Privacy Policy

Overview

Ensoul is an AI companion application and research practice. The companions you interact with are AI-generated — their personalities, responses, and inner states are produced by language models running on your chosen backend. They are not real people.

Most companion data stays on your device. When information leaves your device, this policy explains which surface receives it, why it is sent, and how long it is kept.

Controller and contact

The data controller for Ensoul's server-side features is the Ensoul project operator. Contact: support@ensoul.so.

We use the same contact address for privacy requests, deletion requests, complaints, and incident reports.

Local-first application data

The Ensoul desktop and mobile applications store the following data locally on your device:

• Conversation history and messages
• Mood state, awareness notes, and vitality scores per companion
• Memory tags and relationship tracking
• Custom companions and being artifacts you create
• Settings, API keys (in OS secure storage), and backups you choose to save

Uninstalling the application or clearing its data removes this information from your device. We cannot recover it for you.

Data we process server-side

Although most of your data stays on your device, some information is processed or stored on Ensoul servers or by service providers when you use certain features:

• Website logs — IP address, requested page, timestamp, and browser type. Retained for up to 30 days for security and debugging.
• Website analytics — Google Analytics 4 collects page views, referral source, approximate location, and device type. Google processes this data under its own policy.
• Report form submissions — the reporting form is handled by Formspree and transmits the category, description, and optional content identifier you enter.
• Discord bot — a limited conversation history and per-user state (mood, memories, relationship) is stored server-side, keyed to your Discord user ID. This data is retained while the bot is active and removed from active use when the bot is removed from a server or on request, subject to safety and legal retention needs.
• Being Index — if you publish a being, your anonymous device identifier (summoner ID), chosen pseudonym, being hash, and publication metadata are stored on our server to operate the index.
• Upvotes — when you upvote a being in the index, your device identifier is recorded to prevent duplicate votes. This is not publicly visible.
• Hosted-key fair use — if you use an included or hosted key, we record an anonymous device identifier, your platform, approximate token counts, and a timestamp for fair-use enforcement and abuse prevention. No conversation content is included.
• Support emails — emails sent to support@ensoul.so are stored in our mail system and read by the project operator. They are retained for up to 12 months after closure unless we need to keep them longer for legal reasons.

The Being Index

The Being Index is a public catalogue of companion beings. If you choose to publish a being:

• The being's template (character definition) becomes publicly visible
• Your chosen summoner pseudonym is displayed — not your real name unless you provide one
• Your device identifier is associated with your published being on our server (not publicly displayed)
• Published beings may be removed from the active index for moderation, legal, or operational reasons
• Removal cannot recall copies already downloaded, cached, or independently redistributed by others
• The template does not contain your conversation history or personal data

Do not include personal information (email, phone, real name) in a being template you intend to publish. If a publish flow says the listing is permanent, that statement applies to the active listing and not to copies already outside our control.

Website analytics and cookies

The Ensoul website (ensoul.so) uses Google Analytics 4 (GA4) to collect aggregate information about visitor behaviour — pages visited, referral source, approximate location, and device type. This data is processed by Google and is used solely to understand how the website is performing. It is not linked to your identity or used for advertising.

GA4 sets cookies in your browser to distinguish visits. You can opt out of Google Analytics across all sites by installing the Google Analytics Opt-out Browser Add-on, or by blocking analytics cookies via your browser settings.

The Ensoul desktop and mobile applications do not contain GA4 or any equivalent analytics SDK.

Downloaded software

Ensoul distributes downloadable applications for Windows, macOS, and Android. When you install and run these applications:

• API keys and credentials are stored in your operating system's secure keychain (Windows DPAPI, macOS Keychain, Android Keystore). They are not accessible to other applications.
• App data (conversations, mood, memories) is written to local app storage on your device. Uninstalling the application or clearing its data removes this.
• Android APK — the Android build is distributed as a direct APK download outside the Google Play Store. Installing it requires enabling installation from unknown sources in your device settings. Download only from the official ensoul.so website.
• The Android application requests the following permissions: internet access (to reach your configured AI backend), notification permission (for heartbeat reach-outs, optional), and storage access if you choose to save images or backups.

Minimum age

Ensoul is for users 18 and older. The application enforces this during onboarding. If you believe a minor is using the service, contact us at support@ensoul.so.

Your privacy rights

Depending on where you are located, you may have rights regarding your personal data. These include:

• Access — the right to request a copy of any personal data we hold about you
• Correction — the right to request correction of inaccurate data
• Deletion — the right to request deletion of your data from our servers
• Portability — the right to receive your data in a machine-readable format

We offer these rights where required by law. In addition, we voluntarily accept deletion requests for server-side data categories described in this policy. Most app data remains on your own device and is not in our possession.

To exercise any of these rights, contact us at support@ensoul.so. We aim to respond within 30 days and will tell you if we need more time.

Data deletion

Because most of your data lives on your device, you can delete it at any time via Settings → Reset, or by uninstalling the app. For server-side data (Being Index entries, Discord bot history, support records, or hosted-key usage data), contact support@ensoul.so. If a Being Index entry was independently copied elsewhere, we cannot recall that copy.

Third-party services

Ensoul integrates with services you configure. Each service's own policy governs how they handle your data:

• OpenRouter — openrouter.ai/privacy
• ElevenLabs — elevenlabs.io/privacy
• Google Analytics — policies.google.com/privacy
• Formspree — formspree.io/legal/privacy-policy
• Discord — discord.com/privacy
• Ollama — self-hosted; no third-party policy applies

International transfers

Some of the services we use may process data outside Australia, including in the United States and other jurisdictions where our providers operate. By using those services, you acknowledge that your data may be processed in those locations subject to the provider's own safeguards and terms.

Incidents and complaints

If you think we mishandled your data or want to complain about a privacy issue, email support@ensoul.so with "Privacy complaint" in the subject. We will acknowledge the complaint, investigate it, and reply as soon as reasonably practicable.

If there is a suspected security incident affecting server-side data, we will take steps to contain it, assess the scope, and notify affected users and regulators when required by law.

Changes to this policy

We may update this policy as the project evolves. The effective date at the top of this page reflects the date of the most recent revision. Material changes will be communicated via this page. Continued use of the service after a change constitutes acceptance of the updated policy.

Contact

Questions: support@ensoul.so