Legal

Privacy Policy

How Alpha Inception collects, uses and safeguards your information across our website and applications.

Effective Date: March 20, 2026  |  Last Updated: March 20, 2026

Table of Contents

  1. Introduction
  2. Definitions
  3. Information We Collect
  4. How We Use Your Information
  5. Data Sharing and Disclosure
  6. Data Retention
  7. Data Security
  8. App-Specific Privacy Details
  9. Third-Party Services
  10. Children's Privacy
  11. Your Rights
  12. California Privacy Rights (CCPA)
  13. European Privacy Rights (GDPR)
  14. International Data Transfers
  15. Changes to This Policy
  16. Contact Us

1. Introduction

Alpha Inception ("we," "us," or "our") operates the website www.alphainception.com and publishes mobile applications available on Apple's App Store, Google Play, and through direct distribution (collectively, the "Services"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Services.

This policy applies to all Alpha Inception applications, including but not limited to: Digital Twin, Synapta Therapist, NeuroGuard, Alpha Medical, NaturaBridge, OmniHealer, Aura Social Secretary, Concierge, Eternis, CommitVest, ProspectIQ DraftRoom, and ProspectIQ Intelligence.

By using our Services, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree, please do not use our Services.

2. Definitions

  • Personal Data: Any information that relates to an identified or identifiable individual.
  • Usage Data: Data collected automatically from the use of our Services (e.g., app interactions, device information).
  • On-Device Data: Data processed and stored solely on your device that is never transmitted to our servers.
  • Health Data: Information related to physical or mental health conditions, treatments, or biomedical data.
  • Service Provider: Any third-party company or individual employed by us to facilitate or provide our Services.

3. Information We Collect

3.1 Information You Provide Directly

  • Account Information: Name, email address, and password when you create an account.
  • Profile Information: Health conditions, allergies, medications, age, sex, weight, and height (NaturaBridge); professional role (Alpha Medical).
  • User Content: Questions, feedback, clinical corrections, mock drafts, and other content you submit through our apps.
  • Payment Information: Processed by Apple (App Store) or Google (Play Store). We do not directly collect or store credit card numbers.
  • Communication Data: When you contact us via email or in-app feedback.

3.2 Information Collected Automatically

  • Device Information: Device model, operating system version, unique device identifiers, and app version.
  • Usage Data: Features accessed, interactions, timestamps, and session duration.
  • Crash and Performance Data: Error logs, crash reports, and performance metrics to improve app stability.

3.3 Information from Third-Party Services

  • Sign-In Services: If you sign in with Apple or Google, we receive your name and email address as authorized by you.
  • Email Providers (Concierge): Email metadata (sender, subject, date) and content for classification, accessed via OAuth with your explicit permission. See App-Specific Details.
  • Calendar Services: Calendar event data accessed with your permission for scheduling features.
  • Wearable Data (NaturaBridge): Heart rate variability, sleep data, step counts synced from Apple Health or connected wearables with your permission.

3.4 Information Processed On-Device Only

Certain apps process data exclusively on your device. This data is never transmitted to our servers:

  • Aura Social Secretary: Contact data, calendar data, interaction history, social graph, and synaptic weights are processed and stored entirely on your device.
  • Concierge (Privacy Mode): When Privacy Mode is enabled, email classification uses local keyword matching only.

4. How We Use Your Information

We use the information we collect for the following purposes:

PurposeLegal Basis
Providing and maintaining our ServicesContract performance
Processing AI queries and generating responsesContract performance
Personalizing content and recommendationsLegitimate interest / Consent
Improving our Services through analyticsLegitimate interest
Sending service-related notificationsContract performance
Processing subscriptions and paymentsContract performance
Responding to support requests and feedbackLegitimate interest
Detecting, preventing, and addressing technical issuesLegitimate interest
Complying with legal obligationsLegal obligation

We do not use your information for targeted advertising. We do not sell your personal data.

5. Data Sharing and Disclosure

We do not sell, rent, or trade your personal information. We may share your information only in the following limited circumstances:

  • AI Service Providers: When you use AI-powered features, your queries are sent to third-party AI providers (Anthropic/Claude) for processing. These providers process data according to their own privacy policies and do not use your data for training purposes.
  • Cloud Infrastructure: Encrypted data may be stored on cloud servers (e.g., for account sync) provided by reputable hosting providers with appropriate data processing agreements.
  • Apple & Google: Subscription and payment processing is handled by Apple (for iOS) and Google (for Android) under their respective privacy policies.
  • Legal Requirements: We may disclose information if required by law, regulation, legal process, or governmental request.
  • Business Transfers: In connection with a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction, subject to the same privacy protections.

We do not share data with advertising networks, data brokers, or analytics companies that resell data.

6. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes described in this policy:

  • Account Data: Retained while your account is active. Deleted within 30 days of account deletion request.
  • On-Device Data: Stored on your device until you delete the app or clear app data. We have no access to this data.
  • AI Query Logs: Anonymized and retained for up to 90 days for service improvement, then permanently deleted.
  • Support Communications: Retained for up to 2 years for quality assurance.
  • Health Data (NaturaBridge): Stored locally on your device. Cloud-synced data is encrypted and deleted upon account deletion.

7. Data Security

We implement appropriate technical and organizational measures to protect your information:

  • Encryption in Transit: All data transmitted between your device and our servers uses TLS 1.2 or higher.
  • Encryption at Rest: Stored data is encrypted using AES-256 encryption.
  • Hashed Identifiers: Where applicable, personally identifiable information (phone numbers, emails) is hashed using SHA-256 one-way cryptographic functions.
  • Access Controls: Strict role-based access controls limit who can access user data within our organization.
  • OAuth Authentication: Third-party service connections (Gmail, Google Calendar) use OAuth 2.0 — we never see or store your third-party passwords.
  • Regular Security Reviews: We conduct periodic security assessments of our infrastructure and code.

While we strive to protect your personal information, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security.

8. App-Specific Privacy Details

Alpha Medical

Data TypeCollectedPurposeShared
Account credentialsYesAuthenticationNo
Clinical queriesYesAI processingAI provider (Anthropic) for response generation
Expert feedback & correctionsYesSystem improvementNo
Usage analyticsYesService improvementNo

Note: Clinical queries sent to the AI are processed by Anthropic (Claude) and are not used for model training. Alpha Medical is a decision support tool, not a medical device, and does not store patient health records.

Aura Social Secretary

Data TypeCollectedPurposeShared
Contacts (names)On-device onlySocial graphNever leaves device
Phone numbersHashed on-deviceContact matchingNever — SHA-256 hashed
Calendar eventsOn-device onlyBriefing & schedulingNever leaves device
Interaction historyOn-device onlySynaptic weightsNever leaves device
Vibe broadcastsYes (if enabled)Social sharingShared with accepted Aura friends only
Scheduling dataFree/busy onlyAgent negotiationFree/busy slots only — no event details

Privacy Architecture: Aura processes all contact, calendar, and social graph data exclusively on your device. No personal data is uploaded to our servers. Phone numbers and email addresses are stored only as SHA-256 hashes. During agent-to-agent scheduling, only free/busy time slots and a binary energy indicator are shared — event titles, locations, and battery scores are never transmitted.

Concierge (AI Email Assistant)

Data TypeCollectedPurposeShared
Gmail/email accessVia OAuthEmail classificationAI provider for classification (standard mode)
Email metadataYesSorting & filteringAI provider for analysis
Email contentYes (standard mode)AI classification & repliesAI provider for processing
Google Drive accessOptional, via OAuthAttachment archivalGoogle Drive (your account)
Google Calendar accessOptional, via OAuthEvent extractionGoogle Calendar (your account)

Privacy Mode: Concierge offers a local-only Privacy Mode that processes emails using keyword matching on your device. In this mode, no email content is sent to any external service. Standard mode sends email content to Anthropic (Claude) for AI classification, subject to Anthropic's privacy policy.

Google API Disclosure: Concierge's use of Google APIs complies with the Google API Services User Data Policy, including the Limited Use requirements. We access Gmail data solely to provide email classification and management features you have explicitly requested.

NaturaBridge

Data TypeCollectedPurposeShared
Health profileYesPersonalized plansAI provider for plan generation
Constitutional quiz resultsYesDosha/TCM profilingNo
Medication dataYesConversion featureAI provider for analysis
Biometric data (HRV, sleep, steps)On-device / optional syncWellness trackingNo
Daily check-in logsOn-device / optional syncTrend analysisNo

Health Data Protection: Health data is stored locally on your device and encrypted if cloud sync is enabled. Biometric data from wearables (Apple Health, etc.) is accessed with your explicit permission and is never shared with third parties. We do not use health data for advertising or non-health-related purposes.

