Privacy Policy

Femma ("Company," "we," "our," or "us") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI companion service at femma.ai (the "Service").

Please read this Privacy Policy carefully. By using the Service, you agree to the collection and use of information in accordance with this policy.

2.1 Information You Provide:

• Account Information: When you create an account, we collect your email address and password (stored in encrypted form).
• Profile Information: Optional preferences you set, such as companion preferences, language settings, and display name.
• Payment Information: When you make a purchase, payment information is processed directly by our payment processor (Stripe). We do not store your full credit card number.
• Communications: If you contact us for support, we retain those communications to provide assistance.

2.2 Information Collected Automatically:

• Usage Data: We collect aggregated, non-identifying usage statistics such as session duration and feature usage to improve our Service.
• Device Information: Basic device information including browser type, operating system, and device type.
• Log Data: Server logs that may include IP address, access times, and referring URLs. These logs are retained for a limited period for security purposes.

2.3 Information We Do NOT Collect:

• Content of your conversations with AI companions
• Voice recordings or transcripts
• Biometric data
• Precise geolocation data

We use the information we collect to:

• Provide the Service: Create and manage your account, process transactions, and deliver the Service to you.
• Personalize Experience: Remember your preferences and settings to enhance your experience.
• Improve the Service: Analyze aggregated usage patterns to improve features and performance.
• Communicate: Send transactional emails, respond to inquiries, and provide customer support.
• Security: Detect, prevent, and address fraud, abuse, and security issues.
• Legal Compliance: Comply with legal obligations and enforce our terms.

We do not sell your personal information. We may share information only in the following circumstances:

• Service Providers: We work with trusted third-party service providers who assist us in operating the Service (e.g., payment processing, hosting, analytics). These providers are contractually obligated to protect your information.
• Legal Requirements: We may disclose information if required by law, legal process, or government request.
• Protection of Rights: We may disclose information to protect the rights, property, or safety of Femma, our users, or others.
• Business Transfers: In connection with a merger, acquisition, or sale of assets, user information may be transferred as a business asset.
• With Your Consent: We may share information for other purposes with your explicit consent.

We use the following categories of third-party services:

• Payment Processing: Stripe processes all payments. Their privacy policy governs their handling of your payment information.
• Cloud Infrastructure: We use secure cloud hosting providers to store account data.
• Analytics: We may use privacy-respecting analytics to understand aggregate usage patterns.

These third parties have access only to the information necessary to perform their functions and are obligated to maintain confidentiality.

We implement appropriate technical and organizational security measures to protect your personal information, including:

• Encryption of data in transit using TLS/SSL
• Encryption of sensitive data at rest
• Regular security assessments and monitoring
• Access controls and authentication measures
• Secure password hashing

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy:

• Account Data: Retained while your account is active and for a reasonable period afterward in case of reactivation.
• Transaction Records: Retained as required by tax and accounting laws (typically 7 years).
• Server Logs: Retained for up to 90 days for security purposes.
• Conversation Content: Not retained. Conversations are processed in real-time and not stored.

Upon account deletion, we will delete or anonymize your personal information within 30 days, except where retention is required by law.

Depending on your jurisdiction, you may have the following rights regarding your personal information:

• Access: Request a copy of the personal information we hold about you.
• Correction: Request correction of inaccurate personal information.
• Deletion: Request deletion of your personal information.
• Data Portability: Request a copy of your data in a structured, machine-readable format.
• Opt-Out: Opt out of marketing communications at any time.
• Withdraw Consent: Withdraw consent where processing is based on consent.

To exercise these rights, please contact us at privacy@femma.ai. We will respond to your request within 30 days.

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws.

When we transfer personal information internationally, we implement appropriate safeguards to protect your information, including:

• Standard contractual clauses approved by relevant authorities
• Ensuring recipients are in countries with adequate data protection laws
• Obtaining your explicit consent where required

We use cookies and similar technologies to:

• Essential Cookies: Required for the Service to function (e.g., authentication).
• Preference Cookies: Remember your settings and preferences.
• Analytics Cookies: Help us understand how the Service is used (aggregated data only).

You can control cookies through your browser settings. Note that disabling certain cookies may affect the functionality of the Service.

The Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from anyone under 18 years of age.

If we discover that we have collected personal information from a person under 18, we will delete that information promptly. If you believe we may have information from someone under 18, please contact us immediately at privacy@femma.ai.

California residents have additional rights under the California Consumer Privacy Act (CCPA):

• Right to Know: Request disclosure of the categories and specific pieces of personal information we have collected.
• Right to Delete: Request deletion of personal information we have collected.
• Right to Opt-Out: Opt out of the sale of personal information. Note: We do not sell personal information.
• Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights.

To exercise these rights, contact us at privacy@femma.ai or submit a request through your account settings.

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have additional rights under the General Data Protection Regulation (GDPR):

• Legal Basis: We process your data based on: (a) your consent, (b) contract performance, (c) legal obligations, or (d) legitimate interests.
• Data Protection Authority: You have the right to lodge a complaint with your local data protection authority.
• Right to Object: You may object to processing based on legitimate interests.
• Right to Restriction: You may request restriction of processing in certain circumstances.

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

• Posting the updated Privacy Policy on our website
• Updating the "Last updated" date at the top of this page
• Sending you an email notification for significant changes

We encourage you to review this Privacy Policy periodically. Your continued use of the Service after changes are posted constitutes your acceptance of the updated Privacy Policy.

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

We will respond to your inquiry within 30 days.