Legal
Privacy Policy
Last updated: 6 June 2026
Overview
Ameora (“we”, “our”, “us”) is a migraine tracking and atmospheric forecasting service. We take your privacy seriously, especially because the data you log — headaches, triggers, medications, menstrual cycles — is sensitive health information.
This policy explains what we collect, why, how it is stored, who we share it with, and your rights. If you have questions, contact us at support.ameora@gmail.com.
Data we collect
Account information
Your email address, created when you register. Used only to authenticate you and send optional service communications (monthly summaries, critical account notices).
Migraine & health logs
When you log an attack you may provide: date & time, pain intensity, pain location (stored as SVG coordinates on a head diagram), duration, triggers, medications taken, associated symptoms, aura description, sleep hours, menstrual cycle day, and free-text notes.
This data is stored in our database and used to calculate personal pattern insights, generate your doctor report PDF, and personalise your risk forecast.
Location & weather
You may optionally save one or more locations (city name, latitude, longitude, time zone). This is used solely to fetch barometric pressure, humidity, temperature, pollen, and air quality forecasts from Open-Meteo on your behalf. Your coordinates are never shared with advertising networks.
Apple Health (HealthKit)
If you enable Apple Health integration, Ameora may read sleep data from HealthKit on your device. HealthKit data is processed on-device and, where synced, stored encrypted in your account. We never sell or share HealthKit data with third parties, and it is never used for advertising purposes, consistent with Apple’s HealthKit guidelines.
AI conversations
The Ameora AI assistant (“Ameora AI”) stores your conversation messages in our database linked to your account. Message content is also sent to Anthropic’s Claude API to generate responses; Anthropic does not use API inputs to train its models by default. See Anthropic’s privacy policy for details.
LINE messaging (optional)
If you choose to connect your LINE account (this is entirely optional), you can log attacks by sending text messages to the Ameora LINE bot.
When you connect, we collect and store:
- ·Your LINE user ID (an identifier used to link your LINE and Ameora accounts)
- ·The text content of messages you send to the bot (used to extract attack data)
Message content is used solely to parse and create attack log entries. Raw message text is not retained after processing — only the extracted structured data (intensity, triggers, etc.) is stored in your account. You can disconnect your LINE account at any time, which removes your LINE user ID from our systems. LINE Corporation’s own privacy policy also applies to your use of the LINE platform.
Usage & analytics
We collect basic, anonymised usage signals (page views, feature interactions) to improve the product. We do not use third-party advertising trackers. Analytics are processed in aggregate and are not tied to your identity.
Billing
Payment processing is handled by Stripe. We never see or store your full card number. Stripe provides us with a customer ID and subscription status. Stripe’s privacy policy governs their handling of payment data.
How we use your data
- ·Provide and improve the Ameora service
- ·Calculate personalised migraine risk scores from your weather and trigger history
- ·Generate AI pattern summaries and doctor-ready PDF reports
- ·Send optional email summaries and critical service notices
- ·Parse LINE messages to create attack logs (only if you connect your LINE account)
- ·Process subscription payments via Stripe
- ·Detect and prevent fraud or abuse
- ·Comply with legal obligations
We do not sell your data. We do not use your health data to train AI models or for advertising targeting.
Data storage & security
Your data is stored in a Supabase-managed PostgreSQL database hosted on AWS (EU region by default). Data is encrypted at rest and in transit (TLS 1.2+). The application runs on Cloudflare’s global edge network.
Access to your data is restricted by row-level security policies: only authenticated requests presenting your user ID may read or modify your records.
While we take industry-standard precautions, no system is completely secure. If you believe your account has been compromised, contact us immediately at support.ameora@gmail.com.
Third-party services
| Service | Purpose | Data sent |
|---|---|---|
| Supabase | Database & auth | All user data |
| Stripe | Subscription billing | Email, billing info |
| Open-Meteo | Weather & air quality | Lat/long only |
| Anthropic (Claude) | AI assistant | Chat messages |
| LINE Corporation | LINE messaging integration (optional) | LINE user ID, message text |
| Cloudflare | Hosting & CDN | IP (anonymised) |
| Apple HealthKit | Sleep data (optional) | On-device only |
Data retention
Your account data is retained for as long as your account is active. If you delete your account, all personal data (attacks, logs, AI conversations, location settings) is permanently deleted within 30 days, except where we are required to retain it for legal or financial compliance (e.g. Stripe billing records are retained for 7 years per financial regulations).
Your rights
Depending on your jurisdiction you may have the right to:
- ·Access a copy of your personal data
- ·Correct inaccurate data
- ·Delete your account and all associated data
- ·Export your attack log as a CSV or PDF
- ·Withdraw consent to optional communications
- ·Lodge a complaint with your local data protection authority (EEA/UK users)
To exercise any of these rights, email support.ameora@gmail.com or use the account deletion option in Settings → Account.
Cookies
Ameora uses only essential session cookies required for authentication. We do not use advertising or cross-site tracking cookies. Analytics are cookieless and anonymised.
Children
Ameora is not directed at children under 16. We do not knowingly collect personal data from anyone under 16. If you believe we have inadvertently collected such data, contact us to request deletion.
Changes to this policy
We may update this policy as the product evolves. We will notify you by email or an in-app notice for material changes. The date at the top of this page reflects the most recent revision.
Contact
Questions about this policy or your data: support.ameora@gmail.com
Ameora · support.ameora@gmail.com