ProspectIQ DraftRoom

Data TypeCollectedPurposeShared
Account informationYesAuthentication & leaguesNo
Mock draft predictionsYesLeagues & leaderboardsAnonymized on public leaderboards
AI queriesYesScouting reportsAI provider (Anthropic) for analysis
Subscription statusVia Apple/GoogleFeature accessApple/Google for payment processing

Digital Twin

Data TypeCollectedPurposeShared
Account credentials & MFA factorsYesAuthenticationNo
Health records (labs, imaging, notes, vitals)YesBuilding your longitudinal health modelOnly with providers you explicitly grant access to
Medications, conditions, allergiesYesInteraction checks and record completenessOnly under a provider grant you create
Genomics dataYes, if you provide itVariant context within your recordOnly under a provider grant you create
Wearable & HealthKit dataYes, if you connect itTrend and vitals trackingNo
Records imported via FHIR / EHR connectionsYes, if you connect a provider systemPopulating your record without re-entryNo
Consent records & access logsYesRecording what you permitted, and auditing accessNo

Note: Digital Twin holds sensitive health information. Provider access is granted by you, scoped, time-bound, and revocable, and access is logged. You can export your record at any time. Digital Twin is not a medical device and does not diagnose or treat. Built with Washington’s My Health My Data Act in mind.

Synapta Therapist

Data TypeCollectedPurposeShared
Account credentialsYesAuthenticationNo
Therapy session content (text & voice)YesGenerating therapeutic responsesAI providers for response generation
Ambient audio (Whisper Companion)Processed on deviceProsodic stress signals onlyNo — designed so raw audio is not transmitted
Derived stress / prosodic measuresYesAdapting to your patterns over timeNo
Crisis-detection signalsYesRouting to emergency support where indicatedEmergency services or your nominated contact, only where a crisis is indicated
Care-coordination data (FHIR)Yes, if you enable itSharing with your care teamOnly with recipients you nominate

Note: Session content is processed by third-party AI providers to generate responses. The Whisper Companion is designed to analyse prosodic features (tone, pace, rhythm) on device rather than recording or transmitting raw audio. Synapta is not a substitute for professional care, does not provide medical advice, and is not an emergency service — if you are in crisis, contact your local emergency number or, in the US, call or text 988.

NeuroGuard

Data TypeCollectedPurposeShared
Account credentialsYesAuthenticationNo
Gameplay interaction dataYesDeriving motor, cognitive and oculomotor measuresNo
Device sensor data (touch, motion, camera, microphone)Yes, during sessionsCapturing the measures the games are built aroundNo
Voice samplesYes, during voice tasksDeriving voice measuresNo
Derived measures & trendsYesShowing change over timeOnly where you choose to share
Usage analyticsYesService improvementNo

Note: NeuroGuard captures signals through gameplay. It is not a medical device, is not cleared or approved by any regulator, and does not diagnose, screen for, or rule out any condition. Its output is not a clinical assessment and should not be used to make medical decisions. Discuss any health concern with a qualified clinician.

OmniHealer

Data TypeCollectedPurposeShared
Account credentials (forum participation)Yes, if you registerAuthenticationNo
Forum posts & commentsYes, if you postOperating the community forumPublicly visible to other users
Guide reading activityYesImproving guidesNo

Note: OmniHealer publishes research guides and hosts a moderated community forum. Anything you post to the forum is visible to others — do not post information you would not want public. The guides are educational and are not medical advice; treatment decisions belong with you and your medical team.

Eternis

Data TypeCollectedPurposeShared
Account credentialsYesAuthenticationNo
Journal entries & memoriesYesThe core function of the productNo
Family vault & genealogy contentYes, if you add itShared family historyWith family members you invite
Time capsule contentYesEncrypted delivery at a future triggerOnly with the recipients you nominate, on release
Digital Self personality modelDerived from your entriesBuilding the model you asked forNo
Cognitive trajectory signals (NLCS)Derived from your writingSurfacing change over timeNo
Health integration dataYes, if you connect itContext alongside memoriesNo

Note: Eternis holds deeply personal material, including content intended for release after death. Time capsules are encrypted, and release triggers are configured by you. Please keep your nominated recipients and recovery details current — if they are wrong or unreachable, content may not reach the people you intended. NLCS signals are informational and are not a cognitive assessment or a diagnosis.

CommitVest

Data TypeCollectedPurposeShared
Account credentialsYesAuthenticationNo
Commitment & goal dataYesOperating your contractsVisible to pools/challenges you join
Verification sensor data (motion, GPS, camera, biometric)Yes, during verificationConfirming you did what you staked onNo
Payment informationHandled by StripeProcessing stakes and payoutsStripe — card details are not stored by Alpha Inception
Device attestation dataYesFraud and spoofing detectionNo
Social / buddy / cohort activityYes, if you participateGroup accountability featuresVisible to the group you join
Employer or programme participationYes, if you join via an employerOperating that programmeAggregate participation data may be shared with the sponsoring organisation

Note: CommitVest involves staking real money against commitments; stakes may be forfeited under the terms of a contract you accept. Payments are processed by Stripe under its own terms and privacy policy, and card details are not held by Alpha Inception. If you join through an employer or sponsored programme, that organisation may receive participation information — check what is shared before enrolling.

ProspectIQ Intelligence

Data TypeCollectedPurposeShared
Account credentialsYesAuthenticationNo
Saved analyses, rosters & scenariosYesPersisting your workNo
Usage analyticsYesService improvementNo

Note: ProspectIQ Intelligence analyses publicly available sports data and does not collect health or biometric information. Projections are modelled estimates, not predictions of actual outcomes, and nothing in the product is betting or investment advice.

9. Third-Party Services

Our apps integrate with the following third-party services:

  • Anthropic (Claude AI): Powers AI features across our apps. Anthropic processes queries to generate responses but does not use your data for model training. See Anthropic's Privacy Policy.
  • Apple (App Store, TestFlight, Sign in with Apple, HealthKit): Handles app distribution, beta testing, authentication, and health data access. See Apple's Privacy Policy.
  • Google (Play Store, Gmail API, Google Calendar, Google Drive): Handles app distribution, email access, calendar, and storage. See Google's Privacy Policy.

Each third-party service is governed by its own privacy policy. We encourage you to review them.

10. Children's Privacy

Our Services are not intended for children under the age of 13 (or 16 in the European Economic Area). We do not knowingly collect personal information from children under these ages. If we become aware that we have collected personal data from a child without parental consent, we will take steps to delete that information promptly.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us at the address below.

11. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request correction of inaccurate or incomplete data.
  • Deletion: Request deletion of your personal data ("right to be forgotten").
  • Portability: Request your data in a structured, machine-readable format.
  • Restriction: Request restriction of processing of your data.
  • Objection: Object to processing based on legitimate interests.
  • Withdraw Consent: Where processing is based on consent, withdraw it at any time.

To exercise any of these rights, contact us at privacy@alphainception.com. We will respond within 30 days.

Account Deletion: You may delete your account at any time through the Settings section of any app, or by emailing us. All associated data will be deleted within 30 days, except where retention is required by law.

12. California Privacy Rights (CCPA/CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

  • Right to Know: You may request details about the categories and specific pieces of personal information we have collected.
  • Right to Delete: You may request deletion of your personal information.
  • Right to Opt-Out of Sale: We do not sell your personal information. No opt-out is necessary.
  • Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights.

To make a request, email privacy@alphainception.com with "California Privacy Request" in the subject line.

13. European Privacy Rights (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have rights under the General Data Protection Regulation (GDPR):

  • All rights listed in Section 11 above apply.
  • You have the right to lodge a complaint with your local data protection authority.
  • We process data based on: consent, contract performance, legitimate interests, or legal obligation (as detailed in the table in Section 4).

14. International Data Transfers

Our Services are operated from the United States. If you access our Services from outside the United States, your information may be transferred to, stored, and processed in the United States or other countries where our service providers operate. We ensure appropriate safeguards are in place for international data transfers, including standard contractual clauses where applicable.

15. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will:

  • Update the "Last Updated" date at the top of this page
  • Notify you via in-app notification or email for significant changes
  • Post the updated policy on this page

Your continued use of our Services after changes are posted constitutes acceptance of the updated policy.

16. Contact Us

If you have any questions about this Privacy Policy, your data, or your rights, please contact us:

Data Controller: Alpha Inception

Summary of Key Commitments:
  • We do not sell your personal data.
  • We do not use your data for targeted advertising.
  • On-device data stays on your device.
  • Health data is encrypted and never shared with third parties for non-health purposes.
  • You can delete your account and data at any time.
  • We comply with GDPR, CCPA/CPRA, and app store privacy requirements.