SessionsAI

Privacy Policy

Last updated: March 26, 2026

This Privacy Policy describes how SessionsAI ("we", "us", or "our") collects, uses, and protects your information when you use our service at sessionsai.com.

We are committed to protecting your personal data in accordance with the General Data Protection Regulation (GDPR) and applicable Norwegian data protection law.

Who We Are

SessionsAI is operated by:

SessionsAI Schøningsdal 3 7020 Trondheim, Norway hello@sessionsai.com

What Data We Collect

Account data — when you sign up, we collect your name and email address to create and manage your account.

Training data — sessions, plans, wellness parameters, and any notes or reflections you log. This is the core of the service and is stored securely on your behalf.

Usage data — information about how you use the app (pages visited, features used, device type, IP address, browser type). This helps us understand and improve the product.

Communications — if you contact us by email, we keep a record of that correspondence.

How We Use Your Data

  • To provide the service — storing and displaying your training data, powering the AI assistant and insights.
  • To improve the product — analysing usage patterns to make SessionsAI better.
  • To communicate with you — sending important updates about the service, responding to your questions.
  • To process payments — handling subscription billing securely via our payment processor.

We do not sell your personal data to third parties. We do not use your training data to train external AI models without your explicit consent.

Legal Basis for Processing (GDPR)

  • Contract performance — processing necessary to deliver the service you signed up for.
  • Legitimate interests — improving the product, preventing fraud, and ensuring security.
  • Consent — where you have given explicit consent (e.g. marketing communications).

Data Storage and Security

Your data is stored on servers within the European Economic Area. We use industry-standard encryption in transit (TLS) and at rest. Access to personal data is restricted to authorised personnel only.

No method of internet transmission is 100% secure. While we take reasonable precautions, we cannot guarantee absolute security.

Third-Party Services

We use a small number of trusted third-party services to operate SessionsAI:

  • Clerk — user authentication and account management
  • Convex — database and backend infrastructure
  • Anthropic — AI model powering the training assistant (your data is sent to generate responses but is not used to train Anthropic's models)
  • Stripe — payment processing

Each of these processors operates under their own privacy policies and data processing agreements with us.

Data Retention

We retain your account and training data for as long as your account is active. If you delete your account, we will delete your personal data within 30 days, except where we are required by law to retain it longer.

Your Rights (GDPR)

As a data subject, you have the right to:

  • Access — request a copy of the personal data we hold about you
  • Rectification — correct inaccurate data
  • Erasure — request deletion of your data ("right to be forgotten")
  • Portability — receive your data in a machine-readable format
  • Object — object to processing based on legitimate interests
  • Restriction — request that we limit how we use your data

To exercise any of these rights, contact us at hello@sessionsai.com. We will respond within 30 days.

You also have the right to lodge a complaint with the Norwegian Data Protection Authority (Datatilsynet) at datatilsynet.no.

Cookies

We use essential cookies to keep you logged in and maintain your session. We do not use third-party advertising or tracking cookies.

Children's Privacy

SessionsAI is not directed at children under 16. We do not knowingly collect personal data from anyone under 16. If you believe a child has provided us with their data, please contact us and we will delete it.

Changes to This Policy

We may update this policy from time to time. We will notify you of significant changes by email or via a notice in the app. The "last updated" date at the top of this page will always reflect the most recent version.

Contact

For any questions about this Privacy Policy or how we handle your data:

hello@sessionsai.com Schøningsdal 3, 7020 Trondheim, Norway