anthropic's privacy policy governs their handling of API data.
• To build persistent memory — summaries and embeddings of your conversations are stored locally and retrieved to give Anjo context in future sessions.
• To maintain your account and subscription.
• To send transactional emails (email verification, password reset). We use Resend for email delivery.

Data storage

Your data is stored on servers in the US. Conversation messages are stored in a database on our servers and are visible to you in the chat. Memory embeddings and session summaries are also stored in a vector database (ChromaDB) per user. Account data, subscription status, and usage metrics are stored in a database on our servers.

Your rights

• Forget me — from inside the app, you can ask Anjo to erase your conversation history and memory at any time. This is negotiated with Anjo and processed immediately.
• Delete account — you can permanently delete your account and all associated data from the app settings. This is irreversible.
• Data export — to request a copy of your data, email us at kevin@anjo.love.

Your rights (GDPR & CCPA)

If you are in the EU, UK, or California, you have additional legal rights:

• Right to access — request a copy of all personal data we hold about you
• Right to correction — request correction of inaccurate personal data
• Right to deletion — request erasure of your personal data ("right to be forgotten")
• Right to data portability — request your data in a machine-readable format
• Right to object — object to processing based on legitimate interests
• Right to restrict processing — request limitation on how we process your data
• CCPA (California) — request disclosure of categories of data collected, request deletion, and opt-out of "sale" of personal data

To exercise any of these rights, email kevin@anjo.love. We will respond within 30 days.

Cookies

We use a single authentication cookie (anjo_auth) to keep you signed in. This is a strictly necessary cookie for the service to function. We do not use tracking cookies, advertising cookies, or analytics cookies.

By using Anjo, you consent to this essential cookie. You can delete it by logging out, which will clear your session.

Data retention

• Active accounts — your data is retained as long as your account is active
• Deleted accounts — all personal data is permanently deleted within 30 days of account deletion
• Conversation history — stored until you delete it or request "forget me"
• Financial records — retained for minimum 7 years for tax and legal compliance

Data security

We implement industry-standard security measures including encryption, access controls, and regular security reviews. Passwords are hashed using bcrypt. Session tokens are HMAC-signed with secure secrets.

Third-party services

Anjo uses the following third-party services to operate:

• Anthropic — AI language model for generating responses. Your messages are sent to Anthropic's API for processing. Anthropic Privacy Policy
• FastSpring — payment processing. FastSpring Privacy Policy
• Resend — email delivery for transactional emails. Resend Privacy Policy
• AWS — hosting and infrastructure. Data is stored in US-based data centers.

Adult audience

Anjo is intended for adults (18+) only. We do not knowingly collect data from minors. If you believe a minor has created an account, contact us at kevin@anjo.love.

Changes to this policy

We may update this policy. Material changes will be communicated by email if you have one on file. Continued use of Anjo after changes constitutes acceptance.

Contact

Questions? Email us at kevin@anjo.love.