Privacy Policy

1. Introduction

The AI Equalizer LLC ("we," "us," or "our") operates PeriPause, a perimenopause symptom tracking application. This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you use our Service.

We are committed to protecting your privacy and handling your data transparently. By using PeriPause, you agree to the collection and use of information in accordance with this policy.

Your health information is private and sensitive. We implement strict security measures and only use your data as described in this policy.

2. Information We Collect

2.1 Information You Provide

Account Information:

• Email address
• Name
• Password (encrypted)

Health Information:

• Symptom logs (mood, energy, sleep quality, hot flashes, etc.)
• Period tracking data
• Weekly health reviews
• Lifestyle factors (caffeine, alcohol intake)
• Symptom triggers
• Notes and journal entries
• Treatment information (HRT, supplements, medications)

Profile Information:

• Age
• Weight (optional)
• Health goals and tracking preferences
• Baseline symptom assessments

2.2 Information Collected Automatically

Usage Data:

• Device information (browser type, operating system)
• IP address
• Pages visited and features used
• Time and date of access
• Session duration

Cookies and Tracking:

We use cookies and similar tracking technologies to enhance your experience. See our Cookie Policy for details.

2.3 Payment Information

Payment processing is handled by Stripe. We do not store your full credit card information. We receive only:

• Last 4 digits of your card
• Card brand (Visa, Mastercard, etc.)
• Subscription status
• Stripe customer ID

3. How We Use Your Information

We use your information for the following purposes:

3.1 To Provide and Improve the Service

• Create and manage your account
• Track and analyze your symptoms and patterns
• Generate AI-powered insights and recommendations
• Calculate readiness scores
• Send personalized daily guidance
• Provide chat support through our AI assistant

3.2 Communication

• Send account verification emails
• Process password reset requests
• Send subscription and payment notifications
• Deliver check-in reminders
• Notify you of pattern detections and insights
• Respond to your support requests

3.3 Analytics and Research

• Analyze aggregated, anonymized data to improve our algorithms
• Understand how users interact with the Service
• Identify bugs and improve performance
• Develop new features

Note: We never share your individual health data for research purposes without your explicit consent.

3.4 Legal and Security

• Comply with legal obligations
• Protect against fraud and abuse
• Enforce our Terms and Conditions
• Respond to legal requests

4. How We Share Your Information

We respect your privacy and do not sell your personal information. We may share your information only in the following circumstances:

4.1 Service Providers

We work with trusted third-party service providers who assist in operating the Service:

• Stripe: Payment processing
• AWS: Cloud hosting and database storage
• Resend: Email delivery
• Abacus AI: AI-powered insights and chat functionality

These providers have access to your information only to perform specific tasks on our behalf and are obligated to protect your data.

4.2 Legal Requirements

We may disclose your information if required by law or in response to:

• Legal process (subpoenas, court orders)
• Government requests
• Protection of our rights or property
• Investigation of fraud or security issues

4.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the new entity. We will notify you before your information is transferred and becomes subject to a different privacy policy.

4.4 With Your Consent

We may share your information with your explicit consent, such as when you choose to share your health reports with healthcare providers.

5. Data Security

We implement industry-standard security measures to protect your information:

• Encryption: All data transmitted between your device and our servers is encrypted using TLS/SSL
• Password Protection: Passwords are hashed using bcrypt
• Secure Infrastructure: Data is stored on secure AWS servers with access controls
• Regular Security Audits: We regularly review our security practices
• Limited Access: Only authorized personnel have access to user data

While we strive to protect your information, no method of transmission over the internet is 100% secure. You use the Service at your own risk.

6. Data Retention

We retain your personal information for as long as necessary to provide the Service and fulfill the purposes outlined in this Privacy Policy. Specifically:

• Account Data: Retained while your account is active
• Health Data: Retained while your account is active and for 90 days after account deletion (unless you request immediate deletion)
• Payment Records: Retained for 7 years for tax and legal compliance
• Usage Logs: Retained for 1 year for security and analytics

You may request deletion of your data at any time by contacting us at [email protected].

7. Your Rights and Choices

You have the following rights regarding your personal information:

7.1 Access and Portability

You can access and export your data at any time through your account settings. We provide data export in JSON and CSV formats.

7.2 Correction

You can update or correct your information through your account settings or by contacting us.

7.3 Deletion

You may request deletion of your account and data at any time. Please note that some information may be retained for legal or security purposes.

7.4 Communication Preferences

You can manage email notification preferences in your account settings. You cannot opt out of essential service communications (account verification, password resets).

7.5 Cookie Management

You can manage cookie preferences through our cookie consent banner or your browser settings. See our Cookie Policy for details.

8. GDPR Compliance (European Users)

If you are located in the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation (GDPR):

• Right to Access: Request a copy of your personal data
• Right to Rectification: Correct inaccurate data
• Right to Erasure: Request deletion of your data ("right to be forgotten")
• Right to Restriction: Limit how we use your data
• Right to Data Portability: Receive your data in a structured format
• Right to Object: Object to processing of your data
• Right to Withdraw Consent: Withdraw consent at any time

Legal Basis for Processing: We process your data based on:

• Consent: You have given clear consent for specific processing activities
• Contract: Processing is necessary to fulfill our service agreement with you
• Legal Obligation: Processing is required by law
• Legitimate Interests: Processing is necessary for our legitimate business interests

To exercise your GDPR rights, contact us at [email protected]. We will respond within 30 days.

9. CCPA Compliance (California Users)

If you are a California resident, you have rights under the California Consumer Privacy Act (CCPA):

• Right to Know: Request information about data collection and sharing
• Right to Delete: Request deletion of your personal information
• Right to Opt-Out: Opt out of the sale of personal information (note: we do not sell your data)
• Right to Non-Discrimination: Equal service regardless of privacy choices

To exercise your CCPA rights, contact us at [email protected].

10. Children's Privacy

PeriPause is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

11. International Data Transfers

Your information may be transferred to and processed in the United States or other countries where our service providers operate. These countries may have different data protection laws than your country of residence.

By using PeriPause, you consent to the transfer of your information to the United States and other countries. We ensure appropriate safeguards are in place to protect your data during international transfers.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we make changes, we will:

• Update the "Last Updated" date at the top
• Notify you via email or through the Service
• For material changes, require your explicit consent

Your continued use of the Service after changes take effect constitutes acceptance of the updated Privacy Policy.

13. Contact Us

If you have any questions about this Privacy Policy or how we handle your data, please contact us: