Privacy Policy

Tyme is operated by Tiago Lemos, a sole proprietor based in Aveiro, Portugal. Contact: tiagolemos@tyme.chat.

When you create an account and use Tyme, we collect:

• Account data: your email address and (if you sign in with Google) your name and profile photo.
• Chat content: the messages you send, the figure you chose, and the model's responses. Stored in our database so your chats persist across sessions.
• Conversation memory: so a figure can pick up where you left off, we automatically generate and store short notes about what you discussed and how a conversation went (for example "is preparing for an exam"). This can include sensitive details you choose to share. It is used only as private background for your own future chats, is never shared, and you can clear it at any time from your profile.
• Usage data: pages visited, buttons clicked, page load performance, and session recordings, via PostHog. This helps us understand how the app is used and fix issues.
• Payment data: if you subscribe, Stripe processes your card. We never see or store your card number. We store only the subscription status and a Stripe customer ID.

• To provide the chat service (your messages are sent to an AI model to generate replies).
• To bill you, if you subscribe to Pro.
• To diagnose bugs and improve the product.
• To send you transactional emails (receipts, account notifications). We do not send marketing emails.

We use a small number of third-party services that process data on our behalf:

• Supabase: hosts our database (your account, chats, subscription state).
• PostHog: usage analytics and session replay. Hosted in the EU.
• Stripe: payment processing.
• OpenRouter: routes your chat messages to the AI model that generates the reply. The models we may use are OpenAI's GPT-5 mini, Anthropic's Claude, and Google's Gemini, reached through each provider's own API. We configure OpenRouter to opt out of provider training, and by default none of these providers uses data sent through their APIs to train their models. Your messages are not retained for training.
• Vercel: hosts the web app.

We do not sell your personal data and do not share it with advertisers.

We use localStorage and a first-party cookie to remember your session, your sidebar preference, and an anonymous PostHog identifier. We do not use third-party advertising cookies.

Supabase and PostHog store data in the European Union. Stripe, Vercel, and our AI providers (OpenRouter and the model hosts it routes to) store or process data internationally, and we rely on Standard Contractual Clauses for transfers outside the EU.

We keep your account and chats until you delete your account. You can clear the conversation memory Tyme keeps about you at any time from your profile, and it is deleted automatically when you delete your account. PostHog analytics events are retained for 12 months. Stripe retains payment records as long as required by tax and accounting law (typically 7+ years).

Under the GDPR (and similar laws like CCPA), you can ask us to:

• Access the personal data we hold about you.
• Correct it if it is wrong.
• Delete it (subject to legal record-keeping requirements).
• Export it in a portable format.
• Object to processing or restrict it.

To exercise any of these rights, email tiagolemos@tyme.chat. We aim to respond within 30 days.

Tyme is not directed at children under 13. We do not knowingly collect data from anyone under 13. If you believe a child has signed up, contact us and we will delete the account.

We may update this policy as the product evolves. Material changes will be announced in-app or by email. The “Last updated” date at the top of this page always reflects the current version.

Questions, complaints, or requests: tiagolemos@tyme.chat.