Legal
Privacy Policy
How Alpha Inception collects, uses and safeguards your information across our website and applications.
Effective Date: March 20, 2026 | Last Updated: March 20, 2026
Table of Contents
- Introduction
- Definitions
- Information We Collect
- How We Use Your Information
- Data Sharing and Disclosure
- Data Retention
- Data Security
- App-Specific Privacy Details
- Third-Party Services
- Children's Privacy
- Your Rights
- California Privacy Rights (CCPA)
- European Privacy Rights (GDPR)
- International Data Transfers
- Changes to This Policy
- Contact Us
1. Introduction
Alpha Inception ("we," "us," or "our") operates the website www.alphainception.com and publishes mobile applications available on Apple's App Store, Google Play, and through direct distribution (collectively, the "Services"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Services.
This policy applies to all Alpha Inception applications, including but not limited to: Digital Twin, Synapta Therapist, NeuroGuard, Alpha Medical, NaturaBridge, OmniHealer, Aura Social Secretary, Concierge, Eternis, CommitVest, ProspectIQ DraftRoom, and ProspectIQ Intelligence.
By using our Services, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree, please do not use our Services.
2. Definitions
- Personal Data: Any information that relates to an identified or identifiable individual.
- Usage Data: Data collected automatically from the use of our Services (e.g., app interactions, device information).
- On-Device Data: Data processed and stored solely on your device that is never transmitted to our servers.
- Health Data: Information related to physical or mental health conditions, treatments, or biomedical data.
- Service Provider: Any third-party company or individual employed by us to facilitate or provide our Services.
3. Information We Collect
3.1 Information You Provide Directly
- Account Information: Name, email address, and password when you create an account.
- Profile Information: Health conditions, allergies, medications, age, sex, weight, and height (NaturaBridge); professional role (Alpha Medical).
- User Content: Questions, feedback, clinical corrections, mock drafts, and other content you submit through our apps.
- Payment Information: Processed by Apple (App Store) or Google (Play Store). We do not directly collect or store credit card numbers.
- Communication Data: When you contact us via email or in-app feedback.
3.2 Information Collected Automatically
- Device Information: Device model, operating system version, unique device identifiers, and app version.
- Usage Data: Features accessed, interactions, timestamps, and session duration.
- Crash and Performance Data: Error logs, crash reports, and performance metrics to improve app stability.
3.3 Information from Third-Party Services
- Sign-In Services: If you sign in with Apple or Google, we receive your name and email address as authorized by you.
- Email Providers (Concierge): Email metadata (sender, subject, date) and content for classification, accessed via OAuth with your explicit permission. See App-Specific Details.
- Calendar Services: Calendar event data accessed with your permission for scheduling features.
- Wearable Data (NaturaBridge): Heart rate variability, sleep data, step counts synced from Apple Health or connected wearables with your permission.
3.4 Information Processed On-Device Only
Certain apps process data exclusively on your device. This data is never transmitted to our servers:
- Aura Social Secretary: Contact data, calendar data, interaction history, social graph, and synaptic weights are processed and stored entirely on your device.
- Concierge (Privacy Mode): When Privacy Mode is enabled, email classification uses local keyword matching only.
4. How We Use Your Information
We use the information we collect for the following purposes:
| Purpose | Legal Basis |
|---|---|
| Providing and maintaining our Services | Contract performance |
| Processing AI queries and generating responses | Contract performance |
| Personalizing content and recommendations | Legitimate interest / Consent |
| Improving our Services through analytics | Legitimate interest |
| Sending service-related notifications | Contract performance |
| Processing subscriptions and payments | Contract performance |
| Responding to support requests and feedback | Legitimate interest |
| Detecting, preventing, and addressing technical issues | Legitimate interest |
| Complying with legal obligations | Legal obligation |
We do not use your information for targeted advertising. We do not sell your personal data.
5. Data Sharing and Disclosure
We do not sell, rent, or trade your personal information. We may share your information only in the following limited circumstances:
- AI Service Providers: When you use AI-powered features, your queries are sent to third-party AI providers (Anthropic/Claude) for processing. These providers process data according to their own privacy policies and do not use your data for training purposes.
- Cloud Infrastructure: Encrypted data may be stored on cloud servers (e.g., for account sync) provided by reputable hosting providers with appropriate data processing agreements.
- Apple & Google: Subscription and payment processing is handled by Apple (for iOS) and Google (for Android) under their respective privacy policies.
- Legal Requirements: We may disclose information if required by law, regulation, legal process, or governmental request.
- Business Transfers: In connection with a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction, subject to the same privacy protections.
We do not share data with advertising networks, data brokers, or analytics companies that resell data.
6. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes described in this policy:
- Account Data: Retained while your account is active. Deleted within 30 days of account deletion request.
- On-Device Data: Stored on your device until you delete the app or clear app data. We have no access to this data.
- AI Query Logs: Anonymized and retained for up to 90 days for service improvement, then permanently deleted.
- Support Communications: Retained for up to 2 years for quality assurance.
- Health Data (NaturaBridge): Stored locally on your device. Cloud-synced data is encrypted and deleted upon account deletion.
7. Data Security
We implement appropriate technical and organizational measures to protect your information:
- Encryption in Transit: All data transmitted between your device and our servers uses TLS 1.2 or higher.
- Encryption at Rest: Stored data is encrypted using AES-256 encryption.
- Hashed Identifiers: Where applicable, personally identifiable information (phone numbers, emails) is hashed using SHA-256 one-way cryptographic functions.
- Access Controls: Strict role-based access controls limit who can access user data within our organization.
- OAuth Authentication: Third-party service connections (Gmail, Google Calendar) use OAuth 2.0 — we never see or store your third-party passwords.
- Regular Security Reviews: We conduct periodic security assessments of our infrastructure and code.
While we strive to protect your personal information, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security.
8. App-Specific Privacy Details
Alpha Medical
| Data Type | Collected | Purpose | Shared |
|---|---|---|---|
| Account credentials | Yes | Authentication | No |
| Clinical queries | Yes | AI processing | AI provider (Anthropic) for response generation |
| Expert feedback & corrections | Yes | System improvement | No |
| Usage analytics | Yes | Service improvement | No |
Note: Clinical queries sent to the AI are processed by Anthropic (Claude) and are not used for model training. Alpha Medical is a decision support tool, not a medical device, and does not store patient health records.
Aura Social Secretary
| Data Type | Collected | Purpose | Shared |
|---|---|---|---|
| Contacts (names) | On-device only | Social graph | Never leaves device |
| Phone numbers | Hashed on-device | Contact matching | Never — SHA-256 hashed |
| Calendar events | On-device only | Briefing & scheduling | Never leaves device |
| Interaction history | On-device only | Synaptic weights | Never leaves device |
| Vibe broadcasts | Yes (if enabled) | Social sharing | Shared with accepted Aura friends only |
| Scheduling data | Free/busy only | Agent negotiation | Free/busy slots only — no event details |
Privacy Architecture: Aura processes all contact, calendar, and social graph data exclusively on your device. No personal data is uploaded to our servers. Phone numbers and email addresses are stored only as SHA-256 hashes. During agent-to-agent scheduling, only free/busy time slots and a binary energy indicator are shared — event titles, locations, and battery scores are never transmitted.
Concierge (AI Email Assistant)
| Data Type | Collected | Purpose | Shared |
|---|---|---|---|
| Gmail/email access | Via OAuth | Email classification | AI provider for classification (standard mode) |
| Email metadata | Yes | Sorting & filtering | AI provider for analysis |
| Email content | Yes (standard mode) | AI classification & replies | AI provider for processing |
| Google Drive access | Optional, via OAuth | Attachment archival | Google Drive (your account) |
| Google Calendar access | Optional, via OAuth | Event extraction | Google Calendar (your account) |
Privacy Mode: Concierge offers a local-only Privacy Mode that processes emails using keyword matching on your device. In this mode, no email content is sent to any external service. Standard mode sends email content to Anthropic (Claude) for AI classification, subject to Anthropic's privacy policy.
Google API Disclosure: Concierge's use of Google APIs complies with the Google API Services User Data Policy, including the Limited Use requirements. We access Gmail data solely to provide email classification and management features you have explicitly requested.
NaturaBridge
| Data Type | Collected | Purpose | Shared |
|---|---|---|---|
| Health profile | Yes | Personalized plans | AI provider for plan generation |
| Constitutional quiz results | Yes | Dosha/TCM profiling | No |
| Medication data | Yes | Conversion feature | AI provider for analysis |
| Biometric data (HRV, sleep, steps) | On-device / optional sync | Wellness tracking | No |
| Daily check-in logs | On-device / optional sync | Trend analysis | No |
Health Data Protection: Health data is stored locally on your device and encrypted if cloud sync is enabled. Biometric data from wearables (Apple Health, etc.) is accessed with your explicit permission and is never shared with third parties. We do not use health data for advertising or non-health-related purposes.
