Privacy Policy

What We Collect

When you use The AI Club, we collect the following information:

• Your email address (used for authentication and account communications)
• Chat messages you send and receive (used to provide AI responses)
• Memories extracted from conversations (preferences, facts, expertise — used to personalise your experience)
• Usage counts (daily message totals — used for rate limiting and subscription enforcement)
• Build projects and generated website files (used to provide the website builder feature)
• Push notification tokens on mobile (used to deliver notifications about replies to your questions)

How We Use Your Data

Your data is used to provide and improve the service:

• AI responses — your messages are sent to third-party LLM providers to generate responses
• Personalisation — extracted memories are used to tailor Zeno's responses to your preferences and context
• Crowd memory — anonymised topic data is aggregated across the community to surface recommendations and personalised "Zeno Suggests" suggestions. Individual messages are never exposed to other users
• Website building — when you ask Zeno to build a website, your request and memories are used to generate personalised HTML/CSS/JS files
• Community Q&A — questions you post to Ask Club Members are visible to other members. Replies may trigger push notifications
• Image and diagram generation — your descriptions are sent to image generation models (Black Forest Labs Flux) to create visual content
• Service improvement — usage patterns help us improve routing and model selection

Data Storage

All data is stored on Cloudflare's global edge network using D1 (SQLite). Your data is encrypted in transit and at rest. We do not store data in a centralised data centre — it lives close to you on Cloudflare's distributed infrastructure.

Third-Party AI Providers

To generate AI responses, your messages are routed through OpenRouter — an API gateway that connects to multiple AI model providers. Depending on the type of query, your data may be processed by:

• OpenRouter — routes your message content and conversation history to the appropriate specialist model. Providers behind OpenRouter include xAI (Grok 4.1, Grok 4.20 multi-agent), OpenAI (GPT), Google (Gemini), Qwen, MiniMax, and Black Forest Labs (Flux for image generation and diagrams)
• Cloudflare Workers AI — receives your message content for fallback AI responses and image analysis via vision models

For document generation, your content brief is processed by two models in sequence: Gemini for content design, and MiniMax M2.7 for HTML coding.

For website building, your request is processed by MiniMax to generate complete HTML/CSS/JS.

For personalised suggestions (Zeno Suggests), your memories are processed by Grok 4.20 multi-agent to generate tailored recommendations.

These providers process your data solely to generate responses to your queries. They do not use your data to train their models. Each provider maintains data protection standards equivalent to our own, as required by our data processing agreements.

What Data Is Shared With AI Providers

When you send a message, the following data may be shared with the AI provider selected to handle your query:

• Message content — the text of your current message and relevant conversation history
• Attached images — any photos or images you include in your message
• Attached documents — any document text you include for analysis
• User memories — extracted preferences and facts used to personalise responses

We do not share your email address, payment information, or account details with AI providers.

• Community Q&A posts — questions you choose to post are visible to other members with your initials (not full name or email)

Other Third Parties

• Payment processor — subscription payments are handled by Stripe and RevenueCat. We do not store your card details
• Push notifications — Expo push notification service delivers mobile notifications
• Infrastructure — Cloudflare provides hosting, database, and edge computing services

Your Rights

You have the right to:

• Access your data — view your memories and conversation history in the app
• Correct your data — edit or update memories directly from the Settings page
• Delete your data — remove individual memories from Settings, exclude conversations from memory, or delete your account entirely from the Settings page
• Control AI data sharing — exclude individual conversations from memory extraction using the conversation menu, which prevents that conversation's data from being used for personalisation

Cookies & Local Storage

We do not use tracking cookies. The only data stored in your browser is:

• A JWT authentication token (to keep you signed in)
• UI preferences (such as sidebar state)
• Cached suggestion data and conversation lists (for faster load times)
• Build project data

No third-party analytics or advertising cookies are used.

Children

The AI Club is not directed at anyone under 16 years of age. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us and we will delete it.

Contact

If you have questions about this privacy policy or your data, contact us at hello@the-ai.club.