Emry - Your Private Support Companion

Introduction

At Emry, your privacy is a core part of how we support you.

This Privacy Policy explains what information we collect, why we collect it, how we use it, and how we protect it when you use the Emry mobile application ("App"). We understand that many of our users are going through sensitive moments. That’s why Emry is designed to be a private, safe, and non-judgmental space. You can use the app without sharing your real name, contact details, or any identifying information unless you choose to.

We do not sell your data. We do not use it for advertising. We do not share it with third parties for marketing. Our only goal is to support you, while respecting your right to privacy and control.

This policy applies to all users of the Emry app, no matter where you live. If you are in the European Union, United Kingdom, United States, Australia, or another region with specific data protection laws, we follow those laws. This includes the General Data Protection Regulation (GDPR), the UK GDPR, the California Consumer Privacy Act (CCPA), and the Australian Privacy Principles (APPs).

By using Emry, you agree to this Privacy Policy. If you do not agree, please do not use the app.

If you have questions or need help, you can contact us anytime at support@emry.app

What Information We Collect

Emry only collects the information needed to support you and keep the app working well. Some of this information you choose to share. Some is collected automatically to help us improve the app and fix issues. We explain both below.

Information You Choose to Share

You can use most of Emry without sharing any personal details. But if you choose to, you can give us:

Name (optional)
You can enter any name you like. It doesn’t have to be your real name. This helps Emry talk to you in a more personal and human way.
Goals and values (optional)
You can set personal goals, like staying gambling-free for a week, and choose values that matter to you. This helps Emry give support that reflects what’s important to you.
Photos, videos or voice notes (optional)
You can upload media that represents your reasons for staying in control, such as a photo of your family or a voice note about your goals. These are private and stored securely.
Support contacts (optional)
You can add people you trust, like a friend or partner. If you choose to add someone, we store their first name and phone number so Emry can contact them for you if needed. This only happens with your clear permission.

We do not ask for your email, phone number, full name, or any other identifying information unless you choose to give it to us.

Information We Collect Automatically

We may automatically collect certain types of non-personal information to help us understand how people use Emry and to improve the app’s performance and reliability. This data does not identify you directly or indirectly.

App usage data
We collect information about how the app is used. This may include which screens you visit, how long you spend in the app, which buttons you tap, and how often you use different features. This helps us understand what’s working and where we can improve.
General location data
We may collect approximate location data based on your IP address (such as your country or region). This does not include your exact location or GPS data.
Device and system data
We collect basic information about the device you use, such as device type (e.g. iPhone or Android), operating system version, and app version. This helps us fix bugs and make sure the app works well across different devices.

This non-personal data is collected automatically when you use Emry. It is not linked to your identity and is used only to maintain and improve the service.

How We Use Your Information

We only use your information to support you, improve the app, and keep Emry running safely and effectively. This section explains how we use and, when necessary, disclose both personal and non-personal information.

Use and Disclosure of Personal Information

Personal information is anything that could reasonably identify you. This includes your name (if you provide one), your support contacts, your uploaded media, and the content of your chat messages.

We may use and disclose this type of information in the following ways:

To operate and provide Emry’s features
We use the information you give us to provide the core features of the app. This includes chat support, goal tracking, media uploads in the My Why section, and messaging your support contacts if you have added them.
To personalise your experience
If you enter goals, values, a name, or upload media, we use that information to help Emry offer support that is more relevant and meaningful to you.
To contact support people on your behalf
If you choose to add trusted contacts and enable Emry to message them, we use the contact details you provide for that specific purpose only. This does not happen unless you give permission.
To maintain functionality and troubleshoot issues
If something goes wrong with the app, we may use stored information, including chat data or logs, to investigate and resolve the issue.
To meet legal requirements
We may use or share your information if we are required to do so by law, such as through a court order, subpoena, or request from a government authority.

We may share personal information with service providers who help us deliver the app. This includes companies that provide secure cloud storage, AI technology, or app infrastructure. These providers can only use your information to do the work we have asked them to do, and they must keep it private and secure.

We do not use your personal information for advertising, profiling, or targeted marketing.

Use and Disclosure of Non-Personal Information

Non-personal information does not identify you. This includes general device data, app usage statistics, crash logs, and partial IP addresses that help us understand the region you are in.

We may use and share this type of information in the following ways:

To operate and improve the app
We use technical and usage data to understand how people use Emry, fix bugs, improve stability, and monitor performance.
To improve the overall experience
We may analyse non-personal data to find patterns, learn which features are helpful, and make the app easier to use.
To remember your preferences
We may use usage data to help Emry remember which screen you were last on, or which features you use most often.
To meet legal and security obligations
We may use or share non-personal data to follow laws, protect users, or respond to legal requests from courts or government agencies.

