Compare. Remember. Switch freely. Try AIPuna.
Try AIPuna
AIPuna Logo
AIPuna
🌍Language
Back to Home

AIPuna Privacy Policy

How we collect, use, and protect your data in AIPuna

March 2026

This privacy policy explains how TOBG Services Ltd. ('we', 'us', 'our') collects, uses, and protects your personal data when you use AIPuna. We are committed to protecting your privacy and ensuring transparency about our data practices.

Data Controller

The data controller for AIPuna is:

TOBG Services Ltd.
Managing Director: Patrik Germann
Companies House Registration: #12121330
20-22 Wenlock Road, London, N1 7GU, United Kingdom
Email: [email protected]

Data We Collect

Contact Info & Identifiers

  • Email address (registration, OTP, OAuth)
  • Name / Display name (registration, OAuth)
  • Username / User ID (registration, login, all backend endpoints)
  • Device ID (UUID v4, generated on first launch, persisted in Keychain)

Usage Data

  • AI provider and model selection (per message)
  • Token counts (input/output per AI interaction)
  • Credit cost per message
  • Last used AI provider, model, and use case (local only)
  • App lifecycle state and timestamps (local only)

Device & Technical Information

  • Device type, model, and OS version
  • IP address (captured in server logs and error monitoring)
  • Browser type and version (web access)

Purchase & Transaction Data

  • Credit balance and transaction history
  • Apple receipt data and transaction ID (iOS)
  • Google purchase token (Android)
  • Stripe session ID (web payments)
  • Product ID and environment context (sandbox/production)

User Content

  • Chat messages (full text sent to AI providers)
  • AI-generated responses (full text)
  • Conversation titles and metadata
  • Uploaded files (images, documents)
  • File metadata (name, size, MIME type)
  • Audio streams during real-time voice sessions
  • Voice transcriptions

Diagnostics

  • Crash logs, exceptions, and stack traces (Sentry, 20% sampling)
  • HTTP request errors (Sentry breadcrumbs)
  • User ID and username context (sent to Sentry for error attribution)
  • App version, environment, and build type

Sensitive Information

  • AI data sharing consent status and timestamp (stored locally, intended for backend sync)

App Permissions

AIPuna may request the following permissions on your device:

  • Camera: For scanning documents, taking photos, and video features
  • Microphone: For voice input and voice-based interactions
  • Photo Library: For uploading and managing images within the app
  • File Access: For importing and exporting documents and files

Third-Party Services

AIPuna uses the following third-party services to provide and improve our platform:

  • Firebase - User authentication and push notifications
  • LiveKit - Real-time voice chat infrastructure (WebRTC)
  • Sentry - Error monitoring and crash reporting (includes user ID and username for error attribution; sampled at 20%)
  • Stripe - Payment processing and subscription management
  • Apple App Store / Google Play - In-app purchases and subscription billing
  • Google Sign-In - OAuth authentication for account creation and login
  • Apple Sign-In - OAuth authentication for account creation and login

What We Do Not Collect

AIPuna does not collect or process the following types of data:

  • Location data (GPS, Wi-Fi, or cell tower based)
  • Contacts or calendar data
  • Health or fitness data
  • Browsing history outside the app
  • Search history (search queries remain local to your device)
  • Advertising data or ad tracking identifiers
  • Phone number

Data Storage & Security

We implement the following measures to protect your data:

  • Encryption of data in transit (TLS) and at rest
  • Secure backend infrastructure with regular security audits
  • Access controls and role-based permissions for internal systems
  • Regular vulnerability assessments and penetration testing
  • Automated monitoring and incident response procedures

Data Retention

We retain your personal data for as long as your account is active or as needed to provide you with our services. When you delete your account, we will delete or anonymize your personal data within 30 days, except where retention is required by law.

Financial transaction records are retained for 7 years as required by applicable tax and commercial law.

Your Rights

Under GDPR and applicable data protection laws, you have the following rights:

  • Right of access: Request a copy of your personal data
  • Right to rectification: Correct inaccurate or incomplete data
  • Right to erasure: Request deletion of your personal data
  • Right to data portability: Receive your data in a structured, machine-readable format
  • Right to restrict processing: Limit how we use your data
  • Right to object: Object to processing of your personal data
  • Right to withdraw consent: Withdraw your consent at any time where processing is based on consent

Children's Privacy

AIPuna is not intended for children under 13 years of age. We do not knowingly collect personal data from children under 13. If you believe we have collected data from a child under 13, please contact us immediately at [email protected].

Changes to This Policy

We may update this privacy policy from time to time. We will notify you of any significant changes through the app or by email. The date of the last update is shown at the top of this policy.

Contact Us

If you have questions about this privacy policy or our data practices, please contact us:

Email: [email protected]
TOBG Services Ltd., 20-22 Wenlock Road, London, N1 7GU, United Kingdom

Exercise Your Data Rights

Request Data Deletion

Remove your data while keeping your account

Request Account Deletion

Permanently delete your account and all associated data