Privacy Policy
Last updated: March 24, 2026
1. Data Collection
Leo AI collects only the data you provide directly through the app: mood entries, health metrics, financial transactions, notes, tasks, and conversation messages. We do not collect data from third-party sources.
2. Data Storage
All personal data is stored locally on your device using AES-256-GCM encryption. If you enable cloud sync, data is encrypted on your device before being transmitted to our servers. We cannot read your encrypted data.
3. Data Sharing
We do not sell, trade, or share your personal data with any third parties. AI processing uses OpenAI's API with your conversations, but we do not store conversation data on our servers beyond what is needed for the AI response.
4. Health Data
Health data accessed through Apple HealthKit (steps, heart rate, active calories, sleep, weight) is read only with your explicit permission and is never shared with third parties or stored on external servers.
5. Authentication
We support Sign in with Apple and email/password authentication through Supabase. Passwords are hashed using bcrypt and are never stored in plaintext.
6. Data Deletion
You can delete all your data at any time from Settings > Clear Data. Upon account deletion, all associated data is permanently removed from our servers within 30 days.
7. Contact
For privacy questions, contact us at support@leocompanionai.com.