Privacy Policy — Ajeeb Personal

Effective date: [to be set on launch] Last updated: 2026-06-04 Legal entity: Tryfecta (the AI solutions company under the Maqam group) Contact: privacy@ajeeb.ai Jurisdiction: State of Kuwait

Plain English first, full terms below. We wrote this so you can actually read it. If something doesn't make sense, email us at privacy@ajeeb.ai.

---

In plain English (the TL;DR)

• We collect what you tell Ajeeb. Your WhatsApp number, your messages, and the things you share with Ajeeb so it can remember you across conversations.
• We use it only to power your personal assistant. We don't sell your data. We don't show ads. We don't share with partners. Nothing.
• Your family names never leave our servers. This is our hard rule. We call it Charter §4 family aliasing — the names of your spouse, children, and close family are tokenized to placeholders (FAMILY_M1, FAMILY_C2…) before any text goes to an external AI provider, and the response is unmasked locally. The third-party AI providers never see "Mishary" or "Aysha." Read Section 0 for the full mechanic.
• One big exception: most chat stays on our own servers (we run a local AI model called Hermes), but for advanced features — long-form reasoning, voice synthesis, image analysis — we send specific requests to one of our AI providers (Anthropic, OpenAI, or ElevenLabs). Those providers process the request on US/EU servers, return the answer, and do not retain or train on it. See Section 5.
• You can delete everything. Send /delete_me on WhatsApp and we wipe your account and memory in 24 hours.
• You can see what we know. Send /memory and you get everything Ajeeb has stored about you.
• Children under 18 shouldn't use Ajeeb. This is a consumer product for adults.

---

0. Charter §4: family-name aliasing (the most important protection)

This is the protection we are most proud of, and the one we want you to understand in detail. It is not a marketing feature — it is a hard rule we wrote into our own architecture, named Charter §4 after the internal document that governs how we treat family data.

The rule, in one sentence: the names of your immediate family (spouse, children, siblings, parents) are never sent to any third-party AI provider, ever.

How it works:

1. When you first onboard, you tell Ajeeb who is in your immediate family — for example, "my wife is Aysha, my son is Mishary, my daughter is Sharifa, nicknamed Shosho." This list lives in an encrypted file on your VPS partition (file permissions mode 600, never checked into source control, never replicated to other servers).
2. Every time Ajeeb prepares to call an external AI provider (Anthropic, OpenAI, ElevenLabs), a tokenizer scans the outgoing text for any of your family names — including nicknames, diminutives, and Arabic/English variants — and replaces them with stable placeholders: FAMILY_SPOUSE_1, FAMILY_CHILD_1, FAMILY_CHILD_2, and so on.
3. The provider sees the tokens, never the names. The provider replies using the same tokens.
4. The reply is unmasked inside our servers, the tokens are swapped back to real names, and then the answer reaches you.

What this means in practice:

• If you ask Ajeeb "remind Aysha about Mishary's dentist on Tuesday," what Anthropic actually receives is the equivalent of "remind FAMILY_SPOUSE_1 about FAMILY_CHILD_1's dentist on Tuesday." The names exist only in our system.
• This applies to messages, memory writes, voice synthesis text, image captions, and every other outbound call. There is no path that bypasses it.
• It also applies to backups, logs, and any data we ever export for debugging — those redact through the same tokenizer.

Why it matters:

• If our third-party AI providers were ever breached, leaked, subpoenaed, or trained on by mistake, your family names are not in the dataset. They were never there.
• Your "circle" stays at the kitchen table. The AI helps you, but it does not learn who you love by name.

What this does NOT protect:

• It does not redact other people you mention (colleagues, friends, public figures). Family is the protected class because family is the most sensitive and the easiest to enumerate.
• It does not redact your own name and phone number — those are how the provider knows you are a legitimate user. (Your phone is also pseudonymized to a hash for non-essential calls.)
• It does not protect against you copy-pasting names into a different app or screenshot. We can only control what leaves our servers.

How to verify it yourself:

• Send /family list on WhatsApp — Ajeeb shows you exactly which names are in the aliasing table.
• Send /family add [name] [relation] to add someone.
• Send /family remove [name] to remove.
• Send /audit_last_call for a specific message — we will show you the redacted version of what was actually sent to the provider, side by side with what you wrote.

If you would like the technical specification, we publish the masking source code on request at privacy@ajeeb.ai.

---

1. Who we are

Ajeeb Personal is a personal AI assistant operated by Tryfecta, based in Kuwait. Tryfecta is the AI solutions company within the Maqam group of companies. You can reach us at:

• Privacy questions: privacy@ajeeb.ai
• General support: support@ajeeb.ai
• Postal: Tryfecta, c/o Prismic Media / Maqam office, Kuwait [full address to be confirmed before public launch]

Throughout this policy, "we", "us", and "Ajeeb" mean Tryfecta. "You" means you, the person using Ajeeb Personal.

2. What data we collect

2.1 Data you give us directly

• Your WhatsApp phone number. Required. This is your account identifier.
• Your display name. Optional. You can tell Ajeeb what to call you.
• Everything you send in a message. Text, voice notes (if you send them), images (if you send them). All message content.

2.2 Data we derive from your use

• Memory inferences. Ajeeb's core feature is learning about you over time. When you mention your family, your work, your preferences, your goals, we store these as memory entries so Ajeeb can refer to them later. You can view all of them with /memory and delete any of them with /memory forget [item].
• Usage patterns. When you message, how often, conversation length, error rates. This is operational data — we use it to keep the service running.
• Conversation checkpoints. For debugging and reliability, we store snapshots of each conversation step (intent, agent response, tool calls). Same deletion as messages.

