Back Sounds Like Me
Privacy icon Your Privacy Matters

Privacy Policy

Your privacy and safety are at the heart of how we design every part of Sounds Like Me.

Welcome to Sounds Like Me

Our patented big five OCEAN personality analysis service is carefully designed using insights from peer-reviewed research, foundational psychological texts, and original science. We maintain an uncompromising ethical standard: we proactively refer users to human therapists when appropriate, and we guarantee that your conversations remain strictly confidential - never used for AI training or shared with external providers.

Your data and conversations remain private, secure, and under your control. We know therapy is deeply personal, and we treat your conversations with the same respect and confidentiality that a professional therapist would.

Questions? Our privacy team is available at

Our Core Principles

Local-First Storage

Your therapeutic conversations stay on your device by default

Explicit Consent

Nothing is shared without your clear, active choice

Minimal Data Collection

We only collect what's necessary to provide our service

No Training Data

Your conversations are never used to train our AI

Professional Standards

We adhere to therapeutic industry privacy standards

What Information We Collect

Essential Information

  • Email address (for authentication)
  • Display name
  • Font size preference
  • Subscription status

Optional Information

  • Therapeutic conversations (stored locally by default)
  • Connection preferences (for sharing and comparing your personality test results with your friends)
  • Data sharing preferences

What We Don't Collect

  • Personal health records
  • Financial information beyond subscription status
  • Browser history
  • Device information beyond basic authentication needs
  • Location data

How Your Data is Stored

Local Storage

  • All conversations are stored locally on your device by default
  • You maintain full control over your data
  • You can delete conversations at any time
  • Local storage uses industry-standard encryption

Cloud Storage (Optional)

Only if you explicitly opt in:

  • Account preferences
  • Connection relationships

Data Sharing and Control

Patient Data Sharing

  • Conversations remain private by default
  • Sharing with friends requires explicit opt-in
  • You can revoke sharing permissions at any time
  • You choose what to share

Security Measures

Technical Security

  • End-to-end encryption for all communications
  • Industry-standard SSL/TLS protocols
  • Regular security audits
  • Automated threat detection

Access Controls

  • Multi-factor authentication available
  • Session management and timeout controls
  • Role-based access control
  • Audit logging of access attempts

Therapeutic Standards

Professional Ethics
  • Adherence to psychotherapy ethical guidelines
  • Compliance with mental health privacy standards
  • Regular privacy impact assessments
  • Continuous policy review and updates
Clinical Boundaries
  • Clear separation of AI and human therapy
  • Transparent referral processes
  • Crisis protocol adherence
  • Professional supervision framework

Your Rights

You have the right to:

  • Access your data
  • Delete your data
  • Be forgotten completely
  • Export your data
  • Modify sharing preferences
  • Revoke sharing permissions
  • Request account deletion

Data Retention

  • Local data: Retained until you delete it
  • Shared data: Retained until sharing is revoked
  • Account data: Retained until account deletion
  • Audit logs: 90 days

Changes to Privacy Policy

  • Advance notice of changes
  • Email notification of material updates
  • Version history maintained
  • Grace period for major changes

Contact Information

For privacy-related inquiries:

  • Data request handling: Within 30 days
  • Designated privacy officer available

Regulatory Compliance

GDPR

EU users compliance

CCPA

California users compliance

HIPAA

Aligned practices

Audits

Regular compliance audits

AI-Specific Privacy

AI Training

  • No use of user data for AI training
  • Pre-trained on approved academic sources
  • Regular model audits
  • Transparent AI limitations

AI Interactions

  • No persistent memory between sessions
  • No user profiling
  • Clear AI identification
  • No behavioural tracking

Data Protection

Encryption Standards

  • AES-256 encryption at rest
  • TLS 1.3 for data in transit
  • Secure key management
  • Regular encryption audits

Backup Protocol

  • No automated backups of conversations
  • Account settings backup only
  • Encrypted backup storage
  • Regular restore testing

Incident Response

Breach Protocol
  • 72-hour notification commitment
  • Detailed incident reporting
  • Impact assessment process
  • Remediation tracking
Recovery Process
  • Clear recovery procedures
  • User notification protocols
  • Service restoration priorities
  • Post-incident review

Third-Party Services

We use limited third-party services for:

  • Authentication (Google SSO)
  • Email communications
  • Payment processing
  • Infrastructure hosting

No third party has access to therapeutic content.

With warm regards, Sounds Like Me

www.soundslikeme.co.uk

Sounds Like Me is proudly part of the nRich suite of evidence-based and research-led AI psychology products.