Privacy Policy

Pocketo — Last updated: 2026-05-10

This Privacy Policy describes how Pocketo ("we", "us", "the app") collects, uses, and protects your information when you use the Pocketo mobile and web applications.

1. Information We Collect

• Account data: email address, name, password (hashed) when you register.
• Chat content: messages you send to the AI assistant, including text, files, and media.
• Camera content: photos you take or select via the in-app camera/gallery picker, only when you actively initiate the action.
• Audio content: voice recordings you create within the app, only when you tap record.
• Files & documents: files you upload for AI processing or storage.
• Device data: device model, OS version, app version, language for diagnostics.
• Usage data: features used, tokens consumed, error logs.
• Push tokens: for sending notifications you opt into.

We do not collect: location, contacts, SMS, call logs, calendar without explicit OAuth grant, or any data without your action.

2. How We Use Information

• Provide AI assistant features (chat, file analysis, image generation, voice).
• Authenticate users and protect accounts.
• Bill token usage and maintain account balance.
• Send transactional notifications (job completions, payment receipts) you opted into.
• Improve product reliability via aggregated, anonymized diagnostics.

3. Third-Party Services

To deliver AI features, we send your prompts and content to third-party LLM providers:

• OpenAI — chat, image generation, transcription
• Anthropic — chat (Claude models)
• Google — chat (Gemini models)

If you enable BYOK (Bring Your Own Key), data goes directly from us to the provider you authorized using your own API key. We also integrate with: Google OAuth (Calendar, Gmail, Drive), Payriff (payments), WhatsApp Business, Telegram, Instagram — only when you explicitly connect them.

4. Data Storage & Security

• Account data and chat history stored encrypted at rest.
• API keys for connected third-party services encrypted with AES-256-GCM per user.
• Files stored on managed cloud storage with access controls.
• Passwords hashed with bcrypt; never stored in plaintext.
• JWT-based authentication with short-lived access tokens.

5. Data Retention

We keep your data while your account is active. You can delete chats, files, and your entire account from app settings at any time. Deletion is permanent within 30 days. Backups purged within 90 days.

6. Your Rights

• Access your data via in-app Profile/Settings.
• Export chat history and files via Settings → Export.
• Delete specific items or your full account at any time.
• Revoke OAuth grants for connected services in their respective dashboards.
• Contact us to exercise GDPR / CCPA rights below.

7. Children

Pocketo is not intended for children under 13 (or 16 in EU). We do not knowingly collect data from children.

8. Changes

We may update this policy. Material changes will be announced in-app. Continued use after changes constitutes acceptance.

9. Contact

Questions, data requests, or complaints:

Email: sadiqov.cavid@gmail.com
Operator: Pocketo, Baku, Azerbaijan

© 2026 Pocketo. Terms of Service