Privacy Policy & Data Consent

1.Our Core Commitment to Data Integrity

This Privacy Policy describes how Alice Home Intelligence ("Alice," "the Service," "we," "us," or "our") - operated by Alice Home Intelligence, Inc. - collects, processes, and protects your information when you use the Alice mobile application, web platform, and related services.

Alice is designed around a principle of "Privacy by Design." We implement data isolation safeguards intended to keep your property profiles and chat history secure. We do not sell your personal information, uploaded documents, or interaction transcripts to data brokers, advertising networks, or external marketing aggregators.

Children's Privacy. The Service is intended for users who are 18 years of age or older. We do not knowingly collect or process personal information from any individual under the age of 13, in compliance with the Children's Online Privacy Protection Act ("COPPA"), nor from any individual under the age of 18. If we become aware that we have inadvertently collected information from a minor, we will take reasonable steps to delete it. Parents or guardians who believe a minor has provided information to us should contact legal@alicehomeai.com.

2.Comprehensive Breakdown of Collected Data Categories

To manage your property ecosystem, our services collect and categorize the following specific data points:

• Account Registration Attributes. User first name, last name, verified email address, and mobile phone contact number.
• Property Topography Profiles. Physical street address, building classification (e.g., single-family residential), interior square footage, room counts, and precise spatial dimension logs.
• Document Vault Assets & Media. Warranty files, equipment invoices, manual schemas, drone photography files, and structural photos uploaded by users into the system storage layer.
• AI Conversational Transcripts. Complete text sequences of prompt inputs, questions asked, algorithmic tool executions, and data logs submitted to the Alice Assistant chat interface.
• Trainer Data Elements. Educational progress logs, uploaded compliance certifications, and system training metrics associated with optional professional trainer modules.
• Device Permissions Context. Operational OS tokens including Camera, Photo Library, Microphone, Notifications, Location (approximate via Google Places for mapping; no background location tracking is deployed), File Systems, and Device Calendar.
• Automatic System Telemetry Logs. IP addresses, hardware models, mobile OS versions, individual app click streams, feature usage tracking flags, and internal connection performance timings.

3.Step-by-Step Explanation of the RAG Pipeline Architecture

To deliver localized, property-specific responses without cross-user leakage, the App utilizes a specialized Retrieval-Augmented Generation (RAG) search data engine. The operational step sequence of this data execution layer functions as follows:

1. Ingestion & Extraction

   When documents or images are uploaded to the Document Vault, our ingestion pipelines extract programmatic clear-text content, system manifests, and metadata payloads.

2. Semantic Chunking

   Extracted textual assets are programmatically broken down into small, distinct, logical context blocks ("chunks") to preserve document relationship data.

3. Vector Vectorization

   These text chunks are passed through secure infrastructure algorithms to generate unique multi-dimensional mathematical coordinates ("embeddings") representing semantic meaning. These vectors are indexed within an isolated storage layer.

4. Semantic Query Retrieval

   When you enter a prompt into the Alice Assistant chat portal, the App queries your isolated property database vector index. It matches the semantic intent of your query to pull out the most relevant contextual text chunks (e.g., your specific shingle brand structural warranty).

5. Dynamic Response Synthesis

   The App appends those retrieved custom text blocks directly alongside your original prompt into a highly contextual payload, sending it to our secure Enterprise Large Language Model (LLM) processor to construct an accurate, property-aware response.

4.Enumeration of Third-Party Data Processors

We transmit required data elements to the following service vendors to enable core app functionality:

• Amazon Web Services (AWS). Hosts encrypted databases and cloud infrastructure.
• Anthropic, PBC. Processes property-scoped text for natural language generation.
• Google Places API. Processes address strings to return geocoded coordinates; background mapping is not deployed.
• Apple & Google Identity / Push Notification Systems. Routes app installation tokens and push alerts.
• Stripe, Inc. (Stripe Connect). Processes payments for trainer visit bookings, handles platform marketplace fees, and disburses payouts to trainers. Stripe handles card data directly; raw card numbers do not reach Alice servers.
• Transactional Email Vendor. Dispatches verification messages and service notifications.
• Mobile Diagnostic Vendors. Processes anonymized stack traces to resolve app crashes.

We do not share your information with advertisers, data brokers, or marketing cooperatives, and we do not monetize your personal records.

5.International Data Transfers and Standards

All information collected through the platform is stored and processed on secure cloud nodes located within the United States. For users accessing the application from outside the United States, your personal metrics will be transferred to our US-based infrastructure. We implement standard contractual clauses (SCCs) and binding corporate rules to guarantee equivalent safety metrics across international boundaries.

6.Specific Data Retention Windows

We apply data retention practices intended to minimize the duration personal data is held:

• Account Deletion Requests. Active database records, property data, and Document Vault contents are deleted within thirty (30) days of an account deletion request.
• System Backups. Encrypted backup archives are retained for up to sixty (60) days before being overwritten.
• Security & Telemetry Logs. Network access logs and error tracing records are retained for up to ninety (90) days to support security monitoring before being purged.
• Billing Records. Financial transaction records processed through Stripe Connect are retained for the duration required by federal tax and compliance laws.

7.Core Cryptographic Security Infrastructure

We use a layered security approach designed to protect your data:

• Encryption in Transit. Data traveling between the mobile client and our API endpoints uses Transport Layer Security (TLS 1.2 or 1.3).
• Encryption at Rest. Stored data is encrypted using AES-256.
• Key Management. Sensitive data, including chat conversations and document content, is protected with envelope encryption keys managed via a key management service.
• Password Hashing. Account passwords are hashed using bcrypt or Argon2id before storage; raw passwords are not retained.
• Breach Notification. In the event of a confirmed security breach affecting your personal data, we intend to notify affected users and applicable regulators within seventy-two (72) hours of verification, as required by applicable law.

8.Multi-State US & International User Privacy Rights

We honor consumer data controls across jurisdictions including California (CCPA), Maryland, Virginia, Colorado, Connecticut, Utah, the European Economic Area (GDPR), and the United Kingdom.

Your Core Choices. You have the right to access and inspect your personal data, the right to correct errors, and the right to data portability via a machine-readable JSON export.

Right to Erasure ("Right to Be Forgotten"). You may request deletion of your account records, document data, and vector indexes.

Multi-State Statutory Compliance. Alice does not sell your personal data, does not process your personal data for targeted behavioral advertising, and does not engage in profiling for automated decisions that produce legal, financial, or similarly significant effects.

Right to Non-Discrimination. Exercising your privacy rights will not result in app throttling, premium tier upcharges, or feature degradation.

To submit a request, email legal@alicehomeai.com with the subject line "Data Export Request" or "Account Deletion Request".

9.Mapping to App Store and Play Store Storefront Requirements

To comply with global app store transparency mandates, the following matrix explicitly maps our database inventory to the required store listings:

10.Technical Contact Node

For questions about our security infrastructure, data isolation, or privacy compliance, contact our compliance officer at:

Alice Home Intelligence
Attn: Privacy & Legal Operations
Legal: legal@alicehomeai.com
Support: support@alicehomeai.com