Security and Privacy
Built for private journaling with clear data boundaries and secure account controls.
Core Safeguards
Encrypted Data Transport
All app traffic is encrypted in transit using modern TLS standards.
RLS-Based Access Controls
Row-level security keeps each user record scoped to authenticated ownership.
Private Journal Architecture
Journal history is stored for your product experience and remains private by default.
Clear Policy Boundaries
Terms and privacy documents define exactly how data is handled and protected.
No Public Model Training
Your private entries are not used to train public models.
Subscription-Gated Access
Tier checks control premium capabilities while preserving baseline private journaling access.
Important Commitments
awfx.ai is a private reflection and growth platform.
User journaling data is not sold to third parties.
Private entries are not used to train public models.
All account access is authenticated and policy-scoped.
Billing is handled by trusted payment providers with customer portal controls.
Regulatory Readiness & Safety
Privacy and AI laws are evolving quickly. We continuously review new requirements and update product controls, policy language, and safety workflows to stay ahead.
We track emerging privacy laws and proposed health-data legislation (including HIPRA-style obligations and state privacy acts).
We treat wellness and inferred health data as sensitive and design for explicit consent, minimization, and user control.
Users have pathways to access, export, correct, and delete account data.
We maintain incident response and breach-notification procedures aligned with current FTC and state expectations.
Crisis resources (like 988 and Crisis Text Line) are visible in high-risk surfaces and never paywalled.
AI experiences are scoped for wellness support, not diagnosis, treatment, or emergency intervention.
awfx.ai is a wellness tool, not therapy or medical care. If you are in immediate danger, call emergency services; in the U.S., call or text 988.