PRIVACY POLICY

Last Updated: August 20, 2025

1. Introduction

Welcome to Mannsetu ("we," "our," or "us"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered mental wellness platform.

2. Information We Collect

2.1 Information You Provide

  • Session Data: Text messages and voice recordings during therapy sessions
  • User Identifiers: Anonymous user IDs and session IDs (e.g., demo_user_1755712315819)
  • Language Preferences: Your preferred language for communication
  • Feedback: Any feedback or suggestions you provide

2.2 Automatically Collected Information

  • Emotion Analytics: Emotional patterns detected through voice tone and text analysis
  • Usage Data: Session duration, frequency, and interaction patterns
  • Technical Data: IP address, browser type, device information, and connection metadata
  • Performance Metrics: Response times, error logs, and system health data

2.3 Voice Data

  • Voice recordings are temporarily processed for transcription
  • Audio is converted to text using OpenAI's transcription services
  • Original audio files are deleted immediately after transcription

3. How We Use Your Information

We use your information to:

  • Provide personalized mental wellness support
  • Improve our AI agents' responses and cultural sensitivity
  • Detect crisis situations and provide appropriate interventions
  • Analyze emotional patterns to offer better therapeutic guidance
  • Maintain and improve platform performance
  • Comply with legal obligations

4. Data Processing & AI

4.1 AI Models

  • We use OpenAI GPT models for conversation and transcription
  • Hume AI for emotion detection and analysis
  • All AI processing follows strict data minimization principles

4.2 Data Retention

  • Conversation history: Retained for 90 days for continuity of care
  • Emotion analytics: Aggregated and anonymized after 30 days
  • Crisis incidents: Retained for 1 year for safety protocols
  • Technical logs: Retained for 30 days

5. Data Security

We implement industry-standard security measures:

  • End-to-end encryption for all communications
  • AES-128 encryption for stored data
  • PostgreSQL database with access controls
  • Regular security audits and updates
  • Secure WebSocket connections for real-time communication
  • No storage of payment information

6. Data Sharing

We do NOT:

  • Sell your personal information
  • Share your therapy sessions with third parties
  • Use your data for advertising

We MAY share information:

  • With emergency services if we detect immediate danger to life
  • To comply with legal obligations or court orders
  • With your explicit consent

7. Your Rights

You have the right to:

  • Access your personal data
  • Request deletion of your data
  • Opt-out of emotion analytics
  • Export your conversation history
  • Withdraw consent at any time

8. International Data Transfers

  • Data is processed in AWS US-East-2 region
  • We use Supabase (PostgreSQL) for database services
  • OpenAI API calls may process data in the United States

9. Children's Privacy

Our service is not intended for users under 13 years of age. We do not knowingly collect information from children under 13.

10. Contact Us

For privacy concerns or data requests:

  • Email: sattyamjain1729@gmail.com
  • Response time: Within 48 hours