Skip to content
PaoPaoHeZi
Home Privacy Account deletion

Google Play compliance

Privacy Policy

Effective date: June 29, 2026

PaoPao AI Journal, also known as PaoPaoHeZi, is a personal journaling, memory, knowledge, and AI assistant app. This policy explains what data we collect, why we use it, how we protect it, and how users can request access, correction, export, or deletion.

App
PaoPao AI Journal / PaoPaoHeZi
Official site
https://paopaohezi.com/
API domain
https://api.paopaohezi.com/
Privacy contact
privacy@paopaohezi.com
Deletion page
Account and data deletion

1. Who we are

This policy is provided by the PaoPaoHeZi team for PaoPao AI Journal and related web experiences operated under paopaohezi.com and api.paopaohezi.com. For privacy questions or rights requests, contact us at privacy@paopaohezi.com.

2. Data we collect

We collect data only when it is needed to provide the app, secure accounts, sync content, operate AI features, or maintain the service.

  • Account data: email address, optional phone number, username, nickname, avatar, profile settings, bio, invite code, membership status, and timestamps.
  • Authentication data: password hashes and salts, Google Sign-In identifier, Google email, Google profile name and picture when Google login is used, session identifiers, token hashes, and login or logout activity records.
  • User content: diary entries, documents, knowledge bases, folders, titles, icons, public or private visibility settings, chat prompts and AI responses, generated summaries, public posts, comments, likes, favorites, follows, notification records, and wiki profile statistics.
  • Media data: images that users choose to upload, such as avatars or content images, together with file metadata such as file name, content type, size, storage key, and timestamps.
  • Usage and diagnostics: event type, page route, source channel, event parameters, user agent, coarse country inferred by the edge network, app status events, and timestamps.
  • Local app data: selected language, theme preference, secure authentication tokens, and temporary files needed for downloads, sharing, or saving images.

3. Sensitive content and wellness data

Users may choose to write diary entries, mood notes, emotional reflections, goals, relationships, or other personal content. This may include sensitive information if the user enters it. PaoPao AI Journal is not a medical device, is not a clinical service, and does not provide diagnosis, treatment, emergency support, or professional health advice.

4. Data we do not intentionally collect

The verified release surface does not request precise location, contacts, microphone, calendar, call log, SMS, Health Connect, or biometric sensor data. The app does not include third-party advertising SDKs. Image access is limited to files the user chooses through the system picker or images the user saves or shares.

5. How we use data

  • To create accounts, authenticate users, prevent abuse, and keep sessions secure.
  • To store, sync, search, organize, display, delete, and share user-created content.
  • To provide AI chat, AI summaries, retrieval, and knowledge organization features.
  • To operate public sharing, community posting, comments, likes, favorites, follows, and notifications.
  • To maintain reliability, understand feature usage, diagnose errors, and protect free-tier infrastructure limits.
  • To respond to support, privacy, security, and account deletion requests.

6. AI processing

When users use AI chat, summarization, retrieval, or knowledge organization, relevant user content and prompts may be processed by Cloudflare Workers AI through our backend. AI output may be stored in chat history or documents when the user uses those features. We do not use AI features to make legal, medical, financial, or other high-stakes decisions about users.

7. Sharing and service providers

We do not sell personal data. We share data only as needed to run the service, comply with law, protect users, or process user requests. Current infrastructure and integration categories include:

  • Cloudflare Workers, D1, KV, R2, Workers AI, and related edge services for API, database, cache, storage, and AI processing.
  • Google Sign-In when the user chooses Google login.
  • A verification-code delivery provider when email or SMS verification is configured.
  • Operating-system services for system share sheets, browser opening, image picking, and gallery saving.

Public posts, public profile or wiki pages, comments, and shared links are visible to people who can access those public or shared surfaces.

8. Permissions and device access

The Android app uses internet access to connect to the backend. The direct-distribution build can request package installation permission only to install updates downloaded from our update endpoint. Storage or gallery-related actions are used only when the user saves generated images, shares content, or selects an image. The Google Play build should not require direct APK installation permission.

9. Retention and deletion

We keep account data and user content while the account is active or as needed to provide the service. Some content may first be soft-deleted so the user can restore or empty trash. Authentication tokens expire according to backend session rules. Aggregated, de-identified metrics may be retained for service reliability and product analytics. Users can request account and data deletion at account-deletion.html.

10. Security

We use HTTPS, hashed password storage, token hashing on the backend, Flutter secure storage for local session data, Cloudflare-hosted infrastructure, and Android backup exclusion rules for local app data. No method of transmission or storage is perfectly secure, so we also monitor and improve the service as risks change.

11. User choices and rights

Depending on local law, users may request access, correction, deletion, export, or restriction of their personal data. Users can edit profile fields, delete documents and chats through the app where supported, log out of sessions, and request full account deletion by following the instructions on the deletion page.

12. Children

PaoPao AI Journal is not designed for children under 13, and we do not knowingly collect personal data from children under 13. If you believe a child provided personal data, contact us so we can review and delete it where required.

13. Changes to this policy

We may update this policy when the product, providers, legal requirements, or data practices change. We will update the effective date on this page and, when appropriate, notify users in the app or on the website.

14. Contact

For privacy or deletion requests, email privacy@paopaohezi.com. For security reports, email security@paopaohezi.com. For general support, email support@paopaohezi.com. Please do not send passwords, verification codes, private keys, or highly sensitive diary content in support emails.


中文说明

泡泡盒子 / PaoPao AI Journal 会为了账号登录、内容同步、AI 总结与问答、公开分享、 社区互动、通知、统计诊断和安全风控而处理必要数据。用户主动写入的日记、心情、 知识库、聊天内容、公开帖子、评论和上传图片可能包含个人或敏感信息,请谨慎填写。

当前已验证的发布面不主动请求精确位置、通讯录、麦克风、短信、通话记录、日历、 Health Connect 或生物识别数据,也不包含第三方广告 SDK。我们不会出售个人数据。 如需访问、更正、导出或删除账号与数据,请查看 账号和数据删除页面,或发送邮件至 privacy@paopaohezi.com。

Home Privacy Policy Account deletion Contact