Privacy Policy
Your privacy is our priority at Activated Human
Last Updated: July 6, 2026
Our Commitment at a Glance
We never sell your personal data
Your conversations with Blue are private and confidential
We employ industry-standard security measures
You maintain full control over your data
1. Introduction
Welcome to Activated Human ("we," "our," or "us"). We provide a family of AI-powered products for personal growth and connection, accessible via our website at https://www.activatedhuman.earth/ and associated applications. These include Life (our AI companion "Blue," at https://life.activatedhuman.earth/) and HeartWeave, our AI space for close relationships (at https://heartweave.app/) (collectively, the "Service").
Most of this policy applies to every Activated Human product. Because HeartWeave is a shared, multi-person space rather than a one-to-one companion, Section 9 describes the additional data practices specific to it. Where Section 9 conflicts with a general clause, Section 9 controls for HeartWeave.
We designed our products with a fundamental commitment to user privacy and ethical data handling. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service. Our guiding principle is simple: your data belongs to you.
By accessing or using our Service, you acknowledge that you have read and understood this Privacy Policy. This policy should be read in conjunction with our Terms and Conditions, which govern your use of the Service.
2. Information We Collect
We collect limited information to provide, maintain, and improve our Service. The types of information we collect depend on how you interact with Blue and which subscription tier you've selected.
2.1 Personal Data
When you register for and use our Service, we may collect:
- Account Information: Your name, email address, and account credentials.
- Profile Information: Any additional details you choose to provide to enhance your experience with Blue, such as goals, preferences, or demographic information.
- Platform Settings: User preferences and various platform settings that you can update to customize your experience.
- Payment Information: If you subscribe to a paid plan, we process payment through Stripe (a secure, SOC2-compliant processor) for web subscriptions, and through Apple or Google in-app purchase for subscriptions started in our mobile apps. We do not store your full card details.
- Communication Data: When you contact our support team, we retain those communications to assist you and improve our Service.
2.2 Conversation Data
As an AI coaching service, Blue processes and stores:
- Message Content: The text, voice messages, images, and files you share with Blue during your conversations.
- Conversation History: Your complete interaction history with Blue, which enables continuity in your coaching experience.
- Generated Memory & Insights: Information derived from analyzing your conversations to provide personalized coaching, recognize patterns, and deliver valuable insights that enhance your growth journey.
Important: We store and use conversation history and generated insights solely to create a rich, immersive, and valuable user experience. In Blue, your conversations are private: each user has a dedicated AI companion that maintains strict 1:1 confidentiality. In HeartWeave, your private room is 1:1 and confidential in the same way, while shared spaces are visible to the other members of your container by design (see Section 9). In all cases, your conversations are not used to train or improve AI systems elsewhere.
2.3 Usage Data
We automatically collect certain information when you access or use our Service:
- Device Information: Type of device, operating system, browser type and version, and other technical identifiers.
- Usage Patterns: How you interact with our Service, including features used, time spent, and frequency of access.
- Log Data: IP address, access times, pages viewed, and system activities.
2.4 Integration Data
If you use our tool integrations (Google Calendar, Todoist, and Notion are available on the Pro plan; messaging channels like Telegram, WhatsApp, and Discord are available on all plans):
- Third-Party Service Data: Information from connected services like Google Calendar, Todoist, or messaging platforms, accessed only with your explicit permission.
3. How We Use Your Information
We use your information solely for legitimate purposes that align with providing and improving our Service. We will never sell your data or use it for purposes beyond those outlined below:
Service Provision & Improvement
- Deliver personalized AI coaching
- Maintain and enhance platform functionality
- Develop new features and capabilities
- Fix bugs and optimize performance
Account Management
- Create and manage your account
- Process payments and subscriptions
- Authenticate and secure your access
- Provide customer support
Communication
- Send service notifications and updates
- Deliver requested information
- Provide check-ins and reminders
- Share insights based on your conversations
Research & Analytics
- Analyze usage patterns (anonymized)
- Measure and improve service effectiveness
- Identify trends to enhance user experience
- Develop aggregated insights
Special Note on AI Training: Your conversations with Blue are not used to train AI models or improve AI systems outside of your personal experience. Your dedicated AI companion learns from your interactions solely to serve you better.
