Data & privacy

Hunique is a private space to turn reflection into better conversations. The things you type here are often deeply personal. Your reflections stay on your device. We can't read them. We don't want to.

This page covers both the Hunique app itself and the hunique.ai website you might be reading this on. It explains how the on-device promise works, what happens to the small amount of information that does leave your device when you use AI features, and how we use analytics across both surfaces. It's written to be readable rather than legally padded. If you want the shortest possible version, read the next four paragraphs and stop there.

The short version

Your reflections stay on your device. Everything you type into Hunique - logs, patterns, conversations - is stored only in your browser, on the device you're using. There's no server-side copy. No one at Kaol can read them.

When you use AI features, your input is processed by AI models via our hosting provider's infrastructure. The content isn't stored, isn't logged, and isn't used to train any AI model.

You sign in with your email. We use it only to sign you in and recognise your account between visits. We don't sell, share, or use it for marketing.

We use product analytics on both the website and the app. Before you sign in, those analytics are anonymous - a random device identifier with no link to who you are. After you sign in, they're tied to your account so we can understand individual user journeys. We still cannot see what you write - every character you type in the app is masked before it leaves your device. The screenshot below shows exactly what a recorded session of the app looks like to us.

What a recorded session of the Hunique app looks like to us

How each part works

Your reflections and app data

Everything you create in Hunique - your logs, tracked patterns, conversation history, settings - is stored in your browser's local storage on the device you're using. It never gets copied to any server we run.

The practical implications:

• No one at Kaol can read your content. There's no admin view. The data physically doesn't exist in a place we can reach.
• If you clear your browser data, switch devices, or use a different browser, your data won't follow you. There's no cloud backup. This is the trade-off of keeping things local.
• Anyone with physical access to your device could in principle see stored data through browser developer tools, the same way they could read your notes app. If this concerns you, use a private/incognito window - nothing will persist after you close it.
• You can delete everything at any time using the "Delete content on this device" button in the Data & privacy panel, accessible from the footer of the app. (This clears the content on your device. To delete your account and the data tied to it, see "Your rights" below.)

Signing in

To use the Hunique app, you sign in with your email address. The flow is a sign-in code by email - you type your email, we send you a 6-digit code, you type the code back. There's no password to remember and nothing for us (or anyone else) to leak.

What this involves:

• Your email address is stored in our database alongside a randomly-generated user ID. Both the database (Cloudflare D1) and the email sending (Cloudflare Email Service, from [email protected]) live inside our hosting provider's infrastructure - there's no third-party email or auth provider in the loop.
• The sign-in code itself is hashed and held in temporary key-value storage for 10 minutes, then deleted. We never see the code in the clear after it's sent.
• Your sign-in session is a long random value held in a secure, HttpOnly cookie on your device, with a matching record on our side that lasts 30 days from your most recent activity. Signing out deletes the record immediately; closing the tab without signing out leaves it in place until it naturally expires.
• Sign-in attempts are rate-limited per email and IP to make brute-forcing impractical.

You can delete the email we hold by emailing [email protected] - see "Your rights" below.

AI features

When you use an AI feature, your input is sent over an encrypted connection to an AI model via Cloudflare AI Gateway - a service run by Cloudflare, the same company that hosts the Hunique app itself. We route all AI requests through this gateway, which we've configured so that the content of requests and responses isn't logged or stored after processing.

We commit to the following regardless of which specific AI model handles your request:

• Nothing is retained after your request has been processed. No server-side copy of your input or the AI's response.
• Nothing is used for training. Your content doesn't contribute to training any AI model, now or in the future.
• Nothing leaves the processing boundary beyond what's needed to generate your response and return it to you.

Cloudflare retains some operational metrics - timestamps, response times, token counts, the name of the model used - for billing and reliability purposes, for up to 3 months. These contain no user content.

If we change which AI models we use, we'll update this page. The commitments above will continue to apply.

Product analytics

We use PostHog, a product analytics service, to understand how Hunique is used across both the website and the app. Analytics data is stored on servers in Frankfurt, Germany, within the EU.

Before you sign in, the record is anonymous: a random device identifier in your browser, with no link to who you are. When you sign in to the app, we tell PostHog the random user ID we generated for your account and attach your email as a person property. From that point on your activity is tied to your account, and any earlier anonymous events from the same browser are stitched in.

