8upAI, Inc. — Privacy Policy

Effective Date: August 30, 2025
Last Updated: April 17, 2026

This Privacy Policy explains how 8upAI, Inc. (“8up.ai,” “we,” “us,” or “our”) collects, uses, shares, and protects information in connection with our website, mobile apps, and related services (the “Services”). It also describes your privacy rights and how to exercise them. If you do not agree, please do not use the Services.

This Policy works together with our Terms of Service. Capitalized terms not defined here have the meanings given in the Terms.


1) Who We Are and How to Contact Us

Controller/Business: 8upAI, Inc., 8 The Green, STE A, Dover, DE 19901, USA
Email: privacy@8up.ai
 Support: support@8up.ai

EU/UK users: We process personal data in the U.S. If required by law, we will appoint an EU/UK representative and publish their contact details on our website. You may always contact us at privacy@8up.ai.


2) Scope

This Policy applies to personal information we collect online through the Services and offline if you contact us. It does not cover third-party websites or services we do not control.


3) Information We Collect

We collect information you provide, information we collect automatically, and information from service providers/platforms.

3.1 Information You Provide

3.2 Information Collected Automatically

3.3 Information from Others


4) How We Use Information (Purposes)

We use information to:

  1. Provide the Services: account creation, message delivery, UGC hosting, group/community features, troubleshooting.
  2. Safety & Integrity: abuse prevention, content moderation (automated and/or human review), security, and to enforce Terms.
  3. Improve & Develop: analytics, research, testing, quality assurance.
  4. AI Training & Personalization:
  1. Communications: service notices and security alerts; limited product updates where permitted.
  2. Legal & Compliance: comply with law, respond to legal requests, prevent harm or fraud.
  3. Health & Fitness Features: use optional Apple Health or Google Health / Health Connect data as described in Section 3 to provide requested insights, chatbot answers, nutrition features, platform sync, troubleshooting, security, and legal compliance.

5) Our Legal Bases (EEA/UK)

Where GDPR/UK GDPR applies, we rely on:

You can withdraw consent at any time (does not affect prior processing).


6) Sharing and Disclosure

We do not sell personal information and do not “share” personal information for cross-context behavioral advertising.

We may share Apple Health or Google Health / Health Connect data with service providers/processors, including cloud infrastructure and AI service providers, only as needed to provide the user-facing health, fitness, nutrition, wellness, chatbot, or security features you request. We do not sell this data, use it for advertising, share it for cross-context behavioral advertising, or permit providers to use it for unrelated purposes.

We share with:

We require processors to handle data according to our instructions and this Policy.


7) Cookies, SDKs, and Similar Technologies


8) Your Privacy Choices


9) State-Specific U.S. Rights (Summary)

Depending on your state, you may have rights to access/know, delete, correct, opt out of targeted advertising/sale/profiling (we do not engage in targeted ads or sale), and data portability.

How to exercise: email privacy@8up.ai or use in-app controls. We’ll verify requests (e.g., email/account checks). Authorized agents (CA): may submit requests with proof of authorization and identity. We respond within legally required timelines.

9.1 California “Notice at Collection”

We collect the following categories (CPRA) for the purposes in Sections 4–6 and retain them per Section 12:

We do not sell or share personal information for cross-context behavioral advertising. We do not use Sensitive Personal Information for purposes that require a “Limit” right beyond service delivery and security.

If you choose to provide health and fitness data via Apple Health or Google Health / Health Connect, we treat it as sensitive information and use or disclose it only to provide the Services described in this Policy. We do not use or disclose it for purposes that require offering a “Limit” right under CPRA.


10) Children and Teens


11) International Users (EEA/UK and Others)

11.1 Your Rights (EEA/UK)

You may have the right to access, rectify, erase, restrict, object, and port your personal data, and to withdraw consent at any time. You also have the right to lodge a complaint with your data protection authority (e.g., the European Data Protection Board authorities or the UK ICO).

How to exercise: email privacy@8up.ai. We may request additional information to verify your identity and will respond within the timelines set by law.

11.2 Transfers Outside Your Region

We process data in the United States and elsewhere. Where required, we use Standard Contractual Clauses (and any required UK/Swiss addenda) or other approved safeguards to protect your data when transferred. Details are available upon request.


12) Retention

We retain personal information only as long as necessary for the purposes in this Policy:

12.1 Trained Models, Derived Data, and Post-Deletion Use

Apple Health and Google Health / Health Connect data may remain only on your device unless you use features that transmit selected data to us, such as chatbot or insight features; transmitted data is retained only as long as reasonably necessary for the purposes described in this Policy, unless a longer period is required by law.


13) Security

We implement technical and organizational measures designed to protect personal information (e.g., encryption in transit, access controls, monitoring). Chats and community features are not end-to-end encrypted. No system is 100% secure; you are responsible for safeguarding your account credentials.


14) Automated Decision-Making & Profiling

We may use automated processing (including models we train) to support features like recommendations, ranking, safety, and moderation. In regions that grant rights related to automated decisions, you may object, request human review, or contest certain outcomes, subject to applicable law and product capabilities.


15) Third-Party Links and Services

Our Services may contain links to third-party websites, SDKs, or services. We are not responsible for their privacy practices. Review their policies before providing personal information.


16) Changes to This Policy

We may update this Policy from time to time. If we make material changes, we will provide notice (e.g., in-app, email, or posting). Your continued use of the Services after the effective date constitutes acceptance.


17) How to Contact Us

Email: privacy@8up.ai
 Support: support@8up.ai
 Postal: 8upAI, Inc., 8 The Green, STE A, Dover, DE 19901, USA


18) Regional Disclosures (Quick Reference)


Appendix A — “Notice at Collection” (California)

Categories Collected: Identifiers; Customer Records (limited); Internet Activity; Geolocation (coarse); Messages/Posts (UGC); Health & Fitness Data you authorize; Inferences.
Purposes: Provide services (including message delivery and community hosting); security/moderation; improvement; AI training & personalization; communications; compliance.
Retention: See Section 12.
Sold/Shared: We do not sell personal information or share it for cross-context behavioral advertising.
Sensitive Personal Information: We do not use or disclose SPI for purposes that require a “Limit” right beyond service delivery and security.