4. Data Retention & Deletion
We retain your data only as long as necessary to provide our Service and as required by applicable laws:
4.1 Retention Periods
- Conversation History & Memory: How far back Blue draws on your history depends on your subscription tier. Free accounts have a rolling 30-day memory window. Plus and Pro accounts have persistent memory across time, so your full history stays accessible for as long as your subscription is active. Underlying conversation records are retained in our system so that your complete history is available immediately if you upgrade.
- Account Information: Maintained for the duration of your relationship with us and for a reasonable period afterward for legal and operational purposes.
- Usage Data: Typically retained for up to 24 months in identifiable form, after which it may be aggregated and anonymized.
- Account Closure (Blue): To close your Blue account, contact us and we will cancel your billing, remove any paid access, and mark the account closed. Your conversation history is preserved and the closure is reversible, so you can ask us to reopen the account, unless you request permanent deletion (below). We do not run an automatic timed-deletion queue.
4.2 Your Deletion Rights
You have options for controlling your data. How closure and deletion work differs by product, because HeartWeave is a shared space:
- Blue closure: Closing your Blue account, as described in Section 4.1, is a reversible soft close that preserves your history. It is not an automatic purge, and there is no fixed reactivation window.
- Blue permanent deletion: In accordance with data protection regulations such as GDPR, you can request permanent deletion of your personal data at any time. On such a request we permanently and irreversibly erase your conversations, memory, profile, and account identity across our data stores. This is done on request, not on a timer.
- HeartWeave: HeartWeave deletion works differently. It is available in the app, takes effect immediately and permanently for data that is yours alone, has no reactivation window, and shared-space contributions are anonymized rather than destroyed. See Section 9.4.
- Shared sign-in: Your Activated Human sign-in works across our products, so closing or deleting one product's data does not by itself remove that shared sign-in. To remove your shared sign-in entirely, contact us at [email protected].
Following permanent deletion, anonymized usage data that can no longer be linked to you may be retained for analytical purposes.
5. Data Protection & Security
The security of your data is fundamental to our Service. We implement comprehensive safeguards to protect your information:
5.1 Security Measures
- Encryption: All data is encrypted both in transit and at rest using industry-standard protocols, regardless of subscription tier.
- Secure Cloud Infrastructure: Your data is stored in a secure cloud environment with enterprise-grade physical and logical security controls.
- Access Controls: Strict internal user access controls with role-based permissions ensure only authorized personnel can access specific data.
- Third-Party Compliance: All third-party services we utilize are SOC2 compliant, ensuring they maintain rigorous security standards.
- Monitoring: Continuous security monitoring to detect and address potential vulnerabilities.
- Regular Audits: Periodic security assessments to ensure our protection measures remain effective.
5.2 International Data Transfers
If we transfer your data internationally, we implement appropriate safeguards such as Standard Contractual Clauses and ensure compliance with applicable cross-border data transfer regulations.
5.3 Data Breach Procedures
In the unlikely event of a data breach that compromises your personal information, we will:
- Promptly notify affected users in accordance with applicable laws
- Investigate and mitigate the impact
- Implement measures to prevent recurrence
- Cooperate with relevant authorities as required
6. Your Privacy Rights
Depending on your location, you have specific rights regarding your personal information. We respect these rights regardless of your jurisdiction:
Access & Portability
You can request a copy of the personal data we hold about you in a structured, commonly used format.
Rectification
You can correct inaccurate information or complete incomplete information we have about you.
Deletion
You can request deletion of your personal data under certain circumstances, subject to legal retention requirements.
Restriction & Objection
You can limit how we use your data or object to certain processing activities.
Consent Withdrawal
You can withdraw previously given consent for data processing at any time.
Complaint
You have the right to lodge a complaint with a supervisory authority if you believe your rights have been violated.
