Privacy Policy

Effective: 2026-05-02 · Last updated: 2026-06-05

Caracue is operated by Clariti LLC, an Ohio limited liability company ("Caracue", "we", "us"). Relationship data is sensitive, and we treat it that way. This policy explains what we collect, how we use it, who we share it with, and the rights you have over your data.

1. Summary (the short version)

• Calendar event titles, locations, descriptions, and your home street address stay on your device by default.
• To generate your suggestions, we send limited context to third-party AI providers: abstracted calendar metadata (event counts, back-to-back blocks, evening availability, keyword tags), your partner's name and pronouns, a coarse home/away signal if you enable it, and any free-text "About your household" context you choose to enter.
• You can opt in to also share event titles and locations for richer suggestions, and you can opt out at any time. If you link with a partner and share calendars, your shared calendar data may likewise be used to generate suggestions.
• We don't sell your data or share it with advertisers, and Caracue does not use your content to train AI models. The third-party AI providers that process your requests do so under their own terms; we don't control or guarantee their data-retention or model-training practices.
• You can export everything we hold or delete your account from inside the app at any time.

2. What stays on your device (never leaves)

• Calendar event titles, descriptions, attendee names, and locations
• Your notes, reflections, and milestone data
• Your home street address (the text you entered)
• Local-only nudge cache and history

3. What we collect and store on our servers

Account data

• An account identifier from your sign-in provider (Apple or Google) and the email address that provider returned, if any
• Your partner's name and pronouns (as you configured)
• Your timezone and notification time
• Your subscription tier
• Your push notification token (used to silently wake the app to refresh nudges)
• Your preferences (nudge intensity, quiet hours, primary use, self-care toggle)
• Your home location coordinates (latitude/longitude), used to sync your home geofence across your devices — the street-address text stays on your device
• Optional free-text "About your household" context you enter in Settings → Personalization (e.g. who drives whom, a regular commitment) — stored on our servers and used only to personalize your nudges

Calendar metadata (abstracted by default)

• Event counts per day; back-to-back meeting block counts
• Earliest and latest event times; evening availability flag
• High-stress keyword matches against the keyword list you configured
• Family/joint event count; weekend density indicator
• Coarse home/away boolean from geofence (only if you opt in)

By default we do not receive your raw event titles, locations, or attendee lists. If you turn on Settings → Share calendar details, event titles, times, and locations are sent with each nudge-generation request — and on to our third-party AI provider — so the AI can author calendar-grounded suggestions. You can turn this off at any time. We don't store your raw event titles as calendar records on our servers; we can't control how third-party AI providers retain or process the requests we send them.

Nudge log

• Each Nudge delivered to you and your action on it (done / snoozed / skipped / not_applicable)
• Category and short trigger metadata used to compute your learned preferences

Partner-link data (Premium tier)

• Encrypted calendar snapshot pushed by you to your partner (only if both of you opt in to calendar sharing)
• Home/away boolean if you opt in to presence sharing
• Either partner can revoke the link at any time, which immediately deletes shared data on both devices and on our servers

4. How we use your data

• To deliver the Service and personalize Nudges to you
• To provide cross-device synchronization of your settings, milestones, and reflections
• To process subscription billing through Apple or Google
• To send you operational notifications (push and email related to your account)
• To detect and prevent abuse, fraud, and security incidents
• To improve the Service in aggregate and pseudonymized form (feature-usage analytics via a third-party analytics provider, tied to your account ID with no event content; you can turn this off in Settings → Privacy)
• To comply with legal obligations

We do not use your data for advertising, do not sell or rent it, and do not share it with data brokers. Caracue does not use your content to train AI models. When you use AI features or share calendar details, your data is sent to third-party AI providers to generate your suggestions; those providers process it under their own terms, which we don't control.

5. Legal bases (GDPR / UK GDPR users)

If you are in the European Economic Area, the United Kingdom, or another jurisdiction with similar law, our legal bases for processing are:

• Contract — to deliver the Service you've signed up for
• Legitimate interests — security, fraud prevention, aggregated product improvement
• Consent — for optional features such as sharing calendar event titles, partner linking, and analytics
• Legal obligation — when required by applicable law

6. Third-party processors

We use the following third-party service providers to operate Caracue. We do not sell or share your personal information for cross-context behavioral advertising.

