SELF Privacy Policy
Last Updated: November 13, 2025
Version: 7.0
🔒 Our Privacy Promise: We Cannot See Your Data
SELF uses zero-knowledge encryption. This means we mathematically CANNOT access your data:
- ❌ We CANNOT see your AI conversations
- ❌ We CANNOT see your memory bank entries
- ❌ We CANNOT see your messages or any content
- ❌ We CANNOT decrypt your data (we don't have the keys)
- ❌ We CANNOT help recover lost 12-word phrases
Your data is encrypted in YOUR browser using your 12-word secret phrase before it ever leaves your device. We store encrypted blobs that only YOU can decrypt. Not us, not hackers, not governments - only you.
<h2 className="text-lg font-semibold mb-3 text-gray-900 dark:text-white">Our Six Privacy Commitments</h2>
<p className="mb-4 text-gray-700 dark:text-gray-300">SELF is built on six fundamental commitments to privacy and data sovereignty:</p>
<ul className="mb-4 space-y-2 pl-4">
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Human rights alignment</strong> - We make decisions that are in accordance with human rights</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Harm prevention</strong> - We do not cause or enable harm whilst upholding those rights</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Data ownership</strong> - We enable people to have control and ownership of their own data, and decide how it is used</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Transparency</strong> - We are fully transparent in our practices so that people understand how we operate</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Regulatory compliance</strong> - We uphold regulation and legislation in whatever territories we operate</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">No commercial compromise</strong> - We do not sacrifice any of our responsibilities in pursuing commercial gain</li>
</ul>
<h2 className="text-lg font-semibold mb-3 text-gray-900 dark:text-white">Data Minimization</h2>
<p className="mb-4 text-gray-700 dark:text-gray-300">We adhere to the principle of data minimization, collecting only the personal data that is necessary for the specific purposes outlined in this policy. We regularly review our data collection practices to ensure continued compliance with privacy regulations.</p>
<h2 className="text-lg font-semibold mb-3 text-gray-900 dark:text-white">The SELF Difference</h2>
<p className="mb-4 text-gray-700 dark:text-gray-300">Unlike traditional apps that vacuum up your data, SELF operates on a fundamentally different model:</p>
<ul className="mb-4 space-y-2 pl-4">
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Zero-knowledge encryption</strong> = Server cannot access your data</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Your 12-word phrase</strong> = Your encryption keys (only you have access)</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Your data</strong> = Your property (client-side encrypted)</li>
</ul>
<h2 className="text-lg font-semibold mb-3 text-gray-900 dark:text-white">What We Collect</h2>
<h3 className="text-base font-semibold mb-2 text-gray-800 dark:text-gray-200">Account Information</h3>
<ul className="mb-4 space-y-2 pl-4">
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Email address</strong> - To create and verify your account</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Username</strong> - Your chosen identifier</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Node ID</strong> - Technical identifier for your infrastructure</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Account creation date</strong> - For account management</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Usage volumes</strong> - Stored temporarily for display purposes only, not permanently retained</li>
</ul>
<p className="mb-4 text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Legal Basis</strong>: Contract performance (necessary to provide SELF services)</p>
<h3 className="text-base font-semibold mb-2 text-gray-800 dark:text-gray-200">Authentication Information</h3>
<ul className="mb-4 space-y-2 pl-4">
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Passkey credentials</strong> - SELF uses Passkey (WebAuthn/FIDO2) authentication for secure, passwordless access</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Biometric authentication</strong> - Your device's biometric authentication (fingerprint, face recognition, etc.) is used locally and never transmitted</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">No passwords stored</strong> - We do not store passwords. Passkeys use cryptographic keys stored securely on your device</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Device-based security</strong> - Passkeys are tied to your device and cannot be phished or stolen like passwords</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Public key data</strong> - We store only public key information necessary for authentication verification (not your private keys)</li>
</ul>
<p className="mb-4 text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Legal Basis</strong>: Contract performance (necessary for secure account access)</p>
<h3 className="text-base font-semibold mb-2 text-gray-800 dark:text-gray-200">Payment Information (Paid Tiers Only)</h3>
<ul className="mb-4 space-y-2 pl-4">