ProspectIQ DraftRoom
| Data Type | Collected | Purpose | Shared |
|---|---|---|---|
| Account information | Yes | Authentication & leagues | No |
| Mock draft predictions | Yes | Leagues & leaderboards | Anonymized on public leaderboards |
| AI queries | Yes | Scouting reports | AI provider (Anthropic) for analysis |
| Subscription status | Via Apple/Google | Feature access | Apple/Google for payment processing |
Digital Twin
| Data Type | Collected | Purpose | Shared |
|---|---|---|---|
| Account credentials & MFA factors | Yes | Authentication | No |
| Health records (labs, imaging, notes, vitals) | Yes | Building your longitudinal health model | Only with providers you explicitly grant access to |
| Medications, conditions, allergies | Yes | Interaction checks and record completeness | Only under a provider grant you create |
| Genomics data | Yes, if you provide it | Variant context within your record | Only under a provider grant you create |
| Wearable & HealthKit data | Yes, if you connect it | Trend and vitals tracking | No |
| Records imported via FHIR / EHR connections | Yes, if you connect a provider system | Populating your record without re-entry | No |
| Consent records & access logs | Yes | Recording what you permitted, and auditing access | No |
Note: Digital Twin holds sensitive health information. Provider access is granted by you, scoped, time-bound, and revocable, and access is logged. You can export your record at any time. Digital Twin is not a medical device and does not diagnose or treat. Built with Washington’s My Health My Data Act in mind.
Synapta Therapist
| Data Type | Collected | Purpose | Shared |
|---|---|---|---|
| Account credentials | Yes | Authentication | No |
| Therapy session content (text & voice) | Yes | Generating therapeutic responses | AI providers for response generation |
| Ambient audio (Whisper Companion) | Processed on device | Prosodic stress signals only | No — designed so raw audio is not transmitted |
| Derived stress / prosodic measures | Yes | Adapting to your patterns over time | No |
| Crisis-detection signals | Yes | Routing to emergency support where indicated | Emergency services or your nominated contact, only where a crisis is indicated |
| Care-coordination data (FHIR) | Yes, if you enable it | Sharing with your care team | Only with recipients you nominate |
Note: Session content is processed by third-party AI providers to generate responses. The Whisper Companion is designed to analyse prosodic features (tone, pace, rhythm) on device rather than recording or transmitting raw audio. Synapta is not a substitute for professional care, does not provide medical advice, and is not an emergency service — if you are in crisis, contact your local emergency number or, in the US, call or text 988.
NeuroGuard
| Data Type | Collected | Purpose | Shared |
|---|---|---|---|
| Account credentials | Yes | Authentication | No |
| Gameplay interaction data | Yes | Deriving motor, cognitive and oculomotor measures | No |
| Device sensor data (touch, motion, camera, microphone) | Yes, during sessions | Capturing the measures the games are built around | No |
| Voice samples | Yes, during voice tasks | Deriving voice measures | No |
| Derived measures & trends | Yes | Showing change over time | Only where you choose to share |
| Usage analytics | Yes | Service improvement | No |
Note: NeuroGuard captures signals through gameplay. It is not a medical device, is not cleared or approved by any regulator, and does not diagnose, screen for, or rule out any condition. Its output is not a clinical assessment and should not be used to make medical decisions. Discuss any health concern with a qualified clinician.
OmniHealer
| Data Type | Collected | Purpose | Shared |
|---|---|---|---|
| Account credentials (forum participation) | Yes, if you register | Authentication | No |
| Forum posts & comments | Yes, if you post | Operating the community forum | Publicly visible to other users |
| Guide reading activity | Yes | Improving guides | No |
Note: OmniHealer publishes research guides and hosts a moderated community forum. Anything you post to the forum is visible to others — do not post information you would not want public. The guides are educational and are not medical advice; treatment decisions belong with you and your medical team.
Eternis
| Data Type | Collected | Purpose | Shared |
|---|---|---|---|
| Account credentials | Yes | Authentication | No |
| Journal entries & memories | Yes | The core function of the product | No |
| Family vault & genealogy content | Yes, if you add it | Shared family history | With family members you invite |
| Time capsule content | Yes | Encrypted delivery at a future trigger | Only with the recipients you nominate, on release |
| Digital Self personality model | Derived from your entries | Building the model you asked for | No |
| Cognitive trajectory signals (NLCS) | Derived from your writing | Surfacing change over time | No |
| Health integration data | Yes, if you connect it | Context alongside memories | No |
Note: Eternis holds deeply personal material, including content intended for release after death. Time capsules are encrypted, and release triggers are configured by you. Please keep your nominated recipients and recovery details current — if they are wrong or unreachable, content may not reach the people you intended. NLCS signals are informational and are not a cognitive assessment or a diagnosis.
