Privacy Policy

Intuitive-Me — a product of Intuitive Pathos LLC

• Effective date: May 27, 2026
• Last updated: May 26, 2026
• Contact: matthew.lashomb@intuitivepathos.com

1. Plain-English summary

We built Intuitive-Me so you could understand your own moods without sending us your data. Here is the short version, in one paragraph:

Your camera frames and microphone audio never leave your device. Your mood selections, journal entries, tic logs, urge events, badges, and XP are stored locally on your phone via Android / iOS encrypted storage. We do not collect analytics. We do not track you across apps or websites. We do not sell your data. If you turn on the optional AI reflection feature, only text you write is sent to our server, which forwards it to Anthropic’s Claude API for a wellness reflection — and Anthropic has confirmed they will not train on this traffic. If you ever want a copy of your data, you can export it from the app. If you ever want to delete it, you can do that from the app too. No account, no email signup required to use the core wellness loop.

Everything below is the long version, in plain language, with no lawyer tricks.

2. Who we are

Intuitive-Me is published by:

Intuitive Pathos LLC A New York limited liability company, formed 2025 Manlius, New York, USA

The founder, sole owner, and the person you reach when you write to the contact address is Matthew Lashomb, RN BSN SCRN. He reads the privacy email himself.

3. What Intuitive-Me is — and what it is not

Intuitive-Me is a wellness app. It helps you build awareness of your moods, track patterns over time, practice behavioral techniques (including techniques aligned with CBIT — Comprehensive Behavioral Intervention for Tics), and journal in short bursts.

Intuitive-Me is not a medical device. It is not FDA-cleared. It does not diagnose, treat, cure, mitigate, or prevent any disease or medical condition. It is not a substitute for care from a licensed clinician. This posture is consistent with the FDA General Wellness Policy (2019) for low-risk general-wellness products.

If you are in crisis, please call or text 988 (US Suicide and Crisis Lifeline), call the Veterans Crisis Line (988 then press 1), text TREVOR to 678678 (Trevor Project), or call 1-800-422-4453 (Childhelp National Child Abuse Hotline). Intuitive-Me is not a crisis service.

4. Data the app touches — full inventory

This section lists every category of information the app interacts with and tells you exactly where it lives, who can see it, and how long it stays.

4.1 Camera frames (video)

When you start a 15-second mood capture session, your front camera records facial expressions.

• Stays on your device. Camera frames are processed locally by the app and are never uploaded to any server. Anthropic does not see them. Intuitive Pathos does not see them. No third party sees them. They exist only in your phone’s temporary memory during the session.
• Deleted automatically. After the 15-second session ends, the frames are dropped from memory. Nothing about the raw video is stored on your device after the session completes.
• What is stored locally: only aggregated, derived numbers (mood scores, intensity values) — not the frames themselves.

4.2 Microphone audio

When you grant microphone permission, the app may capture voice audio during a session.

• Stays on your device. Audio is processed locally and is never uploaded to any server.
• Deleted automatically. Audio is dropped from memory at the end of the session. No raw audio is stored on your device after the session.

4.3 Mood selections

When you tap a mood button or set a mood intensity, those values are stored locally on your device in encrypted app storage (iOS Keychain / Android EncryptedSharedPreferences via AsyncStorage).

• Stays on your device by default. Mood selections never leave your device unless you specifically opt in to AI reflection (see §4.7) or the federated research program (see §4.8).
• You can delete this data anytime from Settings → “Clear all data.”

4.4 Journal entries

When you write a journal entry, the text is stored locally on your device in encrypted app storage.

• Stays on your device by default. Journal text never leaves your device unless you specifically opt in to AI reflection (see §4.7).
• You can delete journal entries individually or clear all data from Settings.

4.5 Tic logs and urge events

If you use the CBIT-aligned tic-training features, the app stores:

• timestamps of when you logged a tic
• the tic type / location you tagged
• urge events (intensity, duration, what you noticed)

These are stored locally on your device. They never leave your device unless you opt in to federated research (see §4.8).

4.6 Badges, XP, streaks

Gamification state — badges earned, experience points, daily streak count — is stored locally on your device. None of this is uploaded or shared.

4.7 AI reflection (optional, opt-in)

Intuitive-Me includes an optional AI-reflection feature, powered by Anthropic’s Claude model. This feature is disabled by default. To use it you must explicitly enable it in Settings.

