Privacy Policy

The data controller is Osmove SAS, 146 ave Léon Blum, 92160 Antony, France (RCS Nanterre 902 644 970). Contact: [email protected].

Account data (email, encrypted password, optional name); usage data (queries, AI responses, conversation transcripts); voice and face embeddings you choose to enroll; device telemetry (last-seen, software version); payment metadata (handled by Stripe, we never see your card numbers).

We process your data to operate the service, answer your queries, route voice interactions to the right AI model, support household multi-user recognition, prevent abuse and meet our legal obligations. We do not sell your data and we do not use it to train third-party models without your explicit consent.

We rely on: (a) the performance of our contract with you for core service features; (b) your explicit consent for biometric data (voice / face embeddings); (c) our legitimate interest in securing the platform for abuse-protection logs; (d) legal obligations for accounting data.

Account and conversation data is kept while your account is active and up to 30 days after deletion to allow for recovery. Anonymised aggregates may be kept longer. Biometric embeddings are deleted immediately when you remove the corresponding member.

We share strictly the minimum data required with: OpenAI / Anthropic / Google (AI inference), Stripe (payments), Postmark (transactional email), Sentry (error monitoring, PII-free), Twilio / PhoneVoice (outbound calls when you ask the assistant to place one), GoCardless / Nordigen (banking when you connect an account). Each provider is bound by its own DPA and by our vendor-selection criteria.

See our security page for the technical and organisational measures in place (encryption in transit and at rest, hashed authentication tokens, rate limiting, monitoring, scrubbed logs, CI audits).

Some processors are located in the United States (Heroku/Salesforce for hosting, OpenAI for AI). Transfers to the US are framed by the EU-US Data Privacy Framework and standard contractual clauses where applicable.

Under GDPR you have the right to access, rectify, erase, port or restrict the processing of your personal data, and to object to it. Exercise any of these rights by writing to [email protected]. You may also lodge a complaint with the CNIL (France) or your local data-protection authority.

We use a session cookie to keep you signed in, a cookie to remember your language, and a cookie to remember your theme preference. We do not use third-party advertising cookies. Analytics, if any, is self-hosted and anonymised.

Twoody is not intended for children under 13. A household member identified as a minor can be enrolled by a parent for voice recognition, but no account is created for that child.

We may update this policy. Material changes will be notified through the app or by email before they take effect.