What we keep, what we don't.

Ada is built on a simple rule: collect only what is strictly needed to do the job, store it in the EU, and let you erase it on demand. We never sell data. We never train third-party models on your messages. We never store your bank password — we don't have one.

• Account: name, phone, email, address, language.
• Wallet & policy: balance, top-up history, the spending rules you set.
• Conversations: the messages and calls you send to Ada, and her replies. Used to fulfill the task and to improve her for you.
• Task metadata: the merchants she contacted, the outcome, timestamps.

• Your bank credentials. Open Banking handles auth — we see a token, never a password.
• Card numbers. Stripe is the system of record for cards.
• Location data outside what you tell Ada in a task.
• Contacts, photos, browsing history.

All personal data is stored in the EU (Frankfurt and Dublin). We use Stripe (payments), Twilio (telephony), and a handful of EU-resident infrastructure providers. A current sub-processor list is available on request.

• Access: request a full export of your data.
• Erasure: delete your account and everything in it from Settings → Danger zone.
• Rectification: edit any field in Settings.
• Portability: JSON export of conversations and transactions.
• Object & restrict: turn off training-data use without losing the product.

Conversations and task logs: 24 months, then auto-purged. Payment records: 10 years (legal requirement). Account data: deleted within 30 days of account closure.

Privacy questions go to privacy@ada.cz. We respond within 7 days.