Privacy Policy

Effective Date: April 8, 2026

1. Introduction

SusAI ("Company," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application ("App").

Please read this Privacy Policy carefully. By using the App, you consent to the data practices described in this policy. If you do not agree with the terms of this Privacy Policy, please do not use the App.

2. Information We Collect

a) Information You Provide Directly

• Questions: Text questions you enter for behavioral analysis sessions.

b) Information Collected Automatically

• Device Information: Device model, operating system version, and unique device identifiers.
• Usage Data: App feature usage patterns, session duration, and interaction events.
• Crash Data: Error logs and crash reports to improve app stability.

c) Camera and Microphone Data

• Video Frames: The App captures still image frames from your device camera during analysis sessions.
• Audio Recordings: The App records audio during analysis sessions.

See Section 3 ("Face Data Collection and Use") and Section 4 ("Third-Party AI Data Sharing") for detailed information on how this data is collected, used, and shared.

3. Face Data Collection and Use

WHAT FACE DATA WE COLLECT:

SusAI captures still image frames (photographs) from your device's camera during analysis sessions. These frames may contain images of faces and are captured at intervals of approximately 3.5 seconds during a recording session, for a maximum of 8 frames per session. The images are standard JPEG photographs — SusAI does NOT use Apple's Face ID, TrueDepth camera APIs, or any biometric identification technology. No facial geometry, faceprint, or biometric template is created or stored.

HOW FACE DATA IS USED:

Captured face images are sent to Google's Gemini AI service for visual behavioral analysis. The AI analyzes the images for:

• Eye movement patterns and gaze direction
• Facial micro-expressions (e.g., lip tension, brow movements)
• Body language cues visible in the frame

The AI returns numerical scores and text descriptions. The raw images are NOT used for facial recognition, identity verification, or biometric identification.

THIRD-PARTY SHARING OF FACE DATA:

Face image data is sent directly from your device to Google's Gemini AI API (generativelanguage.googleapis.com) for processing. Google processes this data according to their API Terms of Service and Privacy Policy (https://policies.google.com/privacy). No other third party receives face image data.

STORAGE AND RETENTION OF FACE DATA:

• Face images are held in device memory only during the active analysis session.
• Face images are sent to Google Gemini for processing and are NOT stored on any SusAI server.
• Once the analysis is complete, the raw image data is discarded from device memory.
• SusAI does NOT retain, store, or archive face images after the analysis session ends.
• Locally saved scan history contains only the analysis results (scores, text notes, verdict) — NOT the original face images.

For information on Google's data retention practices for API requests, please refer to Google's Privacy Policy at https://policies.google.com/privacy.

4. Third-Party AI Data Sharing

SusAI sends user data to third-party AI services to perform its analysis. Before your first scan, the App will ask for your explicit consent to share data with these services. You must agree before any data is transmitted.

a) Google Gemini (Vision Analysis)

• Data sent: Still image frames captured from your device camera (may contain faces and surroundings).
• Destination: Google Gemini API (generativelanguage.googleapis.com).
• Purpose: Analysis of facial expressions, eye movement patterns, and body language.
• Google's Privacy Policy: https://policies.google.com/privacy

b) OpenAI (Audio Transcription and Speech Analysis)

• Data sent: Audio recordings captured from your device microphone during the analysis session.
• Destination: OpenAI API (api.openai.com).
• Purpose: Transcription of speech using OpenAI Whisper, and analysis of speech patterns, vocal stress, and linguistic indicators using GPT-4o.
• OpenAI's Privacy Policy: https://openai.com/privacy

c) Apple App Store (Payments)

• Data sent: Payment and subscription information.
• Purpose: Processing subscription purchases and managing billing.
• Apple's Privacy Policy: https://www.apple.com/privacy

5. How We Use Your Information

We use the information we collect for the following purposes:

• To provide the App's core functionality (behavioral analysis via third-party AI services).
• To save scan results (scores, verdicts, notes) locally on your device for scan history.
• To track usage limits (e.g., free scan count) for subscription management.
• To improve and optimize the App's performance and user experience.
• To diagnose technical problems and fix bugs.
• To communicate with you about updates, security alerts, or support.
• To enforce our Terms of Service and protect against misuse.

6. Data Storage and Security

a) Local Storage

The following data is stored locally on your device:

• Scan history (questions, scores, verdicts, breakdowns, text notes).
• App preferences and onboarding state.
• Subscription status.

b) What We Do NOT Store on Our Servers

• We do NOT store video frames, face images, or photos.
• We do NOT store audio recordings.
• We do NOT store biometric data or facial geometry.
• We do NOT maintain user accounts or personal profiles on our servers.

c) Security Measures

• All data transmissions to third-party APIs use HTTPS/TLS encryption.
• No server-side storage of personally identifiable media data.

However, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security of your data.

7. Data Sharing and Disclosure

We do NOT sell, trade, rent, or otherwise share your personal information with third parties for marketing purposes.

Data is shared with third-party AI services (Google Gemini and OpenAI) solely for the purpose of performing behavioral analysis, as described in Section 4. This sharing occurs only with your explicit consent.

We may disclose information in the following additional circumstances:

• Legal Requirements: If required by law, regulation, legal process, or governmental request.
• Protection of Rights: To protect the rights, property, or safety of SusAI, our users, or the public.
• Business Transfers: In connection with a merger, acquisition, or sale of assets, with notice to affected users.

8. Data Retention

• Scan History: Stored locally on your device indefinitely until you choose to delete it using "Clear All Scans" in Settings.
• Face Images / Audio Recordings: NOT retained. Discarded from device memory immediately after each analysis session completes.
• Usage Analytics: Aggregated, anonymized analytics data may be retained for up to 24 months.

You may delete all locally stored data at any time by:

• Using the "Clear All Scans" option in the App's Settings.
• Uninstalling the App from your device, which removes all local data.

9. Children's Privacy

The App is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

Users between the ages of 13 and 18 may use the App only with parental or guardian consent and supervision.

10. Your Rights and Choices

Depending on your jurisdiction, you may have the following rights:

a) Access and Portability

Since most data is stored locally on your device, you already have direct access to it.

b) Deletion

You can delete your scan history and locally stored data at any time through the App's Settings. Uninstalling the App removes all local data.

c) Camera and Microphone Permissions

You can revoke camera and microphone permissions at any time through your device's system settings. This will prevent the App from performing analyses.

d) Withdraw Consent for AI Data Sharing

You can withdraw your consent for data sharing with third-party AI services by discontinuing use of the App's scan feature.

e) California Residents (CCPA)

You have rights under the CCPA, including the right to know, delete, and opt out of the sale of personal information. We do not sell personal information.

f) EU/EEA Residents (GDPR)

You have rights under GDPR, including the right to access, rectify, erase, restrict processing, data portability, and object to processing.

11. International Data Transfers

When you use the App, data may be transmitted to third-party AI services (OpenAI, Google) whose servers may be located in the United States or other countries. By using the App and consenting to data sharing, you consent to the transfer of your data to countries that may have different data protection laws than your country of residence.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the "Effective Date" at the top of this policy and, where practicable, provide notice through the App.

Your continued use of the App after any changes constitutes your acceptance of the revised policy.

13. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

Email: susai.app@outlook.com
Subject: Privacy Policy Inquiry

For data deletion requests, please include "Data Deletion Request" in the subject line.