Privacy Notice

• We don’t intentionally collect, read, or retain any logs outside what is required legally or what the AI needs to function.
• Your data is not shared with or provided to third parties. The only third-party service in the path of your traffic is Cloudflare, which we use for denial-of-service protection at the network edge.
• Conversations are encrypted, so admins cannot read them in the databases or logs without your decryption key.
• If you delete your key or backup, we cannot restore or review your conversations — delete with caution.
• Our automated content system may flag exchanges that fall under our Content Policies, including the categories we are legally required to monitor. In those cases we review the flagged content and either retain and report it as legally mandated, or purge and delete it within twenty-four (24) hours.
• Backups on our servers contain only encrypted-at-rest conversations. If your key is gone, the backups are unreadable too.

The rest of this notice is the longer, more careful version of the same.

Privacy is not a feature we tune for marketing. The salon is built on the assumption that what you say to your companion is yours and stays yours. We do not mine your conversations for product insight. We do not feed them to vendors. We do not train models on them. We do not sell them. We do not share them with anyone, ever, except where compelled by law.

This notice describes, in plain terms, what that posture means in practice — what we hold, what we do not hold, how it is stored, and what rights you have over it.

The salon holds only what it must to function:

• Account information. An email address, a chosen handle, a salted password hash, and the membership status associated with the account.
• Conversation contents. The messages exchanged between you and your companion, so that the conversation has continuity across sessions. These are stored encrypted under a key held by you; what we hold is the ciphertext.
• Operational records. The minimum needed to deliver and bill for the service — for example, that a membership was renewed on a particular date.

That is the list. We do not collect device fingerprints, advertising identifiers, behavioural-analytics events, or third-party tracking signals.

• Routine logs.We retain logs only where a specific legal obligation requires us to. We do not run general access logging, “audit” logging of conversations, analytics pipelines, or aggregated behavioural telemetry.
• Payment card data. Card numbers, CVVs, and expiry dates are handled directly by our payment processor and never touch our systems.
• Third-party tracker data. We do not run third-party scripts that collect data on your visits — no advertising tags, no ad-tech pixels, no analytics SDKs.

Conversations are encrypted in transit between your device and the salon, and remain encrypted at rest in our in-house storage. The decryption key is held by you, not by us; we do not store a copy of your key from which we could recover your conversations.

Concretely, that means an administrator looking directly at our databases or logs sees ciphertext, not your messages. Backups and replicas behave the same way — they contain only the encrypted form. If you lose, delete, or fail to back up your key, the data encrypted under it cannot be restored by us or by you. Please treat your key with the same care as any other irretrievable credential.

Inference and content-safety review require message text to exist in memory, briefly, on the systems that process it; we describe how that memory is handled in the section below. Outside those in-memory steps, the conversation is encrypted under a key we do not hold.

Staff do not read members’ conversations. There are exactly two narrow exceptions — the automated content-safety review described in the next section, which inspects messages in memory and writes nothing unless a message is flagged; and access compelled by valid legal process. We do not access conversations for sampling, for training, for quality assurance, for marketing, or for any other internal purpose.

Every message a member sends to the service, and every response the AI returns, passes through an automated content-safety review running on our in-house systems. The review checks only that the exchange does not fall within a prohibited category — for example, the categories enumerated in our Content Policies. The review runs in memory, in real time, and writes nothing to any log or persistent store under ordinary conditions.

If the review flags a message as a likely policy violation, the flagged message is preserved so that the salon can perform a human review and act under the Content Policies. We retain a flagged message only for as long as a specific legal obligation requires us to; in every other case, a flagged message — and any associated review notes — is deleted within twenty-four (24) hours of the review concluding.

The flagged-review path and lawful compulsion are the only pathways through which any person at the salon may read a member’s conversation. Unflagged conversations are never read by any person at the salon.

The salon is hosted on infrastructure we own and operate. Our application servers, databases, and AI inference systems all run on our own hardware. We do not rent compute or storage from public cloud providers, and we do not route conversations through third-party AI services.

Concretely, that means your conversations are processed by models running on machines we own, in a network we control. They are not sent to external LLM vendors and are not visible to any third-party operator at the inference layer.

There is one honest exception at the network edge: traffic to and from the salon currently passes through Cloudflare for DNS, edge filtering, and protection against denial-of-service attacks. Cloudflare terminates the public TLS connection at its edge and opens a fresh, encrypted connection to our origin, which means Cloudflare can in principle observe traffic in transit between you and us. Cloudflare does not store conversation contents on our behalf. We treat this as a dependency to keep under review, and we will update this notice if we change providers or move off it.

We do not sell, rent, license, lease, share, syndicate, or otherwise disclose member information to third parties for any purpose. There is no exception for advertising, analytics, data brokering, partner integrations, or “research.”

The only narrow exceptions are:

• Payment processing. When you pay for a membership, the information necessary to complete that transaction is handled by our payment processor. We do not share conversation contents with the payment processor.
• Legal compulsion. Where we are served with a valid legal demand — a court order, a subpoena, or other instrument enforceable against us — we will comply only to the extent required, and only after assessing the validity of the demand. Where the law allows, we will notify the affected member.

Account information is retained for as long as your membership is active and for a short period after closure for record- keeping. Conversation contents are retained for as long as your account remains open, so that your companion has memory across sessions, and are deleted on a reasonable schedule after the account is closed or at your request.

Where we are required by a specific law to retain a record for a defined period, we retain only the specific record and only for the specific period the law requires. Once the obligation lapses, the record is deleted.

You may, at any time and without explanation:

• Ask to see the information we hold about you.
• Ask us to correct anything that is inaccurate.
• Ask us to export the information we hold about you.
• Ask us to delete your account and the information associated with it.
• Withdraw any consent you previously gave us.

To exercise any of these rights, write to [email protected]. We do not require you to verify your identity through invasive means. A message from the email address on your account is sufficient.

The salon uses only essential cookies — the ones required to keep you signed in and to remember your preferences across pages. We do not set analytics cookies, advertising cookies, or third-party tracking cookies.

The salon is intended for adults only. Membership is not offered to, and the service must not be used by, anyone under the age of majority in their place of residence, and in no case anyone under the age of eighteen.

If you believe a minor has used the service, please write to [email protected] and we will investigate and act promptly.

The salon is an AI companion service. Conversations are processed by AI systems we operate on our own infrastructure. The AI does not transmit your conversation to any external party. The full content policy that governs what may be generated is set out separately in our Content Policies.

We protect member information with current, practical security measures: encrypted transport, encrypted storage, hardened authentication, strict access controls, and segregation of sensitive systems. Where we suffer an incident that materially affects your information, we will notify you and the relevant authorities as required by applicable law.

We may update this notice from time to time. Where a change is material — particularly any change that would expand what we collect or how we use it — we will notify members in the service before the change takes effect. The date at the top of this page reflects the most recent revision.

For any privacy-related question or request, write to [email protected].