Legal

Privacy Policy

Last updated: March 31, 2026

Nudge is operated by Wilcodes LLC ("we", "us", "our"), an AI accountability partner delivered via Telegram. This policy explains what data we collect, how we store it, who can access it, and your rights.

We built Nudge for sensitive conversations — health goals, career frustrations, financial stress. The architecture is designed so that privacy is structural, not just a promise.

1. What We Collect

Profile Information

During the discovery onboarding, Nudge asks for your name, location (for timezone), daily schedule, and the life areas you want help with (work, health, fitness, finances, personal goals, relationships, mental wellness). You choose what to share — nothing is required beyond a name and timezone.

Sensitive Information

Nudge is designed for conversations about personal goals, which may include topics related to your physical health, mental health, financial situation, or relationships. Under data protection laws (including GDPR Article 9), some of this information may be considered "special category" or sensitive data.

By using Nudge and sharing this information, you explicitly consent to its processing for the purpose of providing personalized accountability check-ins. You are never required to share sensitive information — Nudge works with whatever level of detail you are comfortable with. You can ask your agent to remove any sensitive information from your profile at any time.

Conversations

Your conversations are not stored on our servers. Messages are processed in real time by our AI provider and are not saved to disk. Nudge remembers you through your profile — not by storing your chat history.

Your agent updates your profile based on what you share — for example, noting a new goal, a life change, or a schedule update. This profile contains your preferences, goals, and commitments, but not your raw messages.

How Nudge Remembers

Nudge maintains conversational continuity through a session managed by our AI provider (Anthropic). This session allows your agent to reference recent conversations within a session. When a session ends or is reset, that conversational context is cleared. Your profile (goals, schedule, commitments) persists independently and is what your agent relies on for long-term context.

Deleting your account (via /deleteaccount) removes everything — your profile, session data, scheduled check-ins, and all associated data.

Your messages also pass through Telegram (which stores bot messages on its servers — see below) and Anthropic (which may retain API data for up to 30 days for abuse monitoring, then deletes it — see section 3).

You can delete all of your data at any time by sending /deleteaccount in Telegram.

Usage Metrics

We track per-user daily message counts, character counts, check-in counts, and API token usage for enforcing limits and monitoring costs. We also track subscription status (tier, trial start date, bonus credits).

Payment Information

Payments are processed entirely by Stripe. We never see, store, or handle your credit card number. Stripe provides us with your subscription status and a customer identifier — nothing more. See Stripe's privacy policy.

What We Do NOT Collect

• Device identifiers or advertising IDs
• Location data beyond your stated timezone
• Contacts, photos, or files from your phone
• Browsing history or app usage data
• Data from any other Telegram conversations

2. How Your Data Is Stored

Isolated Containers

Each Nudge user gets their own isolated container for AI processing. Your profile and agent instructions are stored in a separate folder per user and are only accessible to your agent container. Containers are ephemeral — they spin up to process your message and are destroyed immediately after.

Encryption at Rest

Our database is encrypted using SQLCipher (AES-256). The database file is unreadable without the encryption key, protecting your data against unauthorized disk access or backup theft.

Server Location

Nudge runs on servers hosted by Hetzner in Ashburn, Virginia (US). If this changes, we will notify you.

Credential Security

API keys and authentication tokens are managed by a credential proxy at the network level. Your agent container cannot access, leak, or expose credentials because they are never injected into the container environment.

3. Who Can Access Your Data

Your Agent

Your Nudge agent — the AI running inside your container — reads your profile and conversation history to provide personalized, context-aware check-ins. It uses past conversations to follow up on commitments and track your progress over time. This is the only automated system that accesses your data.

Nudge Operators (Us)

Your conversations and profile are stored in per-user folders on our servers. An administrator with server access can technically read them. We do not routinely access user conversations or profiles. We would only do so to debug a critical issue you report, and will notify you when we do. Administrative access is logged.

Telegram (Messaging Platform)

Nudge operates via Telegram's Bot API. Messages between you and Nudge are not end-to-end encrypted— Telegram's end-to-end encryption (Secret Chats) is not available for bots. This means Telegram stores your messages on its servers and can access them. Telegram may also respond to law enforcement requests under its own policies.

See Telegram's privacy policy for details on how they handle your data.