When you enable it and use it:

• Only text you write is sent to our server. Camera frames, microphone audio, and the raw values from any sensor are never sent. Only the journal text you’ve typed and a small set of aggregated mood scalars (numbers like “mood intensity 4/10”).
• The request goes first to a server-side proxy that we operate at a Cloudflare Worker URL configured in the app. This proxy holds the Anthropic API key — the app itself never has the key, so the key cannot be extracted from the app binary.
• The proxy forwards the sanitized request to Anthropic’s Claude API and returns the reflection text to the app.
• **Anthropic has confirmed (verified by the founder on May 25,
  2026. that traffic from our API account is excluded from model training.** Your text is used only to generate the immediate reflection.
• We log only operational metadata (timestamp, rate-limit counters, error codes) on the proxy — never the text content of your request or the reflection.
• You can disable the feature anytime in Settings.

4.8 Federated research opt-in (optional, opt-in, feature-flag-gated)

We are building (but have not yet shipped) a privacy-preserving federated research program that lets users contribute differentially- private model updates — never raw data — to improve wellness models for everyone. This feature is disabled by default and gated behind a feature flag (Config.FEDERATION_ENABLED = false in the shipping binary).

If and when we enable federated research, we will:

• ask for your explicit, separate consent with a clear description of what is being contributed
• send only differentially-private gradient updates — not raw data, not journal text, not mood values, not video, not audio
• never send your data to any other company; updates go to our own aggregation server (Pathos-Central)
• update this Privacy Policy and notify you in-app before the feature is enabled

Until that day, the federated research feature is dormant in the shipping binary. No data leaves your device through it.

4.9 Push notifications

If you grant notification permission, the app may send you reminders (for example, “ready for your next mood check?”). The notification text is composed on your device. Apple Push Notification Service (APNs) and Firebase Cloud Messaging (FCM) deliver the notification — Apple and Google may receive standard delivery metadata (device token, delivery timestamp), per their published policies. We do not associate notification metadata with your identity beyond the device token.

4.10 Crash reports and analytics

We do not collect analytics. No third-party analytics SDK is embedded in the app. We do not use Google Analytics, Mixpanel, Amplitude, Segment, Heap, or any equivalent.

We do not collect crash reports off-device in v1.0.0. The app includes an on-device error reporter that writes runtime errors to the local console for debugging — those errors never leave your device. We may add an opt-in crash-reporting service in the future; if we do, this Privacy Policy will be updated and we will ask for your explicit consent.

4.11 Account / login

The core wellness loop requires no account. No email signup, no password, no phone number. The first time you open the app, a random local identifier is generated on your device for AsyncStorage keying. That identifier never leaves your device.

If we later add optional account features (e.g., cross-device sync), they will be opt-in, and we will update this Privacy Policy.

5. What we do NOT collect

To be unambiguous, the following are never collected by us:

• camera frames / video
• microphone audio
• precise location (GPS)
• contacts, calendar, photos library, or files on your device
• web browsing history
• device advertising identifier (IDFA / AAID)
• biometric identifiers (fingerprint, face print)
• payment card information (we do not sell anything in v1.0.0)
• social-media identities

6. Legal bases for processing (GDPR / UK GDPR)

If you are in the UK, EU, EEA, or Switzerland, our legal bases under the UK GDPR / EU GDPR are:

• Consent (Art. 6(1)(a)) for optional features — AI reflection, federated research, push notifications. You can withdraw consent anytime in Settings. Withdrawal does not affect the lawfulness of processing carried out before withdrawal.
• Performance of a contract (Art. 6(1)(b)) for delivering the core app functionality you asked for when you installed the app.
• Legitimate interest (Art. 6(1)(f)) for on-device error logging necessary to keep the app working.

We are the data controller for any data we touch. Our representative in the EU and UK, if and when designated under Article 27 GDPR, will be listed here.

7. Your rights

You have rights over your data. Here is how to exercise them.

7.1 Right to access / portability

The app includes a data export feature in Settings. Tap “Export my data” to receive a JSON file with every piece of information the app has stored about you locally. This file is generated on-device and shared via your device’s normal share sheet — we do not see it.

If you cannot use the in-app export (e.g., the app is broken on your device), write to matthew.lashomb@intuitivepathos.com and we will help.

7.2 Right to deletion

The app includes a “Clear all data” action in Settings that removes every piece of information stored locally. This is irreversible. We do not retain server-side copies of your data, so there is nothing for us to delete beyond what your device deletes.

You can also uninstall the app — iOS and Android will purge the app’s storage as part of the uninstall.

7.3 Right to correction

Mood selections, journal entries, tic logs, and urge events can be edited or deleted directly in the app. If you find something we got wrong, write to matthew.lashomb@intuitivepathos.com.

