QueenAI
Privacy Policy
Effective date: 12 June 2026
Privacy Policy for QueenAI
QueenAI ("we", "our", or "us") is operated by Voxta Voce Ltd. We respect your privacy and are committed to protecting your personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use the QueenAI mobile application ("App"). By using the App, you agree to the terms of this Privacy Policy.
Who We Are
QueenAI is a support and wellbeing app that connects people in the UK going through difficult life transitions — such as divorce, separation, bereavement, or career change — with real organisations, peer communities, and qualified professionals who can help. QueenAI is not a therapist, counsellor, solicitor, or financial adviser. We provide guidance and signposting, not regulated advice.
Voxta Voce Ltd is the data controller for the purposes of UK data protection law.
Information We Collect
- Account Information: Name, email address, and authentication credentials when you create an account (via email/password or Google/Apple sign-in).
- Profile Information: Information you voluntarily share during conversations or onboarding, such as your life situation (e.g. going through divorce, recently bereaved), location (UK region), and preferences (e.g. online vs in-person support).
- Conversation Data: Messages you exchange with the QueenAI support bot and within group chats. These are stored to maintain conversation continuity across sessions and to improve the quality of support.
- Support Profile: Structured tags derived from your conversations (e.g. life situation, emotional state, what you're looking for) used to match you with relevant organisations and communities. This profile is built incrementally from what you share — we never infer or guess information you haven't provided.
- Device Information: Device type, operating system, app version, and anonymous usage statistics for app improvement and crash reporting.
- Log Data: Technical data about your interaction with the App (e.g. session duration, feature usage, error logs) for analytics and troubleshooting.
Special Category Data
During conversations, you may share information that constitutes special category data under UK GDPR, including information about your health, emotional wellbeing, or domestic circumstances. We process this data on the basis of your explicit consent (Article 9(2)(a) UK GDPR), which you provide by voluntarily sharing this information in conversation. You are never required to share sensitive information, and you can ask us to delete it at any time.
How We Use Your Information
- Provide personalised support and signposting to relevant UK organisations, professionals, and peer communities.
- Maintain conversation context across sessions so you don't have to repeat yourself.
- Match you with appropriate groups, events, and resources based on what you've shared.
- Detect crisis situations (e.g. expressions of self-harm or immediate danger) and provide appropriate emergency signposting.
- Improve the functionality, safety, and quality of the App.
- Communicate with you about app updates or support (only with your consent for non-essential communications).
- Ensure security and prevent misuse.
Lawful Basis for Processing
We process your personal data under the following lawful bases (Article 6 UK GDPR):
- Consent (Article 6(1)(a)): For processing special category data you voluntarily share in conversations.
- Legitimate interests (Article 6(1)(f)): For providing the core support service, maintaining conversation continuity, improving the App, and ensuring security. We have assessed that these interests do not override your rights and freedoms.
- Legal obligation (Article 6(1)(c)): Where we are required to retain or disclose data by law.
AI and Automated Processing
QueenAI uses artificial intelligence (large language models) to:
- Understand what you share in conversation and respond with relevant support and information.
- Extract structured profile tags from your messages to improve the relevance of signposting and recommendations.
- Detect potential crisis situations requiring emergency signposting.
No automated decision-making with legal or similarly significant effects is carried out. All AI-generated responses are informational and supportive in nature — they do not constitute legal, financial, medical, or therapeutic advice. Organisation recommendations are based on tag matching, not profiling for commercial purposes.
Data Storage & Security
Your data is stored on secure servers with encryption in transit (TLS) and at rest. We follow industry-standard security practices including access controls, regular security reviews, and secure authentication. Conversation data is stored in databases hosted within infrastructure operated by our cloud service providers.
While we take all reasonable precautions, no method of data transmission or storage is 100% secure. If you become aware of any security issue, please contact us immediately.
Data Retention
- Account data: Retained for as long as your account is active. Deleted within 30 days of account deletion request.
- Conversation data: Retained for as long as your account is active to maintain continuity. You may request deletion of specific conversations or all conversation history at any time.
- Support profile: Retained for as long as your account is active. Deleted when your account is deleted.
- Anonymised analytics: May be retained indefinitely in aggregate, non-identifiable form for service improvement.
Data Sharing
We do not sell your personal information. We do not share your data with third parties for marketing purposes. We may share data only when:
- Required by law, regulation, or legal process (e.g. court order, safeguarding referral).
- Necessary to protect the rights, safety, or wellbeing of users or the public — including in situations where there is an immediate risk to life.
- Needed for service providers who assist in App operations (e.g. cloud hosting, authentication services), who are bound by data processing agreements and strict confidentiality obligations.
We use the following third-party processors:
- Google Cloud Platform: Infrastructure and AI model hosting (Gemini Flash model).
- Firebase (Google): Authentication services.
- Anthropic: AI model provider (conversation processing).
International Data Transfers
Some of our third-party processors operate outside the UK. Where personal data is transferred outside the UK, we ensure appropriate safeguards are in place, including Standard Contractual Clauses (SCCs) or transfers to countries with an adequacy decision from the UK Secretary of State, in compliance with Chapter V of the UK GDPR.
Your Rights
Under UK GDPR, you have the following rights:
- Right of access: Request a copy of the personal data we hold about you.
- Right to rectification: Request correction of inaccurate personal data.
- Right to erasure: Request deletion of your personal data ("right to be forgotten").
- Right to restrict processing: Request that we limit how we use your data.
- Right to data portability: Request your data in a structured, commonly used, machine-readable format.
- Right to object: Object to processing based on legitimate interests.
- Right to withdraw consent: Where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing.
- Right to lodge a complaint: You have the right to complain to the Information Commissioner's Office (ICO) at ico.org.uk or by calling 0303 123 1113.
To exercise any of these rights, please contact us at support@voxta.com. We will respond within one month.
Children's Privacy
This App is intended for users aged 18 and over. We do not knowingly collect personal information from anyone under 18. If we become aware that we have collected data from a person under 18, we will delete it promptly.
Crisis & Safeguarding
If you share information suggesting you or someone else is in immediate danger or at risk of serious harm, our AI system is designed to provide emergency signposting (e.g. Samaritans 116 123, emergency services 999). In exceptional circumstances involving an immediate risk to life, we may be required to share limited information with emergency services or safeguarding authorities. This would only occur where strictly necessary and proportionate.
Third-Party Services & Links
The App may signpost you to external organisations, websites, or services (e.g. Citizens Advice, MoneyHelper, Women's Aid). We are not responsible for the content, privacy practices, or data handling of third-party services. We encourage you to review their privacy policies before sharing personal information with them.
Changes to This Privacy Policy
We may update this Privacy Policy from time to time. Material changes will be notified to you via the App or by email. The "Effective date" at the top of this page indicates when the policy was last revised. Continued use of the App after updates constitutes acceptance of the revised policy.
Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:
Email: support@voxta.com
Data Controller: Voxta Voce Ltd