We may share this non-personal data with companies that help us run analytics, manage performance, or provide technical support. These companies do not receive any personal data and are not allowed to use the information for anything other than helping us improve Emry.

We never sell your information, and we do not allow third parties to use your data for advertising.

How We Store and Protect Your Data

The information we collect is saved and kept safe in our cloud servers managed by Amazon Web Services (AWS).

We take your privacy seriously and use strong information security practices to protect all personal and non-personal data you share with Emry. Our systems are designed to maintain the confidentiality, integrity, and availability of your information at all times.

We implement a range of security measures, including but not limited to:

Data encryption
All data is encrypted in transit and at rest. This protects your information from unauthorised access during transmission and storage.
Password protection and secure access management
Internal systems are protected by strict authentication controls, including multi-factor authentication for staff accounts.
Role-based access controls
Only authorised team members who need access to operate or maintain the app can access our systems. Access is limited based on job function and monitored regularly.
Anonymisation and de-identification
When possible, we remove identifying details (such as names) and assign each user a random internal ID. The connection between your ID and any identifying information is stored separately and can only be accessed by authorised personnel.
Third-party security requirements
Any external providers we use, such as for cloud hosting or analytics, must comply with strict privacy and security standards. They are not allowed to use your data for any other purpose.
Ongoing monitoring and improvement
We regularly review and update our security processes to stay aligned with industry best practices and ensure continued protection.

We store data on secure servers located in the United States and other countries. When data is transferred across borders, we apply appropriate safeguards in line with applicable laws, including the GDPR, UK GDPR, and the Australian Privacy Principles. These safeguards are in place to keep your data private and protected, no matter where it is stored.

No system can guarantee complete security. While we do our best to protect your data, there is always some risk when information is sent or stored online. If you want to keep your use of Emry completely private, we recommend using a secure personal device and not sharing access with others.

AI and Automated Technologies

Emry uses artificial intelligence (AI) to understand what you share and provide supportive responses. These AI systems help Emry respond in a way that makes sense and gently guide you through urges, thoughts, and goals.

Our AI programs follow structured rules and do not learn from you or change how they behave based on your data. We do not use machine learning or adaptive AI that updates or improves itself from user input.

We have safety measures in place to ensure that AI responses are supportive, appropriate, and private. We regularly review and test how the AI works to protect your safety and maintain a consistent experience.

How Emry uses AI

Your messages are sent securely to OpenAI, the technology provider we use to generate Emry’s replies.
These responses are created in real time using Generative AI, but are not reviewed by people.
No identifying information is required to use Emry, and you control what you share.
Your messages are not used to train the AI system, and OpenAI does not store your data for long-term use.

Limitations of AI

We do our best to make sure Emry’s AI is helpful and emotionally aware, but it is not perfect. AI is still developing, and sometimes responses may be inaccurate, incomplete, or not fully reflect what you need. Emry is not a human, and it is not a replacement for therapy, crisis support, or clinical care.

If you ever feel uncertain about a response, or if you are in distress, we strongly encourage you to reach out to a qualified health professional or crisis support service in your area.

While we work hard to keep your data secure, no system is completely protected. You can help protect your privacy by:

Avoiding the use of real names or identifying details when chatting
Not copying or sharing your conversations with people you do not know
Using Emry on a secure, private device that only you can access

Third-Party Services and Tools

To help us provide and improve Emry, we work with a small number of trusted third-party service providers. These providers help us run the app, store your data securely, and support key features.

We only share information with these providers when it is necessary for them to do their job, and we ensure they follow strict privacy and security standards. They are not allowed to use your information for any other purpose.

Services we may use include:

Cloud hosting
We use Amazon Web Services (AWS) to store your data securely. AWS meets high standards for encryption, privacy, and security.
AI processing
When you send a message in the app, it is processed by OpenAI’s API to generate a response. These messages are used only to provide replies and are not stored long term or used to train AI models.
Analytics and crash reporting
We may use tools that help us understand how the app is performing and where issues may occur. This includes anonymised data like screen usage and crash logs. These tools do not have access to your conversations or personal media.
App distribution and payments
Payments and subscriptions are handled by Apple (App Store) and Google (Google Play). Emry does not collect or store any payment details.

We carefully review all third-party providers and require them to meet strict legal and security requirements. Your data is only ever shared with these providers if it is necessary to deliver or support the features of the app.

We do not sell your data. We do not allow any third party to use your data for marketing, profiling, or advertising.

Legal Basis for Processing (for EU/UK users)

If you live in the European Union or the United Kingdom, we are required to explain the legal reasons we process your personal information under the General Data Protection Regulation (GDPR) and UK GDPR.