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Billing information</strong> - Processed by Stripe, our secure payment provider</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Subscription status</strong> - Active, cancelled, expired</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Transaction records</strong> - For billing support and compliance</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Fraud prevention</strong> - Stripe Radar analyzes transaction patterns for security</li>
</ul>
<p className="mb-4 text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Important</strong>: We never store your credit card details or IP addresses. Payment processing is handled entirely by Stripe's certified infrastructure.</p>
<p className="mb-4 text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Legal Basis</strong>: Contract performance (billing and subscription management)</p>
<h3 className="text-base font-semibold mb-2 text-gray-800 dark:text-gray-200">Technical Coordination Data</h3>
<ul className="mb-4 space-y-2 pl-4">
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Node connection status</strong> - To ensure your services are running</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Basic performance metrics</strong> - Anonymous server health data only</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Error logs</strong> - Anonymous debugging information (no personal content)</li>
</ul>
<p className="mb-4 text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Legal Basis</strong>: Legitimate interests (service optimization and security)</p>
<h2 className="text-lg font-semibold mb-3 text-gray-900 dark:text-white">What We DON'T Collect</h2>
<h3 className="text-base font-semibold mb-2 text-gray-800 dark:text-gray-200">Your Personal Content</h3>
<ul className="mb-4 space-y-2 pl-4">
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Files and documents</strong> - Encrypted client-side, server cannot decrypt</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Messages and conversations</strong> - Client-side E2E encryption using your 12-word phrase. Server stores encrypted blobs only.</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Encryption keys</strong> - Your 12-word phrase never leaves your device. Server never sees your encryption keys.</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Browsing history</strong> - Never sent to us</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Location data</strong> - We don't track where you are</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Device information</strong> - Beyond basic compatibility checks</li>
</ul>
<h3 className="text-base font-semibold mb-2 text-gray-800 dark:text-gray-200">AI Model Processing</h3>
<ul className="mb-4 space-y-2 pl-4">
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Model outputs</strong> - Stay within your Memory Bank, never sent to us</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Conversation content</strong> - Processed by Ollama AI models running in isolated personal containers on EU-based infrastructure. No third parties have access to your AI interactions.</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Container isolation</strong> - Each user has dedicated isolated containers ensuring complete privacy and data separation</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">No data sharing with model providers</strong> - Your conversations and AI interactions are processed entirely within your isolated container. Model providers (Ollama, Meta, or any model creators) never receive your data, conversations, or AI interactions. Your data does not go back to model providers.</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">No model training</strong> - We do not use your conversations to train models, and model providers do not receive your data for training purposes. Your AI usage is completely private to you.</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">AI responses</strong> - Generated within your isolated container infrastructure, never transmitted to our servers or third parties</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">EU data residency</strong> - All AI processing occurs exclusively in EU data centers for GDPR compliance</li>
</ul>
<h3 className="text-base font-semibold mb-2 text-gray-800 dark:text-gray-200">Behavioral Analytics</h3>
<ul className="mb-4 space-y-2 pl-4">
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Usage patterns</strong> - We don't analyze how you use SELF</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Feature adoption</strong> - We don't track which features you use</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Time spent</strong> - We don't measure your activity</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Click tracking</strong> - No behavioral analytics</li>
</ul>
<h3 className="text-base font-semibold mb-2 text-gray-800 dark:text-gray-200">Advertising Data</h3>
<ul className="mb-4 space-y-2 pl-4">
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Profile building</strong> - We don't create user profiles for advertisers</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Interest tracking</strong> - We don't categorize your interests for advertisers</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Third-party data</strong> - We don't buy or sell data about you or with anyone</li>
</ul>
<h2 className="text-lg font-semibold mb-3 text-gray-900 dark:text-white">Your Rights and Controls</h2>
<h3 className="text-base font-semibold mb-2 text-gray-800 dark:text-gray-200">Access and Control</h3>
<ul className="mb-4 space-y-2 pl-4">
