Privacy Policy

Last updated: February 18, 2025

This Privacy Policy describes Our policies and procedures regarding the collection, use, and disclosure of Your information when You use the Chathouse application (the “Service”). By using the Service, You agree to the collection and use of information in accordance with this Privacy Policy.

Interpretation and Definitions

Interpretation

The words with the initial letter capitalized have meanings defined under the following conditions. These definitions apply regardless of whether they appear in singular or plural form.

Definitions

For the purposes of this Privacy Policy:

• Account: A unique account created for You to access our Service.

• Affiliate: An entity that controls, is controlled by, or is under common control with a party, where “control” means ownership of 50% or more of the shares or other securities with voting rights.

• Application: Refers to Chathouse, the software program provided by the Company.

• Company: (referred to as either “the Company”, “We”, “Us”, or “Our”) refers to FiveSheep OÜ, a private limited company registered in Estonia, with its registered address at Tornimäe tn 7-3, Harju maakond, Kesklinna linnaosa, 10145 Tallinn.

• Country: Refers to Estonia.

• Device: Any device that can access the Service, such as a computer, cellphone, or digital tablet.

• Personal Data: Any information that relates to an identified or identifiable individual. Note that for the purposes of Our Service, we primarily collect aggregated and anonymized data that does not identify You.

• Service: Refers to the Chathouse application.

• Service Provider: A natural or legal person who processes data on behalf of the Company. This includes third-party companies or individuals that facilitate the Service, provide services on our behalf, or assist in analyzing Service usage.

• Usage Data: Data collected automatically in an aggregated and anonymized form that does not include personal identifiers, such as broad metrics for diagnostic and analytical purposes.

• LLM Providers: Third-party providers of large language model services to which user prompts are sent for processing. Examples include, but are not limited to, OpenRouter, AI21, AionLabs, Alibaba, Amazon Bedrock, Anthropic, Avian.io, Azure, Chutes, Cloudflare, Cohere, DeepInfra, DeepSeek, Featherless, Fireworks, Friendli, Google AI Studio, Google Vertex, Groq, Hyperbolic, inference.net, Infermatic, Inflection, kluster.ai, Lambda, Lepton, Liquid, Mancer, Minimax, Mistral, Nebius AI Studio, Nineteen, NovitaAI, OpenAI, Perplexity, Reflection, SambaNova, SF Compute, Targon, Together, xAI, and others.

Data Collection

Anonymized Analytics Data

Our Service uses Amplitude for analytics, with data processed and stored on EU-based servers. We collect aggregated and anonymized usage data to help us monitor and improve the Service. This data does not include personal identifiers such as IP addresses or device IDs.

User Prompts and Interactions

When You interact with the Service, your text inputs (“prompts”) are sent to our backend and forwarded to various LLM Providers for processing. Please note:

• Our Company does not store any prompts.
• Prompts are not associated with any specific user.
• LLM Providers may retain, use, or store prompt data in accordance with their own privacy policies and practices. We encourage You to review the privacy policies of these providers.

Data Not Collected

For privacy and security reasons, our Service does not collect or store:

• Voice recordings (speech is processed offline and on-device)
• Typed words outside of submitted prompts
• Any personal data that is not explicitly provided by You
• Any other private or sensitive data not relevant to the Service

Use of Collected Data

The Company uses the collected anonymized data solely for:

• Enhancing Service Functionality: Analyzing usage patterns to improve the user experience.
• Product Improvement: Understanding feature usage and implementing improvements based on aggregated data.
• Security and Diagnostics: Diagnosing and addressing technical issues.

We do not use the collected data for any marketing or advertising purposes that would identify individual users.

Retention and Transfer of Data

The Company retains collected data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy. Since the data is anonymized and aggregated, it is not linked to any individual. Data may be transferred to countries outside of Your jurisdiction, but such data remains anonymized and is subject to appropriate security measures.

Deleting Data

You have the right to request deletion of any personal data that You may have provided directly to Us. However, anonymized usage data used for analytical purposes cannot be linked back to You and is not subject to deletion requests. To request deletion of any personal data, please contact Us.

Disclosure of Data

Business Transactions

If the Company is involved in a merger, acquisition, or asset sale, any personal data You have provided may be transferred. We will notify You before Your data becomes subject to a different Privacy Policy.

Law Enforcement

Under certain circumstances, the Company may be required to disclose data if required by law or in response to valid requests from public authorities.

Other Legal Requirements

The Company may disclose data in the good faith belief that such action is necessary to:

• Comply with a legal obligation
• Protect and defend the rights or property of the Company
• Prevent or investigate possible wrongdoing in connection with the Service
• Protect the personal safety of users of the Service or the public
• Protect against legal liability

Security of Data

The security of Your data is important to Us. While we use commercially acceptable methods to protect the data we collect, no method of transmission over the Internet or electronic storage is 100% secure. We take appropriate measures to safeguard the anonymized data and any personal data You may provide directly to Us.

GDPR Compliance

If You are a resident of the European Union, You have certain rights regarding Your data under the General Data Protection Regulation (GDPR). Although we primarily collect anonymized data, if You provide any personal data to Us, You have the right to:

• Access Your personal data
• Rectify any inaccuracies in Your personal data
• Request deletion of Your personal data
• Restrict or object to the processing of Your personal data
• Data portability

You also have the right to lodge a complaint with a supervisory authority if You believe that Your data protection rights have been violated. To exercise these rights or for any inquiries regarding Your data, please contact Us at [email protected].

California Privacy Rights (CCPA/CPRA and CalOPPA)

Residents of California have specific rights regarding their personal information. Although we only collect anonymized data, if any personal data is provided through Your interactions with the Service, You have the right to:

• Know what personal information is collected, used, shared, or sold
• Request deletion of Your personal information
• Opt-out of the sale or sharing of Your personal information

For more information or to exercise these rights, please contact Us at [email protected]. Please note that our Service may contain links to third-party websites whose privacy practices may differ from ours.

In-App Purchases and Subscriptions

If the Service offers in-app purchases or subscriptions, these transactions are processed through the respective platform’s payment system (e.g., Apple’s In-App Purchase system). Any payment-related personal data is handled by the platform and is subject to its own privacy policy. We do not collect any additional payment-related personal data.

Children’s Privacy

Our Service does not address anyone under the age of 13. We do not knowingly collect personal data from anyone under the age of 13. If You are a parent or guardian and believe that Your child has provided Us with personal data, please contact Us immediately. If We become aware that we have inadvertently collected personal data from a child under 13 without proper consent, we will take steps to delete such information.

Links to Other Websites

Our Service may contain links to third-party websites that are not operated by Us. If You click on a third-party link, You will be directed to that site. We strongly advise You to review the Privacy Policy of every site You visit, as we have no control over and assume no responsibility for their content or practices.

Changes to this Privacy Policy

We may update this Privacy Policy from time to time. We will notify You of any changes by posting the new Privacy Policy on this page and, if appropriate, via a prominent notice within the Service or by email. You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

Contact Us

If You have any questions about this Privacy Policy, please contact Us:

• By email: [email protected]