Privacy Policy

Effective date: March 26, 2026

Tandem ("we", "our", "the app") is a relationship check-in app that gives couples a private space for individual reflection and a shared space for facilitated conversations. This policy explains what data we collect, how we use it, and your rights.

What We Collect

• Account information — your first name and either your Apple ID identifier or your email address and password.
• Conversation content — messages you send in private sessions and shared sessions, session summaries generated by the AI, and any notes you choose to share.
• Context documents — AI-generated summaries of your session history, used to provide continuity across sessions.
• Relationship data — the link between you and your partner (no other personal details about your partner beyond their name).

How We Use Your Data

• To provide the service — your conversation content is sent to Anthropic's Claude API to generate AI responses, session summaries, and context documents.
• To maintain continuity — session summaries and context documents are stored so the AI can remember prior conversations.
• To send transactional emails — email verification and password reset codes are sent via Resend.

The Privacy Boundary

Your private session data is never shared with your partner or with the Shared Agent unless you explicitly choose to share a note. This boundary is enforced at the server level — it is not a UI-level restriction.

When you share a note, only the text you selected crosses the boundary. Your name is not attached to it in the shared context.

Third-Party Services

• Anthropic (Claude API) — processes conversation content to generate AI responses. Anthropic's data retention policy applies to data sent to their API. See Anthropic's privacy policy.
• Resend — sends transactional emails (verification codes, password resets). See Resend's privacy policy.
• Apple — authenticates Sign in with Apple users. See Apple's privacy policy.

Data Storage and Security

Your data is stored in a server-side database hosted on Railway in the United States (US East). API keys and sensitive credentials are never stored on your device. Communication between the app and server uses HTTPS/WSS encryption. Passwords are hashed using argon2id and are never stored in plain text.

Data Retention

Your data is retained for as long as your account exists. When you delete your account (available in Settings), all of your data is permanently and immediately purged, including:

• Your user profile
• All private sessions and messages
• All selected notes
• Your private context document
• Your relationship and all shared sessions (your partner will lose access to shared session history)

Your Rights

• Access — you can view all your data within the app.
• Deletion — you can delete your account and all associated data at any time from Settings.
• Correction — you can update your name in Settings.

Children

Tandem is not intended for anyone under the age of 18. We do not knowingly collect data from minors.

Changes to This Policy

We may update this policy from time to time. Changes will be posted on this page with an updated effective date.

Contact

Questions about this policy? Email us at ferdinandosigona@gmail.com.