Privacy Statement

At Asclepeion, we’re committed to protecting your privacy and ensuring the security of your personal information. As a principle-over-profit organization focused on holistic well-being and conscious advancement of humankind, we take your privacy seriously.

Asclepeion is committed to privacy by design and default. Our practices comply with relevant data protection laws, including the General Data Protection Regulation (GDPR). We are also closely monitoring the progress of the pending Data Protection and Digital Information Bill in the UK and are committed to adapting our practices as necessary when it becomes law.

This privacy statement explains how we collect, use, and protect your information across our website (Asclepeion.com) and our AI companion app (Asclepiad). Please read this carefully to understand our practices.

Information We Collect
  • Personal details (name, email address) for account creation
  • Payment information for voucher purchases
  • Information provided when contacting our support team
  • Anonymous usage data collected through Google Analytics
How We Use Your Information
  • To process voucher purchases and send them via email
  • To create and manage your user account
  • To remind you about voucher renewals (annually)
  • To respond to your inquiries and provide customer support
  • To analyze website traffic and improve user experience (via Google Analytics)
Data Storage and Security
  • We use WordPress for our website
  • Payments are processed securely through Stripe
  • We prioritize the security of your data. Our website uses SSL/TLS encryption provided by Let’s Encrypt (R3), ensuring secure communication between your browser and our servers.
  • We conduct regular internal security audits and annual third-party penetration tests to ensure the robustness of our security measures.
Cookies and Tracking

We use essential cookies required by WordPress and Stripe for voucher purchases. Additionally, we use Google Analytics and Google Tag Manager to collect anonymous usage data that helps us improve our website and services. You can opt-out of Google Analytics tracking by using browser extensions or adjusting your cookie settings.

Payment Data Protection

We use Stripe for secure payment processing. Only minimal transaction data necessary for accounting and customer support is retained in our systems. We do not store full payment details on our servers.

Information We Collect
  • Username (no email address or other identifiable information required)
  • App usage data and content you choose to share within the app
How We Use Your Information
  • To provide you with AI-assisted wellness guidance
  • To improve our services and user experience
Third-Party AI Services

We use OpenAI, AssemblyAI and Anthropic’s AI services to process user data and provide AI-assisted wellness guidance. These services are integral to Asclepiad’s functionality. While these services have access to the user’s full Meta identity profile to provide comprehensive advice, this profile does not contain any personally identifiable information.

Data Privacy and Security

We implement a multi-layered encryption approach to protect your data:

  1. Device-level Encryption: All data is initially encrypted on your device using industry-standard encryption.
  2. Secure Transmission: Encrypted data is then sent through a proxy relay, adding an additional layer of security.
  3. Cloud Processing: Before reaching our database, your data passes through a private cloud function, further enhancing security.
  4. Database Storage: We use Supabase for our database, which employs JWT (JSON Web Token) encryption for all network calls, ensuring your data remains secure at rest and in transit.

This comprehensive approach ensures that your data is protected at every stage – from your device to our secure storage.

Meta Identity Security

We use Meta identities to enhance user privacy while maintaining functionality. These digital aliases are managed securely within the app using a unique username and strong password system. For account recovery, we provide a recovery code, which is the only way to regain access if you forget or lose your password. To maintain your anonymity, we do not implement two-factor authentication (2FA).

Users are not permitted to use their real names as their Meta username. This further ensures the anonymity of our users while allowing the AI to provide personalized guidance based on the user’s profile.

There is no link between your app data and any personal information used for purchasing vouchers.

Data Deletion Process

When you request to delete your data, we initiate a comprehensive deletion process. This includes removing your data from our active systems and ensuring it’s also deleted from our backups within 30 days. After your access expires, we retain anonymized usage data for 6 months for analytical purposes, after which it is permanently deleted.

Data Retention and User Rights
  • You can download all your data at any time
  • You can delete your account completely from our system at any time
  • We comply with GDPR regulations
Transparency and Control

We are committed to transparency in our data practices. You can access a full report of the data we hold about you at any time through the app settings or by contacting us.

Minors
  • Users from 13 years old can use the app with parental consent
  • Only adults can purchase vouchers on the website
  • For users under 18, we follow Anthropic’s guidelines for responsible use of AI models:
    • We do not collect or store personal information from minors beyond what’s necessary for the app’s core functionality
    • We implement age-appropriate content filters and safety measures
    • We provide clear information to parents/guardians about how the AI is used in the app
    • We offer the same stringent privacy protections and controls for minor users
    • We regularly review and update our policies to ensure the safe and responsible use of AI for minors
Changes to Privacy Policy

We will notify you of any changes to this privacy policy via email.

Third-Party Sharing

We do not share your personal information with third parties except as necessary to provide our services (e.g., payment processing).

Got Questions?

If you have any questions about this privacy policy or our practices, please write to us at:

 

Asclepeion Ltd
27 Old Gloucester Street
London WC1N 3AX
United Kingdom

Companies House: 15830285

Email: legal@asclepeion.org

If you have any questions about our privacy practices or wish to exercise your data protection rights, please contact our Data Protection Officer at dpo@asclepeion.org.

By using our website or app, you agree to the terms outlined in this privacy statement. We are committed to continually improving our privacy practices and welcome your feedback.

Last update: 13 September 2024