Privacy Policy

Last updated: April 25, 2026

Summary

Asios products are designed to minimize data collection. Room messages and participant data in Asios Rooms are permanently deleted when rooms expire. We don't sell your data, don't use tracking pixels, and don't use third-party analytics.

What We Collect

We collect only what is necessary to provide the service:

  • Account email and hashed password (if you create an account)
  • Payment information (processed by Stripe — we never see your card number)
  • Room data (messages, display names) while a room is active — deleted on expiration
  • Server logs (IP addresses for rate limiting) — deleted within 48 hours

What We Don't Do

  • We don't sell your data to third parties
  • We don't track you across websites
  • We don't use advertising cookies or third-party analytics
  • We don't store room messages after expiration
  • We don't train AI models on your data

AI Processing and Third-Party Processors

When you send a message with @asios in Asios Rooms, we route it to one of our AI providers based on your plan. Specifically:

  • Your message is sent to the selected provider's API endpoint (USA)
  • Free plan: Groq (Llama 3.3 70B). Pro / Team: Anthropic (Claude). OpenAI may be used as a fallback.
  • None of these providers train on your data on their production API tiers
  • Providers may retain your message for up to 30 days for safety/abuse monitoring only
  • Your message is not retained by us after the room expires

Your data is also processed by these service providers:

  • Render (USA) — Database and backend compute hosting
  • Vercel (USA) — Frontend hosting and edge functions
  • Stripe (USA) — Payment processing (PCI DSS compliant)
  • Groq (USA) — AI inference (Free plan)
  • Anthropic (USA) — AI inference (Pro & Team plans)
  • OpenAI (USA) — AI inference (fallback)

Each processor is bound by their published Terms of Service and our agreements with them.

Data Retention

  • Room messages: 1 hour to 7 days — deleted on room expiration
  • Rate limit logs: 48 hours — auto-deleted
  • Account data: retained until you delete your account
  • Database backups: 30 days — auto-purged by provider
  • Payment records: 7 years — required by law

Your Privacy Rights

You have the right to:

  • Access: request a copy of your account data
  • Deletion: delete your account and all associated data
  • Portability: export your account data
  • Correction: update inaccurate information
  • Use without account: create and join rooms with no personal data stored

Security

We use industry-standard security: HTTPS encryption for all traffic, hashed passwords (bcrypt), JWT authentication, and rate limiting. The Service is hosted on Render (backend) and Vercel (frontend), both of which maintain SOC 2 compliance.

Privacy Requests & Contact

To exercise your privacy rights or ask questions, email us at asios_app@proton.me

We handle the following request types:

  • Data access: we'll send you a copy of your account data within 30 days
  • Account deletion: we'll permanently delete your account and all associated data
  • Data correction: we'll update inaccurate information on your account
  • Questions: we'll respond within 5 business days

Please include your account email and a description of your request. We may ask for identity verification before fulfilling sensitive requests.

Asios LLC · Austin, TX · USA