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">View your data</strong> - See exactly what account information we have</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Correct errors</strong> - Update your email, username, or billing details</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Export data</strong> - Download your account information</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Delete account</strong> - Remove all your data from our systems</li>
</ul>
<h3 className="text-base font-semibold mb-2 text-gray-800 dark:text-gray-200">Data Portability</h3>
<ul className="mb-4 space-y-2 pl-4">
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Account export</strong> - Download your account data in standard formats</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Service migration</strong> - Move to other providers if desired</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">No lock-in</strong> - Your infrastructure remains yours</li>
</ul>
<h2 className="text-lg font-semibold mb-3 text-gray-900 dark:text-white">Data Breach Response</h2>
<p className="mb-4 text-gray-700 dark:text-gray-300">In the unlikely event of a data breach that poses risks to your privacy, we will notify you and relevant authorities within 72 hours of becoming aware of the breach, as required by GDPR. Our incident response procedures ensure rapid containment and assessment of any security issues.</p>
<h2 className="text-lg font-semibold mb-3 text-gray-900 dark:text-white">Data Protection Officer</h2>
<p className="mb-4 text-gray-700 dark:text-gray-300">As we do not conduct large-scale monitoring or process special categories of data at scale, we are not required to appoint a Data Protection Officer under GDPR. For data protection inquiries, contact: privacy@self.app</p>
<h2 className="text-lg font-semibold mb-3 text-gray-900 dark:text-white">Automated Decision-Making</h2>
<p className="mb-4 text-gray-700 dark:text-gray-300">We do not use automated decision-making or profiling that would significantly affect you. Any automated processes (such as fraud detection by Stripe Radar) are limited to security purposes and do not impact your access to SELF services. You retain full control over your account and data.</p>
<h2 className="text-lg font-semibold mb-3 text-gray-900 dark:text-white">Contact Us About Privacy</h2>
<p className="mb-4 text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Privacy Questions</strong>: privacy@self.app</p>
<p className="mb-4 text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Data Requests</strong>: legal@self.app</p>
<p className="mb-4 text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Mail</strong>: SELF Technology Pty Ltd, 194 Varsity Parade, Varsity Lakes, Queensland 4227, Australia</p>
<h2 className="text-lg font-semibold mb-3 text-gray-900 dark:text-white">Third-Party Data Processing</h2>
<p className="mb-4 text-gray-700 dark:text-gray-300">SELF uses several third-party services for infrastructure and payments. Here's how your data is processed:</p>
<h3 className="text-base font-semibold mb-2 text-gray-800 dark:text-gray-200">Memory Bank Definition</h3>
<p className="mb-4 text-gray-700 dark:text-gray-300">Your Memory Bank uses client-side end-to-end encryption for all tiers. Both tiers use EU data residency on PostgreSQL and isolate each user's data. All data is encrypted client-side before transmission:</p>
<ul className="mb-4 space-y-2 pl-4">
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Both Tiers</strong> – Data is encrypted client-side in your browser using WebCrypto API (AES-256-GCM) with keys derived from your 12-word phrase before transmission to PostgreSQL. Server stores encrypted blobs and cannot decrypt your data. This provides zero-knowledge security with seamless cross-device access using your 12-word phrase.</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Data Export</strong> – Both tiers can export their complete decrypted data anytime via Settings (requires your 12-word phrase). Your conversations and memories are decrypted in your browser and available for download in JSON format.</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Recovery Phrase</strong> – Your 12-word secret phrase is the ONLY way to decrypt your data. If you lose this phrase, your data cannot be recovered. SELF cannot help you recover a lost phrase due to zero-knowledge architecture.</li>
</ul>
<h3 className="text-base font-semibold mb-2 text-gray-800 dark:text-gray-200">Data Processing Summary</h3>
<ul className="mb-4 space-y-2 pl-4">
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Cloudflare Pages</strong> - Hosts our frontend application (SOC 2, GDPR compliant)</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Railway</strong> - Hosts our backend API, stores your account data, and provides Memory Bank storage via PostgreSQL (SOC 2 Type II, SOC 3, GDPR compliant, EU data residency)</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">RunPod</strong> - Provides isolated container infrastructure in EU data centers for AI processing. RunPod operates as infrastructure provider only and has no access to your AI interactions or data.</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Stripe</strong> - Processes payments securely (PCI compliant, no card data stored by us)</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Search services</strong> - Zero tier uses SearXNG (privacy-focused meta-search); Connect tier uses Brave Search API. Providers may change and this policy will be updated accordingly.</li>
</ul>
<h3 className="text-base font-semibold mb-2 text-gray-800 dark:text-gray-200">RunPod AI Infrastructure</h3>
