Privacy Policy

Last updated: March 2026

WhisperLover ("we", "our", or "the Service") is an 18+ AI companion and interactive storytelling platform. This Privacy Policy explains what personal information we collect, how we use it, and the choices you have. By using WhisperLover, you agree to the practices described below.

1. Information We Collect

1.1 Account Information

When you register, we collect your name, email address, and profile image. Registration is available via Google OAuth or email and password. If you sign in with a third-party provider, we receive only the information you authorize that provider to share (such as your name, email, and profile picture). We also generate a unique username for your public profile.

1.2 Conversation and Message Data

All messages you send to AI characters, as well as the AI responses you receive, are stored to maintain conversation continuity. This includes:

  • Message text content and timestamps
  • Conversation titles and metadata (character involved, message count)
  • Automated context summaries derived from your conversations — including short-term scene context, long-term relationship memory, and narrative progress notes — used solely to provide a continuous, personalized experience
  • Any optional personal persona description you provide before starting a conversation

Conversation data is used solely to deliver and improve the Service. It is not sold or shared with third parties beyond what is described in Section 3.

1.3 User-Generated Content

If you create AI characters, their details (name, description, personality, avatar image, and settings) are stored and may be visible publicly depending on your visibility settings. Your public profile (username, bio, public character count, follower and following counts) is accessible to other users.

1.4 Generated Images

Images generated through the platform are stored on our cloud storage infrastructure and linked to your account. Image prompts and generation metadata are also retained.

1.5 Payment and Subscription Data

We do not store your full payment card or banking details. Payment processing is handled by our third-party payment processors. We receive and store confirmation data such as subscription tier, status, transaction reference IDs, and credit balances.

1.6 Usage Data and Logs

We collect information about how you use the Service, including:

  • Daily message counts and feature usage (for rate limiting and billing)
  • Actions such as favoriting characters, reactions, and tips sent
  • Interaction preferences used to personalize character recommendations
  • IP address and browser/device information for security and fraud prevention

1.7 Cookies and Session Data

We use essential session cookies strictly necessary to keep you logged in and to protect your session. We do not use advertising, tracking, or analytics cookies from third parties. Session data is temporarily cached and expires automatically.

2. How We Use Your Information

  • To authenticate you and maintain your account
  • To provide AI character conversations and generate personalized responses
  • To maintain conversation memory so your AI relationships feel continuous
  • To process and manage payments, subscriptions, and credit balances
  • To enforce subscription tier limits (daily messages, image credits, conversation count)
  • To generate AI images when requested within conversations
  • To personalize character recommendations based on your interaction history
  • To detect and prevent fraud, abuse, and violations of our Terms of Service
  • To communicate important service updates, policy changes, or security notices
  • To maintain platform health, stability, and security

3. Third-Party Services and Data Sharing

To operate the Service, we work with carefully selected third-party service providers. We share only the minimum data necessary with each provider.

3.1 AI Response Generation

Your conversation messages are transmitted to third-party AI language model providers to generate character responses. Message content is sent to these providers' APIs for processing and is subject to their respective data handling policies. We recommend not sharing sensitive personal information (such as real names, addresses, or financial details) in AI conversations. We do not use your conversation content to train AI models.

3.2 Image Generation

When you request AI-generated images, image prompts and parameters are transmitted to a third-party image generation service for processing. Generated images are then stored on our cloud storage infrastructure.

3.3 Cloud Hosting and Storage

Our application, database, and media files are hosted on reputable cloud infrastructure providers. Your data is stored on servers subject to industry-standard security and availability guarantees.

3.4 Authentication Providers

If you use a social sign-in option (e.g., Google), authentication is handled by that provider. We receive only the profile information you authorize. Your credentials for those providers are never stored by us.

3.5 Payment Processors

Subscription billing and one-time credit purchases are handled by our payment processor partners. Your full payment details are managed exclusively by those processors and are never stored on our systems. We receive only transaction confirmation and subscription status via secure webhook notifications.

We do not sell, rent, or trade your personal data with any third party for marketing or advertising purposes.

4. Adult Content and Sensitive Preferences

WhisperLover is an 18+ platform that allows users to enable explicit (NSFW) content in AI conversations. Your content preference setting is stored with your account and may constitute sensitive personal data under applicable law. By enabling this setting, you explicitly consent to the processing of this preference. You may withdraw consent at any time by disabling the setting in your account.