7.4 Right to object / restrict

Disable any optional feature in Settings, or uninstall the app.

7.5 Right to lodge a complaint

If you are in the UK, you can complain to the Information Commissioner’s Office (ICO) at ico.org.uk. If you are in an EU / EEA country, you can complain to your national data protection authority.

7.6 Right to know (CCPA / California)

If you are a California resident, the California Consumer Privacy Act gives you:

• the right to know what personal information we collect (this document answers that — see §4 and §5)
• the right to delete your personal information (see §7.2)
• the right to opt out of the sale of your personal information (we do not sell personal information — not for money, not in exchange for anything)
• the right to non-discrimination if you exercise your rights

To make a CCPA request, write to matthew.lashomb@intuitivepathos.com with “CCPA request” in the subject line. We will respond within 45 days as required by law.

8. Children’s privacy

Intuitive-Me is intended for users aged 13 and older. We do not knowingly collect personal information from children under 13.

This complies with the US Children’s Online Privacy Protection Act (COPPA) and is consistent with our age-rating choice for both the Apple App Store (12+) and Google Play (Teen / 13+).

If you are a parent or guardian and believe your child under 13 has used the app, write to matthew.lashomb@intuitivepathos.com and we will delete any local data (note: most data stays on the device anyway, so we will guide you on how to clear it).

The app surfaces crisis resources including the Childhelp National Child Abuse Hotline (1-800-422-4453) because we believe age-13+ users in distress should have an obvious path to help. Surfacing a crisis resource is not the same as collecting data about a child.

9. International data transfers

Because we operate from the United States and the AI-reflection feature (when enabled) uses Anthropic’s API, text you choose to submit through the AI-reflection feature may be processed in the United States.

For users in the UK / EU / EEA, this transfer is supported by:

• your explicit consent when you enable the AI-reflection feature, with this Privacy Policy as the disclosure
• Anthropic’s published security and privacy commitments, including their confirmation (verified May 25, 2026) that API traffic from our account is excluded from model training
• our use of HTTPS / TLS for all data in transit
• the proxy’s role as an additional defense-in-depth privacy layer

If you do not enable the AI-reflection feature, no data is transferred internationally — everything stays on your device.

10. Security

We use the following technical and organizational measures:

• on-device encryption at rest: mood, journal, tic-log, urge- event, badge, and XP data are stored in encrypted app storage managed by iOS Keychain / Android EncryptedSharedPreferences, accessed through AsyncStorage
• TLS / HTTPS for all network traffic when AI reflection is used
• server-side proxy architecture that keeps the Anthropic API key off the client device, so a compromised app binary cannot leak the key
• server-side rate limiting at the proxy via Cloudflare KV to prevent abuse
• defense-in-depth PII scrubbing at both the client (before sending) and the proxy (before forwarding to Anthropic)
• algorithm-agile interfaces so we can rotate cryptographic primitives without rebuilding the app

No system is perfectly secure. If you discover a vulnerability, please write to matthew.lashomb@intuitivepathos.com — we will respond, fix, and credit you if you wish.

11. Retention

• On-device data: stays on your device until you delete it (in Settings → “Clear all data”) or uninstall the app. We have no remote copy to retain.
• AI-reflection proxy logs: operational metadata (timestamp, rate-limit counters, error codes) retained for 30 days for security and debugging, then automatically purged. The text content of your reflection request and response is never logged by the proxy.
• Email correspondence: if you write to us at the contact address, we retain the email thread for two years to follow up on requests and comply with applicable law.

12. Cookies and similar technologies

The app does not use cookies. The marketing website (intuitivepathos.com) uses only essential cookies for site function; no third-party tracking cookies are set.

13. Changes to this Privacy Policy

When this Privacy Policy materially changes, we will:

• update the “Last updated” date at the top
• post a notice in the app at the next launch
• if the change affects the AI-reflection or federated-research feature, ask for fresh consent

The history of prior versions is preserved in the open-source repository for the legal documents at the time of writing; we will publish a public diff if we ever materially revise.

14. How to contact us

Email: matthew.lashomb@intuitivepathos.com Alternate: matthew.lashomb@gmail.com Company: Intuitive Pathos LLC, Manlius, New York, USA

For privacy questions, write “Privacy” in the subject line. For CCPA / GDPR / UK GDPR rights requests, write “Rights request” in the subject line.

We aim to respond within 7 days for general questions and within 30 days for formal rights requests (45 days for CCPA).

This Privacy Policy is written in plain English on purpose. If anything here is unclear, tell us — we will rewrite it. The version control is open: every change ships with a public diff.