<p className="mb-4 text-gray-700 dark:text-gray-300">SELF uses RunPod to provide isolated personal container infrastructure for AI processing in EU data centers. This ensures complete privacy and GDPR compliance:</p>
<ul className="mb-4 space-y-2 pl-4">
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Isolated containers</strong> - Each user receives dedicated isolated containers running Ollama AI models. No shared infrastructure for AI processing.</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">EU data residency</strong> - All AI processing occurs exclusively in EU data centers, ensuring GDPR compliance and no international data transfers</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">No data sharing with model providers</strong> - Your AI interactions are processed entirely within your isolated container. Model providers (Ollama, Meta, or any model creators) never receive your data, conversations, or AI interactions. Your data does not go back to model providers.</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">No model training</strong> - We do not use your conversations to train models, and model providers do not receive your data for training purposes. Your AI usage is completely private to you.</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Infrastructure provider role</strong> - RunPod provides container infrastructure only. They cannot access your AI data, conversations, or model outputs.</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Container lifecycle</strong> - Containers are automatically provisioned and isolated. When your account is deactivated, all container data is permanently deleted.</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Data sovereignty</strong> - Your AI conversations and model outputs remain within your isolated container infrastructure in EU data centers</li>
</ul>
<p className="mb-4 text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Legal Basis</strong>: Contract performance (necessary to provide AI processing services with EU data residency requirements)</p>
<h3 className="text-base font-semibold mb-2 text-gray-800 dark:text-gray-200">Data Sovereignty</h3>
<ul className="mb-4 space-y-2 pl-4">
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Both Tiers</strong> - Memory Bank using client-side E2E encryption. Server stores encrypted blobs in PostgreSQL and cannot decrypt your data. This provides zero-knowledge security with seamless cross-device access using your 12-word phrase.</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Memory Bank data</strong> - All Memory Bank data is stored encrypted in PostgreSQL with EU data residency and automatically deleted when your account is deactivated</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Account data</strong> - Email, subscription status, and usage metrics are stored securely on PostgreSQL</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Payment data</strong> - Stripe handles all payment processing; we don't store card information</li>
</ul>
<h3 className="text-base font-semibold mb-2 text-gray-800 dark:text-gray-200">Data Export and Recovery</h3>
<ul className="mb-4 space-y-2 pl-4">
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Both Tiers</strong> – You can export your complete decrypted data anytime via Settings (requires your 12-word phrase). Your conversations and memories are decrypted in your browser and available for download in JSON format.</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Data Recovery</strong> – Your 12-word secret phrase is required to decrypt and recover your data. Both tiers use client-side E2E encryption. Lost phrase = permanent data loss (zero-knowledge means SELF cannot recover your data).</li>
</ul>
<h3 className="text-base font-semibold mb-2 text-gray-800 dark:text-gray-200">Cloud Infrastructure Data</h3>
<ul className="mb-4 space-y-2 pl-4">
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Memory Bank identifiers</strong> - Technical identifiers for your isolated Memory Bank</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Session metadata</strong> - Anonymous usage patterns for service optimization</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Performance metrics</strong> - Response times and system health (no personal content)</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Error logs</strong> - Anonymous debugging information for service improvement</li>
</ul>
<h2 className="text-lg font-semibold mb-3 text-gray-900 dark:text-white">Search Services</h2>
<h3 className="text-base font-semibold mb-2 text-gray-800 dark:text-gray-200">Web Search Integration</h3>
<p className="mb-4 text-gray-700 dark:text-gray-300">SELF integrates with third-party search services to provide web search functionality. When you enable the search toggle in chat, your queries are sent to the configured provider based on your tier (basic search for Zero; advanced search for Connect).</p>
<ul className="mb-4 space-y-2 pl-4">
