Privacy Policy

Last Updated: December 15, 2025

1. Introduction

Welcome to Sam AI ("we," "our," or "us"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application.

By using Sam AI, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use our app.

2. Information We Collect

2.1 Information You Provide

• Account Information: When using our app with anonymous authentication, we collect a unique user identifier (Firebase Anonymous UID)
• Habit Data: Habit names, targets, completion logs, notes, and related metadata
• Chat Messages: Your conversations with Sam AI are stored to provide personalized coaching
• Optional Information: Display name (if provided), notification preferences

2.2 Automatically Collected Information

• Device Information: Timezone, locale, theme preference (dark/light mode)
• Usage Analytics: App interactions, feature usage, performance metrics (via Firebase Analytics)
• Push Notification Tokens: If you grant notification permissions (via Expo Push Notifications)
• Technical Data: App version, device type, operating system version

3. How We Use Your Information

We use the information we collect to:

• Provide and maintain our core app functionality
• Deliver personalized AI coaching and habit recommendations
• Track your habit progress and generate insights
• Send push notifications (only if you opt-in)
• Analyze app usage and improve our services
• Ensure security and prevent fraud
• Comply with legal obligations

4. Data Storage and Security

Your data is stored securely using Firebase (Google Cloud Platform) infrastructure with the following protections:

• Encryption: Data is encrypted in transit and at rest
• User Isolation: Firestore security rules ensure users can only access their own data
• Access Controls: Strict authentication and authorization mechanisms
• Regular Security Audits: We conduct regular security reviews and testing

5. Third-Party Services

We use the following third-party services that may collect information:

• Firebase (Google): Authentication, database, analytics, cloud functions
• Expo Push Notifications: Delivering push notifications to your device
• AI Providers (Anthropic/OpenAI): Processing chat messages with anonymized data for AI responses

Important: We do not share your personal information with third parties for their marketing purposes.

6. Your Privacy Rights

You have the following rights regarding your personal information:

• Access: Request a copy of your data
• Deletion: Request deletion of your account and all associated data
• Portability: Export your habit data in a standard format
• Opt-Out: Disable analytics tracking or push notifications at any time
• Correction: Update or correct your information

To exercise these rights, please contact us at support@samai.app

7. Data Retention

We retain your information for as long as your account is active or as needed to provide you services. If you delete your account, we will delete your personal data within 30 days, except where we are required to retain it for legal compliance.

8. Children's Privacy

Our app is not directed to children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us, and we will delete such information.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place to protect your information in accordance with this Privacy Policy.

10. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. You are advised to review this Privacy Policy periodically for any changes.

11. Contact Us

If you have any questions about this Privacy Policy, please contact us:

• Email: support@samai.app
• Support Page: Sam AI Support

12. GDPR Compliance (For EU Users)

If you are located in the European Economic Area (EEA), you have specific rights under the General Data Protection Regulation (GDPR):

• Legal basis for processing: Consent and legitimate interest
• Right to withdraw consent at any time
• Right to lodge a complaint with a supervisory authority
• Data Protection Officer contact: support@samai.app

13. CCPA Compliance (For California Users)

If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA):

• Right to know what personal information is collected
• Right to know if personal information is sold or disclosed
• Right to opt-out of the sale of personal information (we do not sell your data)
• Right to deletion of personal information
• Right to non-discrimination for exercising your rights