← Back to home

Privacy Policy

Last updated: April 2, 2026

1. Introduction

PinClaw Inc. ("we", "us", "our") operates the Pinclaw mobile application and the pinclaw.ai website. This Privacy Policy explains how we collect, use, and protect your information when you use our products and services.

2. Information We Collect

2.1 Account Information

When you create an account, we collect your email address and authentication credentials through our authentication provider (Supabase). Your email is encrypted at rest using AES-256-GCM encryption.

2.2 Voice Data

Pinclaw processes voice input through your device's microphone or connected Bluetooth hardware. Audio is streamed to speech recognition services for transcription. We do not permanently store raw audio recordings. Transcribed text may be sent to AI model providers to generate responses.

2.3 Device Permissions

With your explicit consent, Pinclaw may access the following on-device data to fulfill voice commands:

  • Bluetooth — to communicate with your Pinclaw hardware device
  • Microphone — to capture voice input for speech recognition
  • Speech Recognition — to transcribe your spoken commands
  • Contacts — to look up people and phone numbers when you ask
  • Calendar & Reminders — to manage events and tasks through voice
  • Location — to answer location-related questions
  • Health (HealthKit) — to provide activity and sleep summaries
  • HomeKit — to control smart home devices through voice
  • Camera — to scan QR codes for device activation

This data is accessed only when you initiate a relevant voice command and is processed locally or sent to our servers solely to generate a response. We do not sell, share, or use this data for advertising purposes. Health data accessed through HealthKit is never shared with third parties.

2.4 Conversation History

Your conversations with the AI assistant are stored on our servers in encrypted form (AES-256-GCM) to provide chat history across your devices. Only you can access your conversations through your authenticated account. You can delete individual conversations or your entire account at any time.

3. How We Use Your Information

  • To provide and operate the Pinclaw AI voice assistant service
  • To authenticate your account and manage your subscription
  • To process your voice commands and return AI-generated responses
  • To improve our service quality and fix bugs
  • To send important service notifications

We do not use your conversation data to train AI models. We do not sell or share your personal data with third parties for advertising purposes.

4. Data Security

We protect your data with multiple layers of security:

  • Encryption in transit — all data between your device and our servers is encrypted using TLS (HTTPS/WSS)
  • Encryption at rest — conversation messages, email addresses, and phone numbers are encrypted using AES-256-GCM before being stored in our database
  • Access isolation — each user can only access their own data through authenticated API requests
  • Audit logging — administrative data access is logged for compliance

No method of electronic transmission or storage is 100% secure. While we implement industry-standard measures, we cannot guarantee absolute security.

5. Third-Party Services

We use the following third-party services to operate Pinclaw:

  • Supabase — authentication
  • AI Model Providers — to generate conversational responses (only conversation context is shared; no personal identifiers)
  • Stripe — payment processing (we do not store payment card details)
  • Apple Push Notification Service — to deliver notifications to your device

6. Data Retention

We retain your account and conversation data for as long as your account is active. Your conversations are never automatically deleted — they remain available until you choose to delete them. Voice audio is processed in real-time and not permanently stored. When you delete your account, all associated data is permanently removed from our systems.

7. Your Rights

You have the right to:

  • Access — view all personal data we hold about you through the app
  • Export — download a complete copy of your data (conversations, devices, subscriptions) as a JSON file from Settings > Data > Export My Data
  • Delete — permanently delete your account and all associated data from Settings > Account > Delete Account
  • Revoke permissions — disable any device permission at any time through iOS Settings

8. Children's Privacy

Pinclaw is not intended for children under 13. We do not knowingly collect personal information from children under 13. If you believe we have collected such data, please contact us immediately.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the "Last updated" date.

10. Contact Us

If you have questions about this Privacy Policy or your data, contact us at:

support@pinclaw.ai