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Service type</strong> - Third-party search providers</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Data processing</strong> - Your search queries are transmitted to the provider to retrieve results</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Tier differences</strong> - Zero tier uses SearXNG (basic search). Connect tier uses Brave Search API (advanced search)</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Result accuracy</strong> - Search results are provided "as-is" from third-party sources; we do not verify or guarantee their accuracy</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Availability</strong> - Both SELF Zero and Connect users have access to web search functionality</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">No retention</strong> - Search queries are not stored in your Memory Bank or our systems</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Content filtering</strong> - Zero tier uses moderate content filtering. Connect tier uses no content filtering by default</li>
</ul>
<h3 className="text-base font-semibold mb-2 text-gray-800 dark:text-gray-200">Search Service Disclaimers</h3>
<ul className="mb-4 space-y-2 pl-4">
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Third-party content</strong> - All search results come from external sources beyond our control</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">No endorsement</strong> - SELF does not endorse or verify the accuracy of search results</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">User responsibility</strong> - You are responsible for evaluating the credibility and accuracy of information from search services</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Service availability</strong> - Search services depend on third-party availability and may be temporarily unavailable</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">No liability</strong> - We are not liable for decisions made based on search results</li>
</ul>
<h2 className="text-lg font-semibold mb-3 text-gray-900 dark:text-white">International Data Transfers</h2>
<ul className="mb-4 space-y-2 pl-4">
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Primary location</strong> - Australia (SELF Technology Pty Ltd)</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">AI processing</strong> - RunPod isolated containers in EU data centers only. No international transfers for AI processing data.</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Backend API hosting and Memory Bank storage</strong> - PostgreSQL (EU data residency for Memory Bank, GDPR compliant)</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Payment processing</strong> - Stripe (US-based payment processor)</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Legal framework</strong> - Australian Privacy Principles with GDPR-equivalent protections</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Transfer mechanisms</strong> - We rely on Standard Contractual Clauses (SCCs) approved by the European Commission for transfers to Stripe. PostgreSQL Memory Bank storage maintains EU data residency with no international transfers.</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">RunPod compliance</strong> - RunPod operates isolated container infrastructure in EU data centers with GDPR-compliant data residency</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Railway compliance</strong> - Railway maintains SOC 2 Type II, SOC 3, HIPAA BAA (available), and GDPR compliance. For more information, visit <a href="https://docs.railway.com/maturity/compliance#privacy" target="_blank" className="text-blue-600 hover:text-blue-800 underline">Railway Compliance Documentation</a></li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">AI data sovereignty</strong> - All AI processing data remains in EU data centers with no international transfers</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Additional safeguards</strong> - All transfers include appropriate technical and organizational measures for data protection</li>
</ul>
<h2 className="text-lg font-semibold mb-3 text-gray-900 dark:text-white">Changes to This Policy</h2>
<h3 className="text-base font-semibold mb-2 text-gray-800 dark:text-gray-200">Notification Process</h3>
<ul className="mb-4 space-y-2 pl-4">
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">30 days advance notice</strong> for any material changes</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Email notification</strong> to all active users</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Clear explanation</strong> of what's changing and why</li>
</ul>
<h3 className="text-base font-semibold mb-2 text-gray-800 dark:text-gray-200">Our Commitments</h3>
<p className="mb-4 text-gray-700 dark:text-gray-300">We will never change this policy to:</p>
<ul className="mb-4 space-y-2 pl-4">
<li className="text-gray-700 dark:text-gray-300">Start collecting data we previously didn't collect</li>
<li className="text-gray-700 dark:text-gray-300">Share data in ways we previously didn't</li>
<li className="text-gray-700 dark:text-gray-300">Reduce your privacy protections</li>
<li className="text-gray-700 dark:text-gray-300">Introduce tracking or advertising</li>
</ul>
<h2 className="text-lg font-semibold mb-3 text-gray-900 dark:text-white">Data Retention Periods</h2>
<p className="mb-4 text-gray-700 dark:text-gray-300">We retain different types of data for specific periods based on legal requirements and service needs:</p>
<ul className="mb-4 space-y-2 pl-4">
