Privacy Policy

Athanote (“Atha”, “we”, “us”, “our”) is built to minimize data collection. This policy explains what we collect, why we collect it, and your choices.

Last updated: Feb 13, 2026 Applies to: Athanote website and Atha app

At a glance: We store the caregiver’s email (required), optional caregiver phone number (only for SMS), and device pairing codes (QR/UUID) linked to the caregiver account. Pairing codes are not linked to a dependent’s identity. No names required.

1. Data We Collect

1.1 Caregiver email address (required)

We collect and store the caregiver’s email address when creating an account or joining the service. This is used for account identification, device pairing, and check-in notifications.

1.2 Pairing codes (QR / UUID)

When a caregiver links a dependent’s device, we generate a QR code and/or UUID code (“pairing code”). We store the pairing code linked to the caregiver account so that the caregiver can receive check-in status updates for that installed device.

Pairing codes identify an app installation/device link — not a person. We do not require or store the dependent’s name or identity.

1.3 Caregiver phone number (optional — SMS notifications)

If you purchase SMS notification service, we collect and store your phone number because it is required to send SMS messages. Your phone number is used only to deliver SMS check-in notifications.

Optional: not required for the service if you use email notifications only.
No marketing: we do not use phone numbers for advertising or promotional SMS.

1.4 Emergency contact numbers (future feature)

Emergency contact phone numbers are not collected at this time. If we add this feature later, we will update this Privacy Policy before collecting or using that information.

2. What We Do Not Collect

We do not collect:

Names of caregivers or dependents
Addresses, date of birth, or government identifiers
Location data or continuous tracking
Contacts, photos, messages, or other device content
Health/medical data
Advertising identifiers or behavioral profiles

3. How We Use the Data

We use collected data only to:

Authenticate and manage caregiver accounts
Link dependent-device installations to caregiver accounts using pairing codes
Send check-in notifications (email by default, SMS only if enabled)

4. Legal Basis (EEA/EU users)

If you are in the EEA/EU, we process your data under these bases:

Contractual necessity: to provide the service (email + pairing codes).
Contractual necessity / user request: SMS delivery when you enable paid SMS notifications (phone number).

5. Data Sharing

We do not sell your personal data. We may use service providers (hosting, email delivery, SMS gateway) to operate the service. They may process limited data only to deliver those functions, under contractual confidentiality and security obligations.

6. Data Retention

We retain your email address, pairing codes, and (if provided) phone number for as long as your account remains active. If you request account deletion, we remove the associated data from our systems within a reasonable timeframe, unless retention is required by law.

7. Security

We use reasonable technical and organizational measures to protect stored data against unauthorized access, alteration, or disclosure. We also reduce risk by intentionally collecting as little personal data as possible.

8. Your Rights

You may request:

Access to the data we hold about you (email and optional phone number)
Correction of inaccurate information
Deletion of your account and associated data

9. Changes to This Policy

We may update this policy as the service evolves. The “Last updated” date will reflect changes. If we introduce features that require collecting additional personal data (e.g., emergency contact numbers), we will update this policy before those changes take effect.

10. Contact

For privacy questions or requests: Contact