Privacy Policy

    Effective date: March 2026 · Last updated: March 2026

    Athenai ("we", "our", or "us") is committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your data when you use the Athenai platform (the "Service"). By using the Service, you agree to the practices described here.

    1. Information We Collect

    1.1 Account Information

    When you register, we collect your name, username, and email address. If you sign in via a third-party provider (Google or Apple), we receive the profile information that provider makes available, such as your name and profile picture.

    1.2 Usage Data

    We collect information about how you interact with the Service, including pages visited, features used, actions taken, and timestamps. This helps us improve the product and diagnose issues.

    1.3 Content You Create

    We store tasks, messages, files, calendar data, and other content you create or upload through the Service. This content is stored in our infrastructure and encrypted at rest and in transit.

    2. How We Use Your Information

    • To provide, operate, and improve the Service
    • To authenticate you and manage your account
    • To send transactional emails (e.g. email confirmation, password reset)
    • To respond to support requests and communicate with you
    • To enforce our Terms of Service and prevent abuse
    • To comply with applicable laws and regulations

    We do not use your content for advertising, profiling, or sell it to third parties.

    3. Data Storage & Encryption

    Your data is stored on infrastructure provided by Supabase (hosted on AWS us-east-1). All data is encrypted in transit using TLS 1.2+ and encrypted at rest. Message content is encrypted using AES-256-GCM with per-conversation keys.

    Athenai holds the encryption keys as part of the standard SaaS model (same as Slack, Notion, and similar platforms). This means we have the technical ability to access data stored on our servers. We do not use this access for any purpose other than operating and maintaining the Service.

    4. Third-Party Services

    We share data with the following third-party service providers solely to operate the Service:

    • Supabase — database, authentication, file storage, and real-time features
    • AWS (via Supabase) — object storage for file attachments
    • RevenueCat — subscription and billing management
    • Google / Apple — OAuth sign-in and push notification delivery

    We do not sell or rent your personal data to any third party.

    5. Data Retention

    We retain your data for as long as your account is active. If you delete your account, we will delete or anonymize your personal data within 30 days, except where we are required to retain it for legal or regulatory purposes.

    6. Your Rights

    Depending on your jurisdiction, you may have the right to:

    • Access the personal data we hold about you
    • Request correction of inaccurate data
    • Request deletion of your data ("right to be forgotten")
    • Object to or restrict certain processing activities
    • Data portability (receive your data in a machine-readable format)

    To exercise any of these rights, please contact us at support@athenaiapp.com.

    7. International Transfers

    Our primary database is hosted in the us-east-1 AWS region. If you access the Service from outside the United States, your data will be transferred to and processed in the US. By using the Service, you consent to this transfer.

    8. Security

    We implement industry-standard security measures including TLS encryption, database-level encryption at rest, Row-Level Security policies, and time-limited access tokens. However, no system is completely secure, and we cannot guarantee the absolute security of your data.

    9. Children's Privacy

    The Service is not directed to children under the age of 13. We do not knowingly collect personal information from children. If you believe we have inadvertently collected such information, please contact us and we will delete it promptly.

    10. Changes to This Policy

    We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page with a revised effective date. Continued use of the Service after changes constitutes acceptance of the updated policy.

    11. Contact Us

    If you have questions or concerns about this Privacy Policy, please contact us at support@athenaiapp.com.