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Account information</strong> - Retained while your account is active and for 30 days after deletion</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Payment data</strong> - Retained by Stripe for 7 years (legal requirement for financial records)</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Secure vault/AI data</strong> - Trial users: automatically deleted 24 hours after trial cancellation with advance email notice. Paid users: automatically deleted when subscription is deactivated</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Usage logs</strong> - Retained for 30 days for debugging and service optimization</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Support communications</strong> - Retained for 2 years for service improvement and legal compliance</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Marketing communications</strong> - Retained until you withdraw consent or for 3 years if no engagement</li>
</ul>
<h3 className="text-base font-semibold mb-2 text-gray-800 dark:text-gray-200">Trial Data Deletion Process</h3>
<p className="mb-4 text-gray-700 dark:text-gray-300">For trial users who don't convert to paid subscriptions, we follow a clear deletion process to maintain storage efficiency while protecting your privacy:</p>
<ul className="mb-4 space-y-2 pl-4">
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Trial warning</strong> - Email notification 3 days before trial ends with upgrade options</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Cancellation notice</strong> - Email notification when trial is cancelled with 24-hour deletion schedule</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Grace period</strong> - 24 hours to export your conversations and memories via Settings</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Automatic deletion</strong> - Memory Bank data permanently deleted 24 hours after trial cancellation</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Deletion confirmation</strong> - Email confirmation when deletion is complete</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Audit trail</strong> - Deletion events logged for compliance and transparency</li>
</ul>
<p className="mb-4 text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Legal Basis</strong>: Legitimate interests (cost management and storage efficiency) balanced with user rights (advance notice and data export opportunities)</p>
<h2 className="text-lg font-semibold mb-3 text-gray-900 dark:text-white">Age Requirements and Children's Privacy</h2>
<p className="mb-4 text-gray-700 dark:text-gray-300">SELF is intended for users aged 13 and above, though some countries may have different minimum age requirements. We defer to local laws and regulations in your jurisdiction. We do not knowingly collect personal data from children under the applicable age limits.</p>
<p className="mb-4 text-gray-700 dark:text-gray-300">If we discover we have collected information from a child under the minimum age requirements, we will delete it immediately and, where possible, notify the child's parent or guardian.</p>
<p className="mb-4 text-gray-700 dark:text-gray-300">If you are a parent or guardian and believe your child has provided us with personal information, please contact us at privacy@self.app.</p>
<h2 className="text-lg font-semibold mb-3 text-gray-900 dark:text-white">Regulatory Information</h2>
<h3 className="text-base font-semibold mb-2 text-gray-800 dark:text-gray-200">Australian Privacy Principles</h3>
<p className="mb-4 text-gray-700 dark:text-gray-300">This policy complies with the Privacy Act 1988 (Cth) and Australian Privacy Principles.</p>
<h3 className="text-base font-semibold mb-2 text-gray-800 dark:text-gray-200">GDPR Compliance</h3>
<p className="mb-4 text-gray-700 dark:text-gray-300">For users in the EU, we provide equivalent protections under the General Data Protection Regulation.</p>
<h3 className="text-base font-semibold mb-2 text-gray-800 dark:text-gray-200">Data Protection Rights</h3>
<p className="mb-4 text-gray-700 dark:text-gray-300">You have the right to:</p>
<ul className="mb-4 space-y-2 pl-4">
<li className="text-gray-700 dark:text-gray-300">Be informed about data processing</li>
<li className="text-gray-700 dark:text-gray-300">Access your personal data</li>
<li className="text-gray-700 dark:text-gray-300">Rectify inaccurate data</li>
<li className="text-gray-700 dark:text-gray-300">Erase your data</li>
<li className="text-gray-700 dark:text-gray-300">Restrict processing</li>
<li className="text-gray-700 dark:text-gray-300">Data portability</li>
<li className="text-gray-700 dark:text-gray-300">Object to processing</li>
</ul>
<h3 className="text-base font-semibold mb-2 text-gray-800 dark:text-gray-200">Exercising Your Rights with Third-Party Data</h3>
<p className="mb-4 text-gray-700 dark:text-gray-300">For data processed by our cloud infrastructure, Stripe, and AI services:</p>
<ul className="mb-4 space-y-2 pl-4">
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Access requests</strong> - Contact us at legal@self.app to access your data</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Deletion requests</strong> - Your Memory Bank data is automatically deleted when your subscription is deactivated</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Portability</strong> - We can export your account data, but AI conversations remain in your Memory Bank</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Restriction</strong> - You can stop using SELF services to restrict further processing</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Objection</strong> - Contact us if you object to how your data is processed by third parties</li>
<li className="text-gray-700 dark:text-gray-300"><strong className="text-gray-900 dark:text-white">Payment data</strong> - For Stripe-related data requests, we can facilitate contact with Stripe support</li>
</ul>