Privacy Policy

The Service is operated by [CONFIRM: legal entity name and form, e.g., "Siempre LLC, a Massachusetts limited liability company"] ("Siempre," "we," "us," or "our"). For any privacy-related questions, contact us at support@4siempre.com.

2.1 Information you provide

• Account information: name, email address, phone number, password, profile photo, date of birth.
• Profile and timeline content: photos, videos, voice notes, text messages, location pins, links, music shares, reactions, comments, reminders, announcements, plans, itineraries, and any other content you create, upload, or share within timelines.
• Member relationships: information about people you invite to or share timelines with ("Members"), including their contact details if you provide them.
• Imported content: when you use the WhatsApp import feature, we receive an export archive (zip file) containing the messages and media you choose to import. This archive is uploaded to our cloud storage, parsed, and converted into timeline memories.
• Voice recordings: voice notes you record in chats or memories are stored in our cloud and may be transcribed to text using third-party transcription services (see Section 4).
• Purchase information: when you order Siempre jewelry or subscribe to a paid plan, we collect billing and shipping information. Payment card details are processed by our payment processor and are not stored on our servers.
• Communications: messages you send to support, feedback, and survey responses.

2.2 Information collected automatically

• Device information: device model, operating system, app version, device identifiers, language, time zone.
• Usage data: features used, screens viewed, session length, crash logs.
• Approximate location derived from your IP address. Precise location is only collected when you explicitly attach a location to a memory or message, or when you grant location permission for a specific feature.
• Push notification tokens issued by Apple Push Notification service or Firebase Cloud Messaging.
• Cookies and similar technologies in our web pages and embedded webviews for session management and limited analytics.

2.3 Information from third parties

• Authentication providers: if you sign in via Apple, Google, or another provider, we receive basic profile information (name, email, unique identifier) per the permissions you grant.
• Spotify: if you connect Spotify to share tracks, we receive limited account and listening data per Spotify's terms.

We use the information we collect to:

• provide, operate, and maintain the Service, including syncing your timelines across devices and Members;
• process jewelry orders, subscriptions, and other transactions;
• enable AI-powered features such as Sussy (our in-app assistant) to summarize, search, plan, and reason over your timeline content at your request;
• transcribe voice notes when transcription is requested or required for AI features you invoke;
• generate notifications, reminders, and announcements you have configured;
• communicate with you about service updates, security alerts, and customer support;
• detect, prevent, and respond to fraud, abuse, security incidents, and violations of our Terms of Service;
• comply with legal obligations and enforce our agreements;
• improve and develop new features, including aggregate analytics that do not identify individual users.

Siempre uses third-party services to deliver core functionality. The most significant are:

• Anthropic (Claude API) — powers the Sussy assistant. When you invoke Sussy, relevant context (recent messages, memories, plans, profile facts) is sent to Anthropic's API to generate responses. Anthropic processes this data under its commercial terms and does not retain inputs or outputs for model training when accessed via the API.
• OpenAI (Whisper) and/or AWS Transcribe — used to transcribe voice recordings into text.
• Amazon Web Services (AWS) — hosts our servers, databases, file storage (Amazon S3), and media processing (AWS MediaConvert). All user content is stored in AWS infrastructure located in the United States.
• Google Places — used to look up places and points of interest when you or Sussy create plans or itineraries.
• Apple Push Notification service / Firebase Cloud Messaging — deliver push notifications to your device.
• Stripe (or equivalent payment processor) — processes payments for jewelry and subscriptions. The processor receives payment card details directly; we receive only a token and transaction metadata.
• Sentry (or equivalent error-monitoring provider) — captures crash and error reports to help us diagnose bugs.

We require all subprocessors to handle your information in accordance with their published privacy and security commitments.

We share information only as described below:

• With other Members. Content you post to a shared timeline is visible to every Member of that timeline. Once shared, you cannot guarantee that other Members have not retained, screenshotted, or further shared the content.
• With service providers and subprocessors listed in Section 4, strictly to deliver the Service.
• For legal and safety reasons, when we believe in good faith that disclosure is required by law or to protect the rights, property, or safety of Siempre, our users, or the public.
• In connection with a business transfer (merger, acquisition, financing, reorganization, bankruptcy, or sale of assets). We will notify you and provide reasonable choices before your information becomes subject to a different privacy policy.
• With your consent.

We do not share your information with advertisers or data brokers.

We retain your information for as long as your account is active or as needed to provide the Service.

• Account data — retained until you delete your account.
• Timeline content — retained until you or another Member with permission deletes it, or until the timeline is deleted by its owner.
• Voice recordings and transcripts — retained alongside the message they belong to. Transcripts are deleted when the recording is deleted.
• Sussy chat history — retained until you clear it from the Sussy interface or delete your account.
• Imported WhatsApp archives — the original zip file is deleted from our storage after processing completes (typically within 24 hours). Resulting memories are retained in your timeline.
• Backups — retained for up to 30 days after deletion for disaster recovery purposes.
• Legal holds — we may retain information longer when required to comply with legal obligations, resolve disputes, or enforce our agreements.

Depending on where you live, you may have the right to access, correct, delete, export, object to or restrict processing, or withdraw consent. You can exercise most of these rights from within the app (Settings → Account) or by emailing support@4siempre.com. We will respond within the timeframe required by applicable law (typically 30–45 days).

Push notifications can be disabled in your device's system settings at any time. Microphone, camera, photo library, contacts, and location permissions can be revoked in your device's system settings. Revoking a permission may disable the corresponding feature.

The Service is not directed to children under 13. We do not knowingly collect personal information from children under that age. If you believe a child has provided us with personal information, contact support@4siempre.com and we will delete it.

We are based in the United States and process data on servers located in the United States. If you access the Service from outside the United States, your information will be transferred to, stored in, and processed in the United States. By using the Service, you consent to that transfer.

For users in the European Economic Area, United Kingdom, or Switzerland, we rely on Standard Contractual Clauses or other lawful transfer mechanisms where required.

If you are a California resident, you have the rights described in Section 7 plus the right to know what categories of personal information we collect, the right to opt out of any "sale" or "sharing" of personal information, and the right to non-discrimination. Siempre does not sell or share personal information as those terms are defined under the CCPA. To exercise your California rights, email support@4siempre.com.

We use industry-standard safeguards to protect your information, including TLS encryption in transit, encryption at rest for sensitive fields and stored media, hashed passwords, presigned URLs for media uploads and downloads, and role-based access controls on our infrastructure. No system is perfectly secure, however, and we cannot guarantee absolute security. If we become aware of a security incident affecting your information, we will notify you as required by law.

The Service may contain links to or integrate with third-party websites and services (including Spotify, Google Places results, and external links shared by Members). This Privacy Policy does not apply to those third parties. Review their privacy policies before providing them with your information.

We may update this Privacy Policy from time to time. If we make material changes, we will notify you through the app, by email, or by other reasonable means before the changes take effect. The "Updated" date at the top of this policy reflects the most recent revision.

If you have questions or concerns about this Privacy Policy or our practices, contact us at:

Email: support@4siempre.com
Mailing Address: [CONFIRM: business mailing address]