Privacy Policy
Effective: May 8, 2026
Summary
Asios Standup helps small recurring groups keep a daily ritual alive. Unlike Asios Rooms (which is ephemeral), Standup deliberately stores your check-ins so the group can read its own history. We don't sell your data, don't train AI on it, and any host can permanently delete a group at any time. We strip obvious PII (emails, phone numbers, long digit runs) from check-in text before it leaves our servers for an AI provider.
What We Collect
Account data
Email address, hashed password (bcrypt), display name, and timezone (auto-detected from your browser, used to schedule daily prompts in your local time). We never store your password in plain text.
Group data
Group name, template choice, schedule (daily-prompt time, weekly-recap time, IANA timezone), member roster, member roles (host / member), and host-defined custom prompt text on Pro+ tiers. The host owns this data. Members joining a group consent to participating in it.
Check-ins
Whatever you write in your daily check-in (up to 4,000 characters), the timestamp, and your streak count. Check-ins are visible to other members of your group and to the AI custodian that writes acknowledgements and the Sunday recap. They are not visible to anyone outside your group.
Voice check-ins (Pro+)
Audio recordings (≤ 60 seconds, ≤ 2.5 MB) are uploaded to our server, sent to OpenAI Whisper for transcription, and then discarded — we do not retain the original audio file. The transcribed text is stored as a normal check-in and visible to your group.
Payment data
Payments are processed by Stripe. We store your Stripe Customer ID and Subscription ID per group; we do not store credit-card numbers. Stripe's privacy policy applies to payment processing.
Server logs
IP addresses are temporarily logged for rate limiting and abuse prevention, and are auto-deleted within 48 hours.
AI Processing and Third-Party Processors
An AI custodian ("Asios") writes the daily prompt, acknowledges each check-in, drafts the weekly recap, and may send a private nudge to anyone who has gone quiet for two days. To do this, we route text to one of our AI providers based on your group's plan.
• Free plan: Groq (Llama 3.3 70B). Pro / Team: Anthropic (Claude). OpenAI may be used as a fallback.
• Voice transcription (Pro+) is always OpenAI Whisper — Whisper is the only provider we use for audio.
• None of these providers train on your data on their production API tiers.
• Providers may retain the request for up to 30 days for safety/abuse monitoring only.
• Before any text leaves us for an AI provider, we strip obvious PII: email addresses, phone numbers, and long digit runs (12+ digits) are replaced with [email], [phone], [number].
• Voice audio cannot be redacted before transcription; if you don't want raw audio sent to Whisper, type your check-in instead.
Other service providers process your data on our behalf:
Render (USA) — Database and backend hosting
Vercel (USA) — Frontend hosting
Stripe (USA) — Payment processing (PCI DSS compliant)
Resend (USA) — Transactional email (group invites, weekly recap, quiet-member nudges)
Groq (USA) — AI inference (Free plan)
Anthropic (USA) — AI inference (Pro & Team plans)
OpenAI (USA) — AI inference fallback + Whisper voice transcription
See the subprocessor list for the full table.
What We Don't Do
- We don't sell your data to anyone
- We don't use advertising cookies or run ads
- We don't track you across other websites
- We don't share check-ins outside your group
- We don't train AI models on your data
- We don't send marketing emails unless you opt in
- We don't use member email addresses for anything other than group-related notifications and account flows
Data Retention
| Data Type | Retention Window | Notes |
|---|---|---|
| Check-ins (Free plan) | Stored indefinitely; visible for 14 days | Older check-ins are hidden in the UI but remain in the database; upgrade to Pro reveals full history |
| Check-ins (Pro / Team) | Until host deletes the group | Full history visible to members |
| Voice audio (Pro+) | Discarded after transcription | Only the transcribed text is stored |
| Group + member data | Until host deletes the group | Host-initiated delete is permanent |
| Account data | Until you delete your account | Email asios_app@proton.me to delete |
| Rate-limit / IP logs | 48 hours | Auto-deleted |
| AI usage log (cost tracking) | 12 months | Records provider, model, token count, cost — no message content |
| AI provider request logs | ≤ 30 days | Held by Groq / Anthropic / OpenAI for safety monitoring only |
| Database backups | 30 days | Auto-purged by provider |
| Payment records | 7 years | Required by law |
Hosts vs Members
Each group has one host. The host:
- Owns the billing and the group's configuration (schedule, prompt template, member list)
- Can remove a member, which immediately stops new check-ins from that member but does not delete past check-ins
- Can delete the entire group, which permanently deletes all check-ins, summaries, and member rows for that group
Members can leave a group at any time. To remove your past check-ins from a group you've already left, email asios_app@proton.me with the group name and your account email.
Your Privacy Rights
You have the right to:
- Access: Request a copy of your account data and check-ins
- Deletion: Delete your account and all associated data
- Portability: Export your data in a machine-readable format
- Correction: Update inaccurate information
To exercise these rights, email asios_app@proton.me. We respond within 30 days.
Security
We use industry-standard security: HTTPS for all traffic, bcrypt-hashed passwords, JWT authentication, per-route rate limiting, and per-group AI spend caps. The Service is hosted on Render (backend) and Vercel (frontend), both SOC 2 compliant.
Children
The Service is not directed at children under 13 and we do not knowingly collect data from anyone under 13. If you believe a child has signed up, email us and we will delete the account.
Changes
We may update this policy. Material changes will be communicated via the Service or by email to account holders. Continued use after changes constitutes acceptance.
Contact
Email asios_app@proton.me. Please include your account email address. We may ask for identity verification before fulfilling sensitive requests.
Asios LLC · Austin, TX · USA