Messages from NSFW conversations are processed by our AI providers in the same manner as standard messages. All characters and scenarios are entirely fictional. We do not use your conversation content for AI model training.

We have zero tolerance for child sexual abuse material (CSAM) or any content involving minors in a sexual context. Any such content detected on our platform will result in immediate account termination, preservation of relevant data, and mandatory reporting to the appropriate authorities including the National Center for Missing & Exploited Children (NCMEC) and local law enforcement.

5. Data Storage and Security

We implement industry-standard security measures including:

  • Encryption in transit via HTTPS/TLS for all communications
  • Secure password hashing (no plain-text passwords stored)
  • Automatic expiry of session and temporary cache data
  • Access controls limiting internal access to production data
  • Short-lived authentication tokens with automatic refresh

No security system is perfect. In the event of a data breach affecting your personal information, we will notify you as required by applicable law.

6. Data Retention

  • Account data — Retained for up to 3 years following your last activity, or deleted within 30 days of an account deletion request, whichever comes first.
  • Conversation and message data — Retained until you delete individual conversations or your account. Deleted with your account upon closure.
  • Generated images — Retained until you delete them or your account is closed, at which point they are removed from storage.
  • Usage logs — Retained for up to 90 days for billing verification and abuse prevention.
  • Payment records — Transaction reference IDs and subscription history are retained for up to 10 years for legal and accounting compliance.
  • Session and cache data — Expires automatically, typically within 30 days of last activity.

7. Your Rights and Choices

You have the following rights regarding your personal data:

  • Access — Request a copy of the personal data we hold about you.
  • Correction — Update inaccurate or incomplete account information via your profile settings.
  • Deletion — Request deletion of your account and all associated data. Certain data (e.g., payment records for legal compliance) may be retained as required by law.
  • Data portability — Request an export of your conversation history and account data in a structured format.
  • Withdraw consent — You may disable NSFW content or delete individual conversations at any time through your account settings.
  • Object to processing — Contact us to object to specific uses of your data where we rely on legitimate interests.

To exercise any of these rights, contact us at [email protected]. We will respond within 30 days.

8. GDPR (European Economic Area)

If you are located in the EEA, we process your personal data under the following legal bases:

  • Contract performance — Processing necessary to provide the Service you subscribed to (account management, AI conversations, billing).
  • Legitimate interests — Security, fraud prevention, platform improvement, and service communications.
  • Consent — NSFW content processing and optional personalization features. You may withdraw consent at any time.
  • Legal obligation — Retention of payment records for accounting and tax compliance.

Some data processing may involve transfers to service providers outside the EEA. We ensure such transfers are subject to appropriate safeguards in compliance with applicable data protection law. You have the right to lodge a complaint with your local data protection authority.

9. CCPA (California Residents)

California residents have the right to:

  • Know what personal information is collected about you
  • Know whether your personal information is sold or disclosed, and to whom
  • Opt out of the sale of personal information
  • Request deletion of personal information
  • Receive equal service and price regardless of exercising privacy rights

We do not sell personal information. To exercise your California privacy rights, contact us at [email protected].

10. Children's Privacy (COPPA)

WhisperLover is strictly for users aged 18 and over. We do not knowingly collect, store, or process personal information from anyone under 18. Age verification is required on first access to the platform. If we discover that a user under 18 has registered, we will immediately suspend and delete their account and all associated data. If you believe a minor has accessed the Service, please contact us immediately at [email protected].

11. Links to Third-Party Sites

The Service may contain links to external websites. We are not responsible for the privacy practices of those sites and encourage you to review their privacy policies before providing any personal information.

12. Changes to This Policy

We may update this Privacy Policy as the Service evolves. If we make material changes, we will update the "Last updated" date at the top of this page and, where appropriate, notify you via email or an in-app notice. Continued use of the Service after the updated policy takes effect constitutes your acceptance of the revised terms.

13. Contact Us

For privacy-related questions, requests, or concerns, please contact us at:

[email protected]

We aim to respond to all privacy inquiries within 30 days.

Terms of ServicePrivacy PolicyContent Policy & 2257

WhisperLover © 2026. All rights reserved.