Anthropic (AI Provider)

Nudge uses Anthropic's Claude API to power the AI. Your messages are sent to Anthropic's API for processing. Under Anthropic's commercial API terms:

• Your data is not used to train AI models
• Anthropic may retain API inputs/outputs for up to 30 days for safety and abuse monitoring
• After 30 days, data is deleted from Anthropic's systems

See Anthropic's privacy policy and usage policy for details.

Law Enforcement

If compelled by a valid court order or subpoena, we may be required to provide the data we hold: your profile, conversation history, usage metrics, and subscription status. We will notify you before disclosing your data unless legally prohibited from doing so.

No One Else

We do not sell, share, or provide your data to advertisers, data brokers, analytics companies, or any other third party.

4. Data Retention

While You're a User

Your profile and usage metrics are retained for as long as your account is active. Recent conversation history is retained and used as context. Older messages are automatically summarized and the raw messages are deleted (see "Conversation Lifecycle" above). Your agent relies on summaries and your profile for long-term context.

After Cancellation

If you cancel your subscription, your profile and usage data are preserved but messaging and check-ins are paused. You can send /upgrade in Telegram at any time to resubscribe and pick up where you left off.

After Deletion

If you request account deletion (send /deleteaccount in Telegram or email us), we will promptly:

• Delete your profile folder and all data inside it
• Remove your record from our user database
• Cancel your Stripe subscription

Deletion from our systems is typically completed within minutes. However:

• Server logs may contain metadata (timestamps, error messages) that are purged on a rolling 14-day cycle
• Anthropic may retain API data for up to 30 days under their abuse monitoring policy — we cannot delete this on their systems
• Telegram retains bot message history on their servers under their own retention policy — we cannot delete this on their systems

5. Your Rights

You have the right to:

• Access — Request a copy of all data we hold about you. Email us at hello@hellonudge.me.
• Correction — Ask Nudge to update incorrect profile information at any time during conversation.
• Deletion — Send /deleteaccount in Telegram for immediate deletion of your account and all associated data.
• Withdrawal of Consent — Stop using Nudge at any time. Send /cancel to cancel your subscription, or /deleteaccount to delete everything.
• Restriction — Ask us to limit how we process your data.

We will respond to all data rights requests within 30 days.

6. For Users in the European Union (GDPR)

If you are located in the EU/EEA, you have additional rights under the General Data Protection Regulation (GDPR):

• Legal basis: We process your data based on contractual necessity (to provide the service you signed up for) and legitimate interest (to maintain security and prevent abuse).
• Data transfers: If our servers are located outside the EU, we rely on standard contractual clauses or adequacy decisions for data transfers.
• Supervisory authority: You have the right to lodge a complaint with your local data protection authority.

7. For Users in California (CCPA)

If you are a California resident, the California Consumer Privacy Act (CCPA) gives you additional rights:

• Right to know: What personal information we collect and how it's used (see sections above).
• Right to delete: Request deletion of your personal information.
• Right to opt-out: We do not sell personal information. There is nothing to opt out of.
• Non-discrimination: We will not treat you differently for exercising your CCPA rights.

8. Data Breach Notification

In the event of a data breach that affects your personal information, we will:

• Notify affected users via Telegram and/or email within 72 hours of becoming aware of the breach
• Describe the nature of the breach, the data affected, and the steps we are taking
• Notify relevant supervisory authorities where required by law (e.g., GDPR, state breach notification laws)

In the event of a breach, conversation history, profiles, and usage metrics could potentially be exposed. This is why we use database encryption (SQLCipher), per-user isolation, and server-level encryption to minimize risk.

9. Cookies

The Nudge website uses only essential cookies required for the site to function (e.g., session management if you log in to a dashboard). Our checkout page uses Stripe.js, which may set its own cookies for fraud prevention and payment processing — see Stripe's cookie policy. We do not use tracking cookies, analytics cookies, or advertising cookies.

10. Children

Nudge is not intended for users under 16 years of age. We do not knowingly collect data from children. If you believe a child under 16 is using Nudge, please contact us and we will delete their account.

11. Changes to This Policy

If we make material changes to this privacy policy, we will notify you via Telegram message and update the "Last updated" date at the top. Continued use after notification constitutes acceptance of the updated policy.

12. Contact

For privacy questions, data requests, to report a concern, or if something feels off:

• X: @hellonudgeme
• Telegram: Send /help in your chat with Nudge

Data controller: Wilcodes LLC, Florida, United States.

We aim to respond to all inquiries within 7 business days.