To exercise any of these rights, please contact us at [email protected]. We will respond to your request within 30 days.
Specific Regional Rights
We comply with region-specific privacy regulations, including but not limited to:
- European Union (GDPR): Enhanced rights for EU residents, including data portability and the right to be forgotten.
- California (CCPA/CPRA): Specific disclosure requirements and opt-out rights for California residents.
- Other Jurisdictions: We monitor and implement compliance measures for emerging privacy regulations worldwide.
7. Children's Privacy
Our Service is designed for individuals who are at least 18 years of age. We do not knowingly collect personal information from children under 18. If we discover that we have inadvertently collected information from a child under 18, we will promptly delete it.
If you believe we might have information from or about a child under 18, please contact us immediately at [email protected].
8. Third-Party Services & Integrations
Our Service may include links to third-party websites or services that are not operated by us. Additionally, certain subscription tiers offer integrations with third-party services.
8.1 Third-Party Links
When you click on links to third-party websites, you will be directed to their sites, which have their own privacy policies. We strongly advise you to review the privacy policy of every site you visit. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services.
8.2 Service Integrations
For Pro subscribers who choose to connect third-party tools (e.g., Google Calendar, Todoist, Notion):
- We access only the data necessary to provide the requested functionality
- You can revoke integration permissions at any time
- We do not share your personal data with these services beyond what is required for the integration
8.3 Google User Data (Google Calendar)
When you connect your Google account to Life Framework ("Blue"), we request permission to access your Google Calendar. We access this data only to provide calendar features inside the app:
- What we access: the list of your calendars and their basic details; the events on the calendars you choose to connect (title, time, location, attendees, description); and your basic Google profile (name, email address) to identify your account.
- How we use it: to display your schedule in Blue, understand your availability, surface conflicts, and, when you explicitly ask, to create, update, or delete events on your calendars. We also subscribe to Google's calendar change notifications so your schedule stays in sync.
- How we store it: OAuth tokens and a cached copy of connected calendar data are stored encrypted on our servers. We never sell this data and never use it for advertising.
- How we share it: we do not share your Google Calendar data with third parties, and it is not used to develop, improve, or train generalized AI or machine-learning models. Calendar content may be processed transiently by our AI providers solely to fulfill a request you make, and is not retained by them for any other purpose.
- Retention & deletion: you can disconnect Google Calendar at any time in the app's settings, which revokes our access and deletes stored calendar data and tokens. You may also revoke access directly at myaccount.google.com/permissions.
Limited Use: Life Framework's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.
8.4 Service Providers
We may employ third-party companies to facilitate our Service, provide the Service on our behalf, perform Service-related services, or assist us in analyzing how our Service is used. These third parties have access to your Personal Data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.
Our third-party service providers, including Stripe for web payments and Apple and Google for in-app purchases on mobile, maintain high standards of data security. We carefully select partners who meet or exceed our own security requirements.
9. HeartWeave: Shared Relationship Data
HeartWeave is a space for close relationships. Unlike Blue, which is a private one-to-one companion, HeartWeave is built around containers: a container holds one relationship (two partners, a family, co-founders, a friendship) and its members. Because more than one person can share a container, HeartWeave handles data differently, and this section explains exactly how.
9.1 Private Rooms and the Shared Space
Every member of a container has two kinds of space:
- Your private room: a one-to-one space where only you and the AI talk. It is yours alone. No other member of the container can see it.
- The shared space: a room the members share, where an AI mediator helps the conversation. Every member's messages in the shared space are visible to the other members of that container.
The private/shared wall is a data-handling commitment, not just a feature. Your private room content never crosses into the shared space. The mediator that helps your shared conversation is only ever given shared-space messages to read. It can hold an understanding of the relationship from both sides, and it may say something like "I notice this has been a pattern for both of you," but it never quotes, surfaces, or leaks the words you wrote privately. This separation is enforced in how the system is built, not left to the AI's discretion.
9.2 What Each Party Can See
- You: your own private room, and the shared space of every container you belong to.
- Other members: only the shared space of a container you share with them. Never your private room.
