Legal

Privacy Policy

Last updated: March 9, 2026

Nudge ("we", "us", "our") is an AI accountability partner delivered via Telegram. This policy explains what data we collect, how we store it, who can access it, and your rights.

We built Nudge for sensitive conversations — health goals, career frustrations, financial stress. The architecture is designed so that privacy is structural, not just a promise.

1. What We Collect

Profile Information

During the discovery onboarding, Nudge asks for your name, location (for timezone), daily schedule, and the life areas you want help with (work, health, fitness, finances, personal goals, relationships, mental wellness). You choose what to share — nothing is required beyond a name and timezone.

Conversations

Everything you send to Nudge via Telegram, and every response Nudge sends back. This includes check-in responses, free-form messages, commitment tracking, and advice requests.

Usage Metrics

We track per-user daily message counts and check-in counts for enforcing tier limits. We also track subscription status (tier, trial start date, bonus credits). We do not track what you said — only how many messages were exchanged.

Payment Information

Payments are processed entirely by Stripe. We never see, store, or handle your credit card number. Stripe provides us with your subscription status and a customer identifier — nothing more. See Stripe's privacy policy.

What We Do NOT Collect

  • Device identifiers or advertising IDs
  • Location data beyond your stated timezone
  • Contacts, photos, or files from your phone
  • Browsing history or app usage data
  • Data from any other Telegram conversations

2. How Your Data Is Stored

Isolated Containers

Each Nudge user gets their own isolated container. Your profile, conversation history, and agent instructions live inside your container and are completely separated from other users. There is no shared database of user conversations.

Encryption at Rest

Our servers use full-disk encryption (LUKS). If someone physically steals the server hardware, they cannot read any user data without the encryption key.

Server Location

Nudge runs on servers hosted by Hetzner. We will clearly state the server region (EU or US) before you sign up. If this changes, we will notify you.

Credential Security

API keys and authentication tokens are managed by a credential proxy at the network level. Your agent container cannot access, leak, or expose credentials because they are never injected into the container environment.

3. Who Can Access Your Data

Your Agent

Your Nudge agent — the AI running inside your container — reads your profile and conversation history to provide personalized check-ins. This is the only automated system that accesses your data.

Nudge Operators (Us)

We do not have routine access to your conversations or profile content. Accessing user container data requires deliberate administrative action, which is logged and audited. We would only do this to debug a critical issue you report, and only with your explicit permission.

Anthropic (AI Provider)

Nudge uses Anthropic's Claude API to power the AI. Your messages are sent to Anthropic's API for processing. Under Anthropic's commercial API terms:

  • Your data is not used to train AI models
  • Anthropic may retain API inputs/outputs for up to 30 days for safety and abuse monitoring
  • After 30 days, data is deleted from Anthropic's systems

See Anthropic's privacy policy and usage policy for details.

No One Else

We do not sell, share, or provide your data to advertisers, data brokers, analytics companies, or any other third party. Period.

4. Data Retention

While You're a User

Your profile, conversation history, and usage data are retained for as long as your account is active. This is necessary for Nudge to work — your agent needs your history to provide personalized check-ins and track progress over time.

After Cancellation

If you cancel your subscription, your data remains intact. You drop to the trial tier but your profile and history are preserved. You can upgrade again at any time and pick up where you left off.

After Deletion

If you request account deletion (message Nudge "delete everything" or email us), we will:

  • Destroy your container and all data inside it (profile, conversations, logs)
  • Remove your record from our user database
  • Cancel your Stripe subscription
  • Complete deletion within 30 days

Note: We cannot delete data that Anthropic has retained under their 30-day abuse monitoring window. After that window, it is automatically deleted by Anthropic.

5. Your Rights

You have the right to:

  • Access — Request a copy of all data we hold about you. Message Nudge "export my data" or email us.
  • Correction — Ask Nudge to update incorrect profile information at any time during conversation.
  • Deletion — Request complete deletion of your account and all associated data.
  • Portability — Receive your data in a standard, machine-readable format.
  • Withdrawal of Consent — Stop using Nudge at any time. Cancel your subscription and request deletion.
  • Restriction — Ask us to limit how we process your data.

We will respond to all data rights requests within 30 days.

6. For Users in the European Union (GDPR)

If you are located in the EU/EEA, you have additional rights under the General Data Protection Regulation (GDPR):

  • Legal basis: We process your data based on contractual necessity (to provide the service you signed up for) and legitimate interest (to maintain security and prevent abuse).
  • Data transfers: If our servers are located outside the EU, we rely on standard contractual clauses or adequacy decisions for data transfers.
  • Supervisory authority: You have the right to lodge a complaint with your local data protection authority.

7. For Users in California (CCPA)

If you are a California resident, the California Consumer Privacy Act (CCPA) gives you additional rights:

  • Right to know: What personal information we collect and how it's used (see sections above).
  • Right to delete: Request deletion of your personal information.
  • Right to opt-out: We do not sell personal information. There is nothing to opt out of.
  • Non-discrimination: We will not treat you differently for exercising your CCPA rights.

8. Cookies

The Nudge website uses only essential cookies required for the site to function (e.g., session management if you log in to a dashboard). We do not use tracking cookies, analytics cookies, or advertising cookies. No cookie consent banner is needed because we don't track you.

9. Children

Nudge is not intended for users under 16 years of age. We do not knowingly collect data from children. If you believe a child under 16 is using Nudge, please contact us and we will delete their account.

10. Changes to This Policy

If we make material changes to this privacy policy, we will notify you via Telegram message and update the "Last updated" date at the top. Continued use after notification constitutes acceptance of the updated policy.

11. Contact

For privacy questions, data requests, or concerns:

  • Email: privacy@getnudge.ai
  • Telegram: Message @NudgeBot with your request

We aim to respond to all inquiries within 7 business days.