2.3 Data we do NOT collect

• Your email (not needed to use Ajeeb)
• Your location (unless you explicitly share it in a message)
• Your contacts
• Any data from other apps on your phone
• Payment info (the service is free in v1)

3. How we use your data

Only one purpose: to run Ajeeb Personal for you.

Specifically: - Send your messages to the language model so Ajeeb can respond - Store your messages and memory so Ajeeb can remember you across conversations - Operate the service — monitor errors, improve response quality, fix bugs - Enforce our Terms of Service (e.g., if someone abuses the service)

We do NOT use your data for: - Advertising (there are no ads) - Selling to third parties (we don't) - Training public AI models on your messages (we don't) - Marketing to you or anyone else - Analytics products (no Segment, Mixpanel, Google Analytics, etc.)

4. How long we keep your data

• Messages: Until you delete your account or ask us to delete specific conversations. No automatic purge.
• Memory entries: Same as messages. You can delete individual memories with /memory forget [item].
• Usage/operational data: 90 days, then aggregated or purged.
• Account-deletion records: We keep a minimal record that an account was deleted (phone number hash + timestamp) for 12 months to handle re-registration and abuse cases.

5. Who we share your data with

5.1 AI model providers (critical disclosure)

To make Ajeeb respond intelligently, we use a mix of AI models — most of your conversation stays on our own servers, and only specific requests are sent to third-party AI providers:

• Hermes (local) — our primary chat runtime, running on our EU-hosted servers (see 5.2). Your everyday messages are processed here, never leaving our infrastructure. This is the default for ~90% of Ajeeb's responses.
• Anthropic (Claude) — used for long-form reasoning, complex analysis, and file generation. Anthropic processes the specific request on US servers. They do not train on API calls, and they retain data briefly for abuse monitoring (typically 30 days).
• OpenAI — used for certain specialized features (e.g. image analysis when configured). Same posture as Anthropic: no training on API calls, brief retention for abuse monitoring.
• ElevenLabs — used when you ask Ajeeb to reply by voice (TTS). They process the text-to-be-spoken on US/EU servers and return audio.

For all three external providers, we send only the specific message or text fragment needed for the feature, never your entire conversation history.

• We do not control these providers' systems. The data we route to them leaves Kuwait when it goes out.
• If this international transfer is a concern for you, do not use Ajeeb for highly sensitive information (medical records, legal proceedings, trade secrets). You may also disable voice replies (/voice off) and image analysis (/no_images) to keep your usage local-only.

5.2 Infrastructure providers

• Hostinger — our VPS host. Our servers for Ajeeb Personal are located in Paris, France (Île-de-France region). This means your message history and memory data are physically stored in the European Union.
• Cloudflare — DNS and DDoS protection (does not see message content)

5.3 We don't share with:

• Advertisers — we have none
• Data brokers — we have no relationships
• Other companies — including those in our portfolio (Prismic Media, Maqam ventures, etc.)
• Law enforcement, except when required by valid Kuwait legal process

6. Your rights

You have the right to:

• See your data. Send /memory to view all memory entries. Email privacy@ajeeb.ai for a full export including messages.
• Correct your data. Tell Ajeeb you want something changed, or reply to a memory to update it.
• Delete your data. Send /delete_me on WhatsApp. We wipe your account in 24 hours (24h delay is the grace period in case you change your mind).
• Delete specific memories. Send /memory forget [item].
• Withdraw consent. Stop using Ajeeb anytime. We still recommend /delete_me to clear stored data.
• Complain to a regulator. In Kuwait, contact the relevant data protection authority. If the CITRA-led PDPL framework applies to our processing, we will honor those rights.

7. Security

• All data is encrypted at rest (Postgres with encrypted fields for memory content)
• TLS 1.3 in transit for all connections
• Strict per-user isolation in the database (your data is never returned in another user's query)
• SSH key-only server access, root login disabled
• Firewall rules limit server ports to only what's required
• Regular backups, encrypted

We are NOT perfect. No system is 100% secure. If we ever have a breach affecting you, we will notify you within 72 hours of discovery via WhatsApp and email (if provided).

8. Children

Ajeeb Personal is for users 18 and older. We do not knowingly collect data from anyone under 18. If you believe a child has an account, email privacy@ajeeb.ai and we will delete it.

9. International data transfers

Your data moves across jurisdictions in two ways:

1. Storage in France. Your conversations and memory are stored on Hostinger servers in Paris, France (EU). The EU applies the General Data Protection Regulation (GDPR) to data processed there. While you are in Kuwait, your data rests in the EU.
2. Processing by US-based AI providers. As noted in Section 5, specific requests sent to Anthropic, OpenAI, or ElevenLabs are processed on their US servers. This is a separate cross-border transfer from the storage location. The default Hermes runtime is local to our EU servers.

By using Ajeeb, you consent to these cross-border flows. If you are uncomfortable with either transfer, please do not use the service.

10. Changes to this policy

If we change this policy materially (expanded data collection, new sharing, changed retention), we will:

1. Notify you on WhatsApp at least 14 days before the change takes effect
2. Update the "Last updated" date at the top
3. Post the new version at https://ajeeb.ai/privacy

Continued use after the effective date means acceptance. If you don't accept, /delete_me is always available.

11. Governing law

This policy is governed by the laws of the State of Kuwait. Any disputes will be resolved in Kuwait courts, without prejudice to your rights under applicable mandatory consumer protection laws in your jurisdiction.

12. Contact

• Privacy questions, data requests, complaints: privacy@ajeeb.ai
• Data Protection Officer: Fahad Alibrahim (Founder, Tryfecta) — reachable via privacy@ajeeb.ai

---

We'll add an Arabic version at /privacy/ar before public launch. Until then, if anything here is unclear or you prefer Arabic, email privacy@ajeeb.ai and we'll answer in whichever language you prefer.