We process your personal information based on one or more of the following legal grounds:

Consent
We process your information when you give us clear permission to do so. For example, when you choose to upload a photo, record a voice note, or add a support contact, you are giving consent for us to use that information to support you in the app. You can withdraw your consent at any time by removing that information or deleting your account.
Performance of a contract
We process your information when it is necessary to provide the Emry service to you. This includes delivering chat responses, storing your goals and values, sending messages to your support contacts (if you have added them), and keeping the app working properly.
Legitimate interests
We may process certain types of non-personal information to improve Emry, protect users, and maintain the app’s security. For example, we may use anonymous usage data to monitor system performance, fix bugs, or understand how people use Emry so we can make the experience better. When we rely on legitimate interests, we always make sure your rights and freedoms are not affected.
Legal obligations
In rare cases, we may need to process or disclose your information to comply with the law. For example, we may be required to respond to a lawful request from a court or regulatory authority.

Your Rights and Choices

You have the right to control your personal information. Whether you want to delete data, ask questions, or make changes, Emry gives you simple ways to manage your information.

Delete Your Chat History

You can clear your entire chat history with Emry at any time using the Clear Chat History option in the app settings. This will delete all of your past conversations. Once deleted, the data cannot be recovered.

Delete Your Account and All Personal Data

You can permanently delete your account in the app. This removes:

Your chat history
Goals, values, and settings
Uploaded photos, videos, or voice notes
Support contacts
Any other data linked to your use of Emry

Once deleted, this information cannot be restored.

Your Rights (Depending on Where You Live)

Depending on your country or region, you may have additional privacy rights under laws like the GDPR, UK GDPR, or the Australian Privacy Principles. These may include the right to:

Access your personal data
Correct inaccurate or incomplete data
Delete your data when it is no longer needed
Temporarily pause processing of your data
Withdraw consent at any time
Object to data processing based on legitimate interest
Request your data in a portable format
Ask questions about how your data is used
Know that your data is not being sold or used for advertising
Be treated fairly for using your privacy rights

We will always do our best to honor these rights, as required by law.

When We May Decline a Request

There may be cases where we cannot fulfill a request. For example:

If we are legally required to retain the data
If the request could affect another person’s privacy or safety
If the request is unreasonable, excessive, or unclear
If deleting the data would harm the safety or functioning of the app
If the data is required for legal claims, fraud prevention, or security

If we are unable to fulfill your request, we will explain why and let you know what options are available.

How to Contact Us

To make a request, update your data, or ask questions about your privacy rights, you can:

Use the in-app settings
Or email us at support@emry.app

We do not charge for data requests and will respond within one month, unless the law allows us more time.

Data Retention and Deletion

We only keep your personal information for as long as it is needed to provide the Emry service, improve the experience, meet legal obligations, or prevent misuse. When your data is no longer needed, we delete it securely.

How long we keep your data

We retain different types of data for different purposes:

Chat history
Stored securely so Emry can provide context during conversations. You can delete your chat history at any time using the “Clear Chat History” feature in the app.
Goals, values, support contacts, and uploaded media
Kept for as long as your account is active. You can update or delete this information at any time in the app settings.
Account details
If you delete your account, we permanently erase your personal data within 30 days. This includes your messages, goals, support contacts, and media files.
Technical and anonymised usage data
We may retain anonymised data for longer to improve the app, fix bugs, or analyse usage patterns. This data cannot identify you and is not linked to your account.

How you can delete your data

You can manage and delete your information in the following ways:

Delete Account
You can permanently delete your account and all related data through the app. After confirming, your data will be deleted from our systems within 30 days.

Once deleted, the data is permanently removed and cannot be recovered. You will start as a new user if you return to Emry.

When we may keep data longer

In limited situations, we may be required to keep some data longer than 30 days, even after account deletion. This may happen if:

We are required to comply with a law, legal process, or regulatory obligation
The data is needed to investigate fraud, abuse, or security incidents
The data is necessary for the safety, integrity, or lawful operation of the platform
Retaining anonymised data helps us improve the service without identifying any user

We regularly review the data we hold and remove anything that is no longer needed. If you have questions about how long we keep your information or how to delete it, contact us at support@emry.app.

Children’s Privacy

Emry is not intended for use by children under the age of 16. We do not knowingly collect or store personal information from anyone under 16.

If we become aware that a child under 16 has used the app or shared personal information without verified parental consent, we will take steps to delete the data and disable access.

If you are a parent or guardian and believe that your child has used Emry or shared personal information with us, please contact us at support@emry.app and we will address the issue promptly.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal obligations.

When we make changes, we will update the “Effective Date” at the top of this page. If the changes are significant, we will provide a clear notice within the app or via email if you have provided one.

We encourage you to review this Privacy Policy regularly so you stay informed about how we protect your information.

Contact Us

If you have any questions, concerns, or requests about this Privacy Policy or how your information is handled, please reach out to us.

Email: support@emry.app

We’ll do our best to respond promptly and help you with any concerns.