This policy describes how Sojuki (the "App") handles your personal data when you use our services. We've written it to be clear: we want you to understand exactly what happens with your information.
1. Who is responsible
The data controller is Felipe Lechuga, a natural person based in Chile, operating Sojuki. For any privacy, data or rights inquiries, write to app@sojuki.com.
2. What data we collect
Only what's necessary for the App to work. Specifically:
2.1 Data you give us
- Email and name: when you create an account (via Clerk, our authentication provider).
- Profile photo (optional): if you choose to upload one.
- Pet information: name, species, breed, dates, photos, personality traits, microchip, weight.
- Pet health: vaccines, medications, vet visits.
- Tasks and routines: walks, meals, baths, walk notes, reminders.
- Household members: names and emails of people you invite to your Sojuki.
2.2 Data the App generates automatically
- Account identifiers: internal IDs for your user, household and pets.
- Push token from your device (when you accept notifications), to deliver alerts.
- Operational logs: minimal error and performance records (no personal content). Kept up to 30 days.
2.3 Data we ask for only with your permission
- Approximate location (optional): if you enable weather in the App, we send your coordinates to a weather service to show you the forecast. We don't store your location anywhere.
- Camera and photo library (optional): only when you choose to upload a photo.
- Push notifications (optional): you can disable them in your OS settings at any time.
3. How we use your data
- Operate the App: show your household, pets, tasks and notifications.
- Sync between members of your household.
- Generate AI messages and summaries (see section 5).
- Send the reminders and notifications you requested.
- Diagnose technical issues and improve the service.
- Comply with legal obligations when applicable.
What we don't do: we don't sell your data, don't use it for third-party advertising, and don't build profiles for external marketing.
4. Who we share your data with
We work with providers ("subprocessors") that help us run Sojuki. Each receives only the minimum information needed for their function:
| Provider | Function | Data received | Location |
|---|---|---|---|
| Clerk | Authentication | Email, name, hashed password or OAuth tokens | United States |
| Railway | Server and database hosting | All App information | United States |
| Cloudflare R2 | Photo storage | Profile and pet photos | Global network (Cloudflare) |
| Anthropic (Claude API) | AI message generation | Pet names, household data and routines (see section 5) | United States |
| Open-Meteo | Walk weather | Approximate coordinates (not stored) | Europe |
| Expo (push) | Push notification delivery | Push token + notification content | United States |
Some of these providers process data outside Chile. International transfers are made under standard contractual clauses and/or recognized legal frameworks (Data Privacy Framework, SCC) as applicable.
5. Artificial intelligence
Sojuki uses Claude (by Anthropic) to generate content like weekly letters and daily messages "written by your pet". To do this, we send Anthropic a context that may include: your pet's name, household members' first names, completed or pending tasks from the last week, weather, and upcoming events (birthdays, vaccines).
We never send Anthropic: your email, your national ID, passwords, payment information, or the content of private notes you write.
Per its commercial terms, Anthropic does not use this context to train its models. More information in its privacy policy: anthropic.com/legal/privacy.
6. How long we keep your data
- While your account is active: indefinitely.
- After closing your account: we delete personal data within up to 30 days.
- Server logs: up to 30 days.
- Backups: up to 90 days, encrypted.
If the law requires us to retain something longer (e.g. tax information), we keep it only for the legally mandated period.
7. Your rights
Under Chile's Law 19,628 (Protection of Private Life) and Law 21,719 once in effect, and as a baseline for users elsewhere, you have the right to:
- Access the personal data we hold about you.
- Rectify inaccurate or outdated data.
- Cancel your account and request deletion of your data.
- Object to processing in specific cases.
- Portability: request an exportable copy of your data.
To exercise any of these rights, write to app@sojuki.com. We respond within 15 business days. If you live in the European Union, you can also contact your local data protection authority.
8. Children
Sojuki is not directed at children under 13. We don't knowingly collect data from children. If you discover that a minor under 13 created an account without parental authorization, write to us and we will delete it.
9. Security
We apply reasonable technical and organizational measures to protect your data: encrypted connections (HTTPS/TLS), hashed passwords, restricted server access, encrypted backups. No system is 100% invulnerable, but we take this responsibility seriously.
10. Changes to this policy
If we make material changes, we'll notify you via email and/or in the App at least 15 days before they take effect. Minor changes (corrections, clarifications) are published here with an updated date at the top.
11. Contact
Questions, complaints, exercising rights? Write to app@sojuki.com. We always reply.