Privacy Policy

Last updated: 19 February 2026

1. Who We Are

FutureMe Now is operated from the United Kingdom. We are the data controller for the personal data we process. Contact: privacy@futureme.now.

2. Data We Collect

  • Account data: Name, email, password hash, subscription status.
  • Conversation data: Messages exchanged with your AI future self.
  • Health data: Steps, sleep, exercise (from connected integrations or manual entry).
  • Financial data: Account balances, savings rate (from connected integrations).
  • Voice data: Audio samples for voice cloning (Premium, with explicit consent).
  • Usage data: Feature usage, session timing, device type.

3. How We Use Your Data

  • Service delivery: Powering conversations, trajectory calculations, corrections, and simulations.
  • Personalisation: Training your future self persona on your goals and data.
  • Safety: Detecting crisis situations and providing appropriate resources.
  • Improvement: Anonymised, aggregated analytics to improve the Service.

We never:

  • Sell your personal data to third parties.
  • Use your data to train AI models for other products.
  • Share individual-level data with employers (enterprise accounts use anonymised, aggregated data with a minimum cohort of 5).

4. Legal Basis (GDPR)

  • Contract: Processing necessary to deliver the Service you signed up for.
  • Consent: Health data integration, voice cloning, marketing communications.
  • Legitimate interest: Security, fraud prevention, service improvement.

5. Data Security

  • Passwords hashed with Argon2id.
  • Sensitive fields (health, financial, voice data) encrypted at rest with AES-256.
  • All connections over TLS 1.3.
  • Infrastructure hosted on Hetzner (EU data centres, Germany/Finland).
  • Access controls, audit logging, and regular security reviews.

6. Third-Party Services

We share data with the following processors, only as needed to operate the Service:

  • Anthropic / OpenAI / Groq: AI model providers (conversation content sent for processing).
  • Stripe: Payment processing.
  • Deepgram / ElevenLabs: Voice processing (Premium only, with consent).
  • Fitbit / Google Fit: Health data (with consent).
  • Plaid / Yapily: Financial data (with consent).

7. Your Rights

Under UK GDPR, you have the right to:

  • Access: Request a copy of your data (Settings → Export data).
  • Rectification: Correct inaccurate data (Settings → Profile).
  • Erasure: Delete your account and all data (Settings → Delete account).
  • Portability: Export your data in a machine-readable format.
  • Withdraw consent: Disconnect integrations or revoke voice consent at any time.
  • Complaint: Contact the ICO at ico.org.uk.

8. Data Retention

  • Active accounts: data retained while account is active.
  • Deleted accounts: all data permanently removed within 30 days.
  • Audit logs: retained for 2 years for compliance purposes.
  • AI cost logs: anonymised after 90 days.

9. Children

FutureMe Now is not intended for anyone under 18. We do not knowingly collect data from minors.

10. Changes

We will notify you of material changes to this policy via email or in-app notification at least 30 days before they take effect.

Contact

Data protection queries: privacy@futureme.now.