Aecho 隐私政策
最后更新:2026年2月25日
1. 引言
欢迎使用 Aecho!我们深知您的隐私对您至关重要,因此我们承诺保护您的个人信息安全。本隐私政策说明了我们如何收集、使用、存储和保护您的数据。
使用 Aecho 即表示您同意本隐私政策中描述的做法。
2. 我们收集的信息
2.1 您主动提供的信息
- 账户信息:邮箱地址、手机号(用于登录)、昵称
- Apple Sign-In 信息:如果您选择使用 Apple 登录,我们会接收 Apple 提供的用户标识符
- 语音内容:您录制的语音对话内容
- 文字内容:通过语音识别生成的文字、您编辑的日记内容
- 照片:您选择添加到日记中的照片
- 记忆卡片:AI 从您的日记中提取的个性化记忆信息
2.2 自动收集的信息
- 设备信息:设备型号、操作系统版本
- 使用数据:AI 功能使用次数、语音识别使用时长(用于成本分析)
- 崩溃日志:应用崩溃时的技术诊断信息(不包含您的个人内容)
2.3 我们不收集的信息
- ❌ 位置数据:我们不会收集您的地理位置信息
- ❌ 联系人:我们不会访问您的通讯录
- ❌ 第三方跟踪:我们不使用任何广告跟踪或分析工具
3. 我们如何使用您的信息
- 提供核心功能:语音识别、AI 对话、日记生成、记忆提取
- 账户管理:用户认证、订阅状态管理
- 服务改进:分析 AI 使用模式以优化服务质量(仅使用匿名化统计数据)
- 技术支持:诊断和修复技术问题
⚠️ 我们绝不会将您的个人内容用于 AI 模型训练。
4. 数据存储
4.1 本地存储
您的所有日记、记忆卡片和照片首先存储在您的设备本地(SQLite 数据库)。照片仅保存本地路径引用,不会自动上传。
4.2 云端存储
当您登录账户后,数据会自动同步到云端服务器(可选关闭)。云端数据库存储在安全的 PostgreSQL 数据库中,数据传输使用 HTTPS 加密。
4.3 第三方服务
我们使用以下第三方服务处理您的数据:
- 火山引擎 ASR:将您的语音转换为文字(音频数据经过我们的后端代理)
- 字节跳动豆包 AI:提供对话和日记生成功能(对话内容经过我们的后端处理)
我们已采取措施通过后端代理来保护您的数据安全。
5. 数据安全
我们采取以下措施保护您的数据:
- 🔒 加密传输:所有网络通信使用 HTTPS/TLS
- 🔑 访问控制:JWT 令牌认证,仅授权用户可访问自己的数据
- 🚧 数据隔离:每个用户的数据严格隔离
- 🛡️ 后端代理:所有第三方 API 调用通过我们的后端代理
6. 您的权利
您对自己的数据拥有以下权利:
- 访问权:查看我们存储的关于您的所有数据
- 删除权:随时删除您的账户和所有关联数据
- 导出权:请求导出您的数据副本
- 更正权:修改或更新您的个人信息
7. 数据保留
- 活跃账户:只要您的账户处于活跃状态,我们就会保留您的数据
- 账户删除:当您删除账户时,所有个人数据将在 30 天内从我们的服务器中永久删除
8. 儿童隐私
Aecho 不面向 13 岁以下儿童。我们不会故意收集 13 岁以下儿童的个人信息。
9. 联系我们
如有关于本隐私政策的疑问,请通过应用内设置联系我们。
Aecho Privacy Policy
Last Updated: February 25, 2026
1. Introduction
Welcome to Aecho! We understand that your privacy is important to you, and we are committed to protecting your personal information. This Privacy Policy explains how we collect, use, store, and protect your data.
By using Aecho, you agree to the practices described in this Privacy Policy.
2. Information We Collect
2.1 Information You Provide
- Account Information: Email address, phone number (for login), nickname
- Apple Sign-In Information: User identifier provided by Apple if you choose to sign in with Apple
- Voice Content: Your recorded voice conversations
- Text Content: Text generated from speech recognition, diary entries you edit
- Photos: Photos you choose to add to your diary
- Memory Cards: Personalized memory information extracted from your diaries by AI
2.2 Automatically Collected Information
- Device Information: Device model, operating system version
- Usage Data: AI feature usage count, speech recognition duration (for cost analysis)
- Crash Logs: Technical diagnostic information when the app crashes (does not include your personal content)
2.3 Information We Do NOT Collect
- ❌ Location Data: We do not collect your geographic location
- ❌ Contacts: We do not access your address book
- ❌ Third-Party Tracking: We do not use any advertising trackers or analytics tools
3. How We Use Your Information
- Provide Core Features: Speech recognition, AI conversation, diary generation, memory extraction
- Account Management: User authentication, subscription status management
- Service Improvement: Analyze AI usage patterns to optimize service quality (using anonymized statistical data only)
- Technical Support: Diagnose and fix technical issues
⚠️ We will never use your personal content for AI model training.
4. Data Storage
4.1 Local Storage
All your diaries, memory cards, and photos are first stored locally on your device (SQLite database). Photos are stored as local path references only, not automatically uploaded.
4.2 Cloud Storage
After you log in, data is automatically synced to cloud servers (can be disabled). Cloud data is stored in a secure PostgreSQL database. Data transmission uses HTTPS encryption.
4.3 Third-Party Services
We use the following third-party services to process your data:
- Volcengine ASR: Converts your voice to text (audio data goes through our backend proxy)
- Doubao AI (ByteDance): Provides conversation and diary generation features (conversation content is processed through our backend)
We have taken measures to protect your data through backend proxying.
5. Data Security
We implement the following measures to protect your data:
- 🔒 Encrypted Transmission: All network communication uses HTTPS/TLS
- 🔑 Access Control: JWT token authentication, only authorized users can access their own data
- 🚧 Data Isolation: Each user's data is strictly isolated
- 🛡️ Backend Proxy: All third-party API calls go through our backend proxy
6. Your Rights
You have the following rights regarding your data:
- Right to Access: View all data we store about you
- Right to Delete: Delete your account and all associated data at any time
- Right to Export: Request a copy of your data
- Right to Correct: Modify or update your personal information
7. Data Retention
- Active Accounts: We retain your data as long as your account is active
- Account Deletion: When you delete your account, all personal data will be permanently deleted from our servers within 30 days
8. Children's Privacy
Aecho is not intended for children under 13. We do not knowingly collect personal information from children under 13.
9. Contact Us
For questions about this Privacy Policy, please contact us through the in-app settings.