• Apple Sign In / Google Sign In — authentication only
• Subscription management — manages your subscription state
• Third-party AI providers — AI nudge generation. We send abstracted calendar metadata, your partner's name and pronouns, and any "About your household" context you have entered; we additionally send event titles and locations if you have opted in to "Share calendar details." These providers process your data under their own terms
• Push notification delivery — delivers notifications to your device
• Product analytics — usage analytics tied to your account ID with no event content; you can disable it in Settings
• Crash & error reporting — diagnoses crashes and errors
• Content delivery & email routing — serves the website, handles the contact form, and routes email
• Transactional email — sends account and system emails
• Cloud hosting — runs the application and database

7. International data transfers

Caracue is operated from the United States. If you access the Service from outside the United States, your data may be transferred to, stored, and processed in the United States or in other countries where our processors operate. Where required by law, we rely on appropriate transfer mechanisms (such as the Standard Contractual Clauses approved by the European Commission) for transfers from the European Economic Area, the United Kingdom, or Switzerland.

8. Data retention

• Nudge history: 90 days, then auto-deleted
• Calendar-metadata snapshots used for nudge generation: 30 days
• Account data: kept while your account is active; deleted within 30 days of account deletion
• Backups: rolling 30-day window, then overwritten
• Legal-hold or audit-log data may be retained longer where required by law

9. Security

We implement administrative, technical, and physical safeguards designed to protect your data, including:

• TLS 1.2+ for all data in transit between the app, our servers, and processors
• Application-layer AES-256 encryption of particularly sensitive stored fields (your partner calendar snapshots and any API key you choose to bring)
• Authentication via short-lived JWT access tokens and refresh tokens
• Per-route rate limiting and abuse detection
• Defenses against prompt injection and unsafe AI output
• Application logging and error monitoring; routine security review

No system is perfectly secure. If you become aware of a suspected security issue, please contact us at security@caracue.com.

10. Your rights

For everyone (in-app)

• Export your data — Settings → Advanced → "Export my data" returns a JSON document of every server-side row associated with your account, offered via the system share sheet
• Delete your account — Settings → Advanced → "Delete account" cascades through every server-side row that belongs to you and wipes the local database
• Opt out of analytics — Settings → Privacy → "Anonymous analytics"

For California residents (CCPA / CPRA)

California residents have the right to: know what personal information we collect and how we use it; access a copy of their personal information; correct inaccurate personal information; delete personal information; opt out of any "sale" or "sharing" of personal information for cross-context behavioral advertising (we do neither); and not be discriminated against for exercising these rights.

To exercise your rights, use the in-app export and delete flows above, or email privacy@caracue.com. We will verify the request by reference to your account.

For Virginia, Colorado, Connecticut, Utah, Texas, Oregon, Montana, Tennessee, Iowa, Indiana, Delaware, New Jersey, New Hampshire, Kentucky, Minnesota, Maryland, Rhode Island, Nebraska, and other US-state-privacy-law residents

You have rights to access, correct, delete, and obtain a portable copy of your personal data, and to opt out of targeted advertising, sale of personal data, and certain profiling. We do not engage in targeted advertising, do not sell personal data, and do not perform profiling that produces legal or similarly significant effects. Use the in-app flows or email privacy@caracue.com.

For EEA / UK / Swiss residents (GDPR / UK GDPR)

You have rights to: access; rectification; erasure ("right to be forgotten"); restriction of processing; data portability; objection to processing; and withdrawal of consent. You may also lodge a complaint with your local supervisory authority. Contact privacy@caracue.com.

11. Children's privacy

The Service is intended for users 17 and older. We do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided us with personal information, contact us at privacy@caracue.com and we will delete it promptly.

12. Partner linking and shared accounts

• Both partners must explicitly opt in to a partner link before any data is shared
• Either partner can revoke the link at any time, which immediately deletes shared data on both devices and on our servers
• Only a coarse home/away boolean is shared via presence — never continuous location
• Calendar sharing includes only calendars you have explicitly enabled for sharing. For your own ("Mine") calendars, the events on them are shared; for shared/family calendars you can set attribution rules so only events attributed to you or to "both" are shared

See our Safety page for guidance on partner linking, including in domestic-violence contexts.

13. Do Not Track

The mobile app does not respond to Do Not Track browser signals because it is not a web browser. We do not cross-context track regardless. The marketing site (caracue.com) does not use third-party trackers.

14. Data breach notification

In the event of a data breach affecting your personal information, we will notify you and any required regulators in accordance with applicable law, including the GDPR's 72-hour notification requirement and applicable US state breach notification laws.

15. Changes to this policy

We may update this policy from time to time. We will notify you of material changes by email (if we have your email) or through the Service. The "Last updated" date at the top of this policy reflects the most recent revision.

16. Contact

Privacy questions, data export requests, and deletion requests: use the contact form (topic "Privacy") or email privacy@caracue.com.

Clariti LLC
State of Ohio