Lovelara
LOVELARA

Legal

Privacy Policy

Last updated: April 19, 2026

Overview

Lovelara ("we", "us", "our") provides an AI-powered relationship coaching service. We take privacy seriously: your conversations with Lovelara are sensitive, and we treat them that way. This Privacy Policy explains what data we collect, why, how we use it, and the rights you have over it.

This policy is designed to align with the EU General Data Protection Regulation (GDPR), the UK GDPR, and the California Consumer Privacy Act (CCPA/CPRA). For purposes of GDPR, Lovelara is the data controller for personal data processed through the Service.

1. Data We Collect

We collect the following categories of data:

  • Account data: email address, authentication identifiers, and (optional) display name.
  • Conversation data: messages you send to Lovelara, AI responses, voice recordings (when you use voice features), transcripts, and any context you choose to provide (e.g., relationship background, ages, situation notes).
  • Usage data: feature interactions, message counts, voice seconds used, and product analytics.
  • Device & technical data: IP address, browser type, operating system, device identifiers, and timestamps.
  • Billing data: subscription tier, payment status, and a customer identifier from our payment processor. We do not store full credit card numbers — those are handled directly by the payment processor.

2. How We Use Your Data

We process personal data on the following legal bases (GDPR Art. 6):

  • Performance of a contract — to provide the Service, generate AI responses, manage your account, and process payments.
  • Legitimate interests — to operate, secure, and improve the Service, prevent fraud and abuse, and conduct aggregate analytics.
  • Consent — for optional features such as voice recording or marketing communications. You can withdraw consent at any time.
  • Legal obligations — to comply with applicable law, tax, and accounting requirements.

We do not sell your personal data, and we do not use your conversations to train third-party foundation AI models.

3. AI Processing & Sub-processors

To generate responses, your messages and necessary context are sent to AI model providers acting as our sub-processors. These providers process your data only to return the AI response and are contractually restricted from using it to train their models.

Current sub-processors include:

  • Cloud hosting & database providers (for storage and authentication)
  • AI model providers (for text and voice generation, e.g., Google, OpenAI via API)
  • Speech-to-text and text-to-speech providers (for voice features)
  • Payment processor (for subscription billing)
  • Email & transactional messaging providers
  • Product analytics & error monitoring providers

A current list of sub-processors is available on request at privacy@lovelara.app.

4. Couples Sessions

When you use the Couples feature, your messages and shared context are visible to the other participant in that session and are processed by our AI to provide guidance to both of you. Do not share information you would not want the other participant to see. Either participant may end a session at any time.

5. Data Retention

We retain account and conversation data for as long as your account is active. You may delete individual sessions or your entire account at any time from your account settings. After deletion, data is removed from active systems within 30 days and from backups within 90 days, except where retention is required for legal, accounting, or fraud-prevention purposes.

6. Security

We use industry-standard safeguards including encryption in transit (TLS), encryption at rest, access controls, and role-based authentication. No system is 100% secure; if we learn of a personal-data breach affecting you, we will notify you and the relevant authorities as required by law.

7. International Transfers

Your data may be processed in countries outside your country of residence, including the United States. Where required, we rely on appropriate transfer mechanisms such as the European Commission's Standard Contractual Clauses to protect your data.

8. Your Rights

Depending on your location, you may have the right to:

  • Access the personal data we hold about you;
  • Correct inaccurate or incomplete data;
  • Delete your data ("right to be forgotten");
  • Restrict or object to certain processing;
  • Receive your data in a portable format;
  • Withdraw consent at any time;
  • Lodge a complaint with your local data protection authority.

California residents have additional rights under CCPA/CPRA, including the right to know what personal information is collected and to opt out of "sale" or "sharing" of personal information (Lovelara does not sell or share personal information for cross-context behavioral advertising).

To exercise any right, email privacy@lovelara.app. We will respond within the timeframe required by applicable law.

9. Children

Lovelara is not directed at children. We do not knowingly collect data from anyone under 18. If you believe a minor has provided us data, contact us and we will delete it.

10. Cookies & Tracking

We use strictly necessary cookies for authentication and session management, and limited analytics to understand how the Service is used. We do not use cross-site advertising trackers. Where required by law, we will request your consent before placing non-essential cookies.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via the Service or by email. The "Last updated" date above shows the latest revision.

12. Contact

For privacy questions or requests, contact: privacy@lovelara.app. See also our Terms of Service and Refund Policy.