Legal

Privacy Policy

Effective date: February 20, 2026 · Last updated: February 20, 2026

      Your inner world is your own. This policy explains exactly what we collect, why we collect it, and how you remain in control of your data at all times.
    

01Who We Are

YouNu ("we," "our," "us") operates the YouNu conversational mirror application, available as a browser extension and mobile PWA. For the purposes of GDPR and applicable data protection law, YouNu is the data controller of your personal information.

Contact: hello@younu.click

02What Data We Collect

Account Information

Name and email address obtained via Google Sign-In
Profile picture (if provided by Google)
Account creation date and last active date

Conversation & Journal Data

All messages and responses exchanged within YouNu sessions
Optional journal entries you choose to write within the app
Timestamps associated with all activity

Usage & Technical Data

All interactions with the app (features used, session duration, frequency)
Device type, browser/extension version, and operating system
IP address (used for security and fraud prevention only)
Token balance and purchase history

Payment Data

Payment transactions are processed by Stripe. YouNu does not store your credit card number or full payment details — only a transaction reference and amount for your records.

03How We Use Your Data

To provide, operate, and maintain the YouNu service
To personalize reflective responses based on your conversation history and profile
To train, improve, and refine the AI model that powers YouNu — you consent to this by using the app
To manage your account, token balance, and purchases
To respond to support requests or legal inquiries
To detect and prevent fraud, abuse, or security threats
To comply with applicable legal obligations

We will never use your data for targeted advertising and we will never sell or share your personal data with third-party advertisers or data brokers.

04AI Training

YouNu uses conversation data to improve the AI model underlying the service. By signing in and using YouNu, you implicitly consent to your conversations being used for this purpose.

We take reasonable steps to minimize identifiable information in training datasets. If you delete your account, your data will be removed from active systems within 30 days and excluded from future training runs. Data already incorporated into previous model training cannot be retroactively removed.

05Data Storage & Security

Your data is stored on secure SQL servers provided by reputable cloud infrastructure providers. We implement the following security measures:

All data transmitted between your device and our servers is encrypted via SSL/TLS
Authentication is secured using JWT (JSON Web Tokens) with appropriate expiry and rotation policies
Access to production databases is restricted to authorized personnel only
Regular security audits and vulnerability assessments are performed

No system is perfectly secure. In the event of a data breach that affects your personal data, we will notify you and relevant authorities as required by applicable law within 72 hours of becoming aware of the breach.

06Data Sharing & Disclosure

We do not sell, rent, or share your personal data with third parties, with the following limited exceptions:

Service Providers

We share data with trusted infrastructure and service providers (such as cloud hosting, AI model APIs, and payment processing via Stripe) solely to operate the service. These providers are contractually obligated to protect your data and may not use it for their own purposes.

Google Sign-In

Account creation uses Google OAuth. Google's use of your data is governed by Google's Privacy Policy.

Law Enforcement

We will only disclose user data to law enforcement or government authorities when accompanied by a valid judicial warrant, court order, or other legally binding instrument requiring such disclosure. We will notify you of any such request unless legally prohibited from doing so.

Business Transfers

In the event of a merger, acquisition, or sale of assets, your data may be transferred as part of that transaction. You will be notified via email and/or a prominent notice on our website prior to any such transfer.

07Your Rights (GDPR & Global)

Depending on your location, you have the following rights regarding your personal data. To exercise any of these rights, contact us at hello@younu.click.

Access

Request a copy of all personal data we hold about you.

Portability

Download your conversation and journal data in a machine-readable format at any time.

Rectification

Request correction of inaccurate or incomplete personal data.

Erasure

Delete your account and all associated data (the "right to be forgotten").

Restriction

Request that we limit the processing of your personal data in certain circumstances.

Objection

Object to the processing of your data, including for AI training purposes.

If you are located in the European Economic Area (EEA) or the UK, you also have the right to lodge a complaint with your local data protection authority (DPA).

We will respond to all data rights requests within 30 days.

08Data Retention

Your data is retained for as long as your account is active. Specifically:

Conversation history and journal entries are stored until you delete them or close your account
Upon account deletion, all personal data is permanently removed from active systems within 30 days
Anonymized or aggregated data that cannot be linked back to you may be retained for analytical and model improvement purposes
Transaction records may be retained for up to 7 years for legal and accounting compliance

09Cookies & Tracking

YouNu uses minimal tracking. We may use session tokens and local storage to maintain your authenticated session. We do not use third-party advertising cookies or behavioral tracking pixels.

Analytics, if used, are limited to aggregate, anonymized usage data to understand how the app is used and to improve the experience.

10Children's Privacy

YouNu is not directed to children under the age of 16 (or the applicable minimum digital consent age in your jurisdiction). We do not knowingly collect personal data from children. If we become aware that a child has provided personal data, we will delete it promptly. If you believe a child has used YouNu, please contact us at hello@younu.click.

11International Data Transfers

YouNu operates globally. Your data may be processed and stored in countries outside your own, including countries that may have different data protection laws. Where required by law (such as GDPR), we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs), to protect your data during international transfers.

12Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date at the top of this page. For material changes, we will notify you via email or an in-app notice. Your continued use of YouNu after any changes constitutes your acceptance of the updated policy.

13Contact & Data Protection

For any privacy-related questions, requests, or concerns — including exercising your data rights — please contact us at:

hello@younu.click

We are committed to resolving all privacy concerns promptly and transparently.