CommitVest
| Data Type | Collected | Purpose | Shared |
|---|---|---|---|
| Account credentials | Yes | Authentication | No |
| Commitment & goal data | Yes | Operating your contracts | Visible to pools/challenges you join |
| Verification sensor data (motion, GPS, camera, biometric) | Yes, during verification | Confirming you did what you staked on | No |
| Payment information | Handled by Stripe | Processing stakes and payouts | Stripe — card details are not stored by Alpha Inception |
| Device attestation data | Yes | Fraud and spoofing detection | No |
| Social / buddy / cohort activity | Yes, if you participate | Group accountability features | Visible to the group you join |
| Employer or programme participation | Yes, if you join via an employer | Operating that programme | Aggregate participation data may be shared with the sponsoring organisation |
Note: CommitVest involves staking real money against commitments; stakes may be forfeited under the terms of a contract you accept. Payments are processed by Stripe under its own terms and privacy policy, and card details are not held by Alpha Inception. If you join through an employer or sponsored programme, that organisation may receive participation information — check what is shared before enrolling.
ProspectIQ Intelligence
| Data Type | Collected | Purpose | Shared |
|---|---|---|---|
| Account credentials | Yes | Authentication | No |
| Saved analyses, rosters & scenarios | Yes | Persisting your work | No |
| Usage analytics | Yes | Service improvement | No |
Note: ProspectIQ Intelligence analyses publicly available sports data and does not collect health or biometric information. Projections are modelled estimates, not predictions of actual outcomes, and nothing in the product is betting or investment advice.
9. Third-Party Services
Our apps integrate with the following third-party services:
- Anthropic (Claude AI): Powers AI features across our apps. Anthropic processes queries to generate responses but does not use your data for model training. See Anthropic's Privacy Policy.
- Apple (App Store, TestFlight, Sign in with Apple, HealthKit): Handles app distribution, beta testing, authentication, and health data access. See Apple's Privacy Policy.
- Google (Play Store, Gmail API, Google Calendar, Google Drive): Handles app distribution, email access, calendar, and storage. See Google's Privacy Policy.
Each third-party service is governed by its own privacy policy. We encourage you to review them.
10. Children's Privacy
Our Services are not intended for children under the age of 13 (or 16 in the European Economic Area). We do not knowingly collect personal information from children under these ages. If we become aware that we have collected personal data from a child without parental consent, we will take steps to delete that information promptly.
If you are a parent or guardian and believe your child has provided us with personal information, please contact us at the address below.
11. Your Rights
Depending on your jurisdiction, you may have the following rights regarding your personal data:
- Access: Request a copy of the personal data we hold about you.
- Correction: Request correction of inaccurate or incomplete data.
- Deletion: Request deletion of your personal data ("right to be forgotten").
- Portability: Request your data in a structured, machine-readable format.
- Restriction: Request restriction of processing of your data.
- Objection: Object to processing based on legitimate interests.
- Withdraw Consent: Where processing is based on consent, withdraw it at any time.
To exercise any of these rights, contact us at privacy@alphainception.com. We will respond within 30 days.
Account Deletion: You may delete your account at any time through the Settings section of any app, or by emailing us. All associated data will be deleted within 30 days, except where retention is required by law.
12. California Privacy Rights (CCPA/CPRA)
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):
- Right to Know: You may request details about the categories and specific pieces of personal information we have collected.
- Right to Delete: You may request deletion of your personal information.
- Right to Opt-Out of Sale: We do not sell your personal information. No opt-out is necessary.
- Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights.
To make a request, email privacy@alphainception.com with "California Privacy Request" in the subject line.
13. European Privacy Rights (GDPR)
If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have rights under the General Data Protection Regulation (GDPR):
- All rights listed in Section 11 above apply.
- You have the right to lodge a complaint with your local data protection authority.
- We process data based on: consent, contract performance, legitimate interests, or legal obligation (as detailed in the table in Section 4).
14. International Data Transfers
Our Services are operated from the United States. If you access our Services from outside the United States, your information may be transferred to, stored, and processed in the United States or other countries where our service providers operate. We ensure appropriate safeguards are in place for international data transfers, including standard contractual clauses where applicable.
15. Changes to This Policy
We may update this Privacy Policy from time to time. When we make material changes, we will:
- Update the "Last Updated" date at the top of this page
- Notify you via in-app notification or email for significant changes
- Post the updated policy on this page
Your continued use of our Services after changes are posted constitutes acceptance of the updated policy.
16. Contact Us
If you have any questions about this Privacy Policy, your data, or your rights, please contact us:
- Email: privacy@alphainception.com
- General Inquiries: andre@alphainception.com
- Website: www.alphainception.com
Data Controller: Alpha Inception
- We do not sell your personal data.
- We do not use your data for targeted advertising.
- On-device data stays on your device.
- Health data is encrypted and never shared with third parties for non-health purposes.
- You can delete your account and data at any time.
- We comply with GDPR, CCPA/CPRA, and app store privacy requirements.