- The AI mediator: in your private room, only you and it. In the shared space, the members' shared messages plus the context it needs to translate between people, never your private-room text.
9.3 Container and Membership Data
To run a container we store its members, each member's role and status, invitations sent and received, and the shared and private conversations within it. A container is created by one person (the person who starts it), and members you invite join at no cost to themselves. See our Terms of Service for how containers are billed.
9.4 Deletion and Anonymization
When you delete your HeartWeave account, we perform a real deletion, not a soft hide. Because a container can hold other people, we handle your data by what belongs to you alone versus what is shared:
- Deleted outright: everything that is yours alone. Your private rooms and their messages, your reflections and insights, your profile and settings, your reminders, your notifications, and any container you alone owned with no other active member (that container and its shared conversations are deleted with you).
- Anonymized, not destroyed: messages you wrote in the shared space of a container that outlives you (because other members are still in it). We keep the content of those messages but remove your identity from them, so they appear from a "departed member." We do this because a shared conversation also belongs to the people you had it with, in the same way an email you sent still lives in the other person's inbox. We cannot unilaterally erase their side of a shared history.
- Retained by design: your Activated Human sign-in identity. HeartWeave uses a single sign-in shared across the Activated Human product family, so deleting your HeartWeave data does not delete that sign-in, which would break your access to our other products. If you sign in again after deleting HeartWeave, you get a fresh, empty HeartWeave account.
Deletion is available in the app and takes effect immediately. Attachments tied to deleted messages are removed from our object storage on a best-effort basis after the deletion completes. To remove your shared Activated Human sign-in entirely, across every product, contact us at [email protected].
9.5 Crisis Detection
HeartWeave includes a lightweight safety layer that watches for signs that someone in a conversation may be in distress (for example, self-harm, violence, or an abusive dynamic). When it detects such a signal, the AI shifts out of ordinary relationship support and surfaces real-world resources, such as a crisis line or emergency number. This processing is content-free where we record it: we log that a safety response was triggered and which category, never the message that triggered it. On the shared path, the safety layer is only ever given shared-space messages, so it upholds the same private/shared wall as the rest of the product. HeartWeave is not a medical or crisis service, and this feature is not guaranteed to catch every situation. See our Terms of Service, Section 6.
9.6 Billing Data and Processors
HeartWeave containers are billed per seat. Depending on where you subscribe, we use:
- Stripe for subscriptions started on the web. We never store your full card details; Stripe processes them as a SOC2-compliant processor.
- Apple (in-app purchase) for subscriptions started in our iOS app, and Google (in-app purchase) for subscriptions started in our Android app. When you subscribe through Apple or Google, that platform processes your payment under its own terms and privacy policy, and shares subscription status with us so we can grant access.
9.7 Email Preferences
We send account and lifecycle emails (for example, welcome and container activity). Every such email includes a one-click unsubscribe link that works without logging in. You can also manage email preferences in your account settings, which is the single source of truth for whether we email you.
9.8 Product Analytics and Error Monitoring
To keep HeartWeave working and improve it, we use PostHog for product analytics (how features are used) and Sentry for error and crash monitoring. These tools receive usage and diagnostic events, not the content of your private or shared conversations. As stated elsewhere in this policy, we do not sell your data and we do not use your conversations to train generalized AI models.
10. Changes to This Privacy Policy
We may update our Privacy Policy from time to time to reflect changes in our practices, technological advancements, or legal requirements. We will notify you of any significant changes by:
- Posting the new Privacy Policy on this page
- Sending you an email notification if you've provided us with your contact information
- Displaying a prominent notice on our Service
The "Last Updated" date at the top of this Privacy Policy will be revised to indicate when changes have been made.
We encourage you to review this Privacy Policy periodically for any changes. Your continued use of the Service after policy changes constitutes your acknowledgment of the modifications and your consent to abide by and be bound by the updated policy.
11. Contact Us
If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at:
Email: [email protected]
Website: https://www.activatedhuman.earth
Activated Human LLC, 2026. All Rights Reserved.