What we collect:

• Which pages and features are viewed and used
• Clicks, scroll depth, and basic interaction patterns (heatmaps)
• Device and browser type, rough geographic region
• App errors and performance data
• A random device identifier that distinguishes one visitor from another
• Your account's user ID and email address, once you've signed in
• Masked session recordings of in-app usage (app only)

What we don't collect:

• Anything you type in the app
• Your conversation content, topics, or AI results
• Your IP address - we discard it before PostHog stores anything
• Any third-party tracking identifiers, advertising IDs, or data from data brokers

All user-typed text in the app is masked client-side - in your browser, before anything is sent - so even if something went wrong on our end, no content would reach PostHog.

We also use PostHog's AI-assisted analytics features to help us understand usage patterns more easily. These features process only the analytics data listed above, via PostHog and its sub-processors. They never process anything you type in the app, because your content never reaches PostHog in the first place - the masking happens on your device before any data is sent.

The formal bits

Who we are

Hunique is provided by Kaol Ltd, a company registered in England and Wales under company number 16955479. Our registered address is 71-75 Shelton Street, London, WC2H 9JQ, United Kingdom. We're registered with the UK Information Commissioner's Office under registration number ZC089019.

Kaol Ltd is the data controller for any personal data processed in connection with Hunique. Our Data Protection Officer is Andy Kilner, reachable at [email protected].

Who processes data on our behalf

We use two data processors to provide Hunique:

• Cloudflare, Inc. - hosts the Hunique app and the website, stores your account record and sign-in sessions, sends the sign-in code email, and provides the AI processing infrastructure. Cloudflare is a US-based company; transfers of personal data to the United States are protected by Standard Contractual Clauses.
• PostHog, Inc. - provides our product analytics across both surfaces. Analytics data is stored in PostHog's EU Cloud in Frankfurt, Germany. PostHog is a US-based company, so its staff may occasionally access stored analytics data from outside the EU for support, troubleshooting, and service improvement. These transfers are protected by the UK Extension to the EU-US Data Privacy Framework and by Standard Contractual Clauses.

Both companies have signed data processing agreements with us and are subject to their own UK GDPR obligations. Both may use their own sub-processors to deliver their services; PostHog's current list is at posthog.com/subprocessors.

PostHog offers AI-assisted analytics features which we have enabled. These features only operate on the analytics data described in the "Product analytics" section above, via PostHog and its sub-processors. They never access anything you type in Hunique, because your content never reaches PostHog.

Legal basis for processing

Under UK GDPR, we rely on the following lawful bases:

• Performance of a contract (Article 6(1)(b)) for processing your email to sign you in and keep you signed in, and for processing your input through AI features. Both are services you're actively asking us to provide.
• Legitimate interests (Article 6(1)(f)) for collecting product analytics across the website and the app. The interest pursued is understanding how Hunique is used so we can improve it. Once you've signed in, those analytics are linked to your account; our assessment is that the privacy impact remains low because we don't profile, advertise, or share, the data stays inside our processors, and you can object at any time by emailing [email protected].

Under PECR (as amended by the Data (Use and Access) Act 2025, in force from 5 February 2026), storage of and access to data on your device fits two exemptions to the consent requirement:

• The strictly-necessary exemption covers your sign-in cookie and the local storage your in-app reflections live in - the app can't function without them.
• The new low-risk analytics exemption (introduced by the DUAA) covers the cookies and similar storage our analytics relies on. It applies because the data we collect is used solely to provide statistical information about how our service is used, by us via PostHog as our processor, and isn't combined with anyone else's data or used for advertising.

How long we keep things

Your rights

Under UK GDPR you have the right to access, correct, delete, or restrict the use of any personal data we hold about you, to object to processing based on legitimate interests, to data portability, and to complain to the UK Information Commissioner's Office at ico.org.uk/make-a-complaint.

In practice:

• For the content you've created in the app (logs, conversations, tracked patterns), use the "Delete content on this device" button in the Data & privacy panel. It erases everything from your browser at any time. You don't need to ask us - nothing about it goes through us.
• For your account email and the analytics tied to it, email [email protected]. We'll delete your email, the associated user ID, and the PostHog person linked to it within 30 days. You can also ask for an export of what we hold at the same address.
• To object to analytics without deleting your account, email the same address. We'll exclude your account from analytics processing and confirm when it's done.
• Before you've signed in, there's no email or account on file - the only record is a random device identifier in your browser. Using a private or incognito window keeps it that way for the duration of that window.

We respond to data-rights requests within one month. We don't make automated decisions about you and we don't profile you.

Children

Hunique isn't directed at children under 16 and we don't knowingly collect data from them.

Changes to this page

If we make meaningful changes to how we handle data, we'll update this page and let you know inside the app. The version number and "Last updated" date below always reflect the current version.

Version 0.2 -- Last updated 19 May 2026