Only Us ("the App," "we," "us," or "our") is a private communication app designed for couples. This Privacy Policy explains what data we collect, how we use it, your rights, and who we share it with. We are committed to collecting as little data as possible and protecting what we do collect.
By creating an account, you agree to this Privacy Policy. If you do not agree, do not use the App.
AI Coach (optional, off by default): If you turn on the AI Coach, the relevant content you've entered โ check-in responses, love notes, bucket-list items, calendar events, and aggregate counts โ is decrypted and sent to our AI provider (Anthropic) to generate your insights. Nothing is sent unless you enable the feature, it is never used to train AI models, and you can disable it at any time from your profile.
The App requests access to your camera, microphone, and photo library solely to capture and send photos, videos, and voice messages to your partner. This media is shared only within your couple connection. You may revoke these permissions at any time in your device settings.
Your email address is used only to: (a) verify your account during registration; (b) send password reset codes when you request them; and (c) respond to support requests you send us. We do not send marketing emails. Email is transmitted over a TLS-encrypted connection.
| Data type | Retention |
|---|---|
| Snaps | Deleted from our servers within seconds of being opened; any unopened snap is deleted within 24 hours |
| Stories | Automatically deleted after 24 hours |
| Messages, notes, media | Retained until you delete your account |
| Account data | Retained until you delete your account |
| Server logs | Up to 30 days |
| After account deletion | Production data is deleted immediately; any residual copies in routine backups are deleted within 30 days |
All communication between the App and our servers uses HTTPS/TLS encryption in transit. Messages, notes, and check-ins are additionally encrypted at rest using AES-256-GCM. Passwords are hashed with bcrypt and are never stored in plaintext. Verification codes are generated using a cryptographically secure random number generator.
The encryption key for at-rest content is held on our server. This means that, unlike an end-to-end encrypted app, we are technically able to access this content. We do not access your private content except: (a) to operate features you have enabled (such as the AI Coach); (b) to investigate abuse reported by you or your partner; or (c) where required by law. We restrict access to our production systems and never sell your content or use it for advertising.
In the event of a data breach affecting your personal information, we will notify you via the email address on your account within 72 hours of becoming aware of the breach, where required by applicable law.
We use a limited number of third-party services to operate the App. Each is bound by data processing terms consistent with this Policy:
| Service | Purpose | Data shared |
|---|---|---|
| DigitalOcean, Inc. | Server hosting and infrastructure (US-based) | App data is stored on DigitalOcean servers in the United States. Private content is encrypted at rest and we restrict production access. |
| Email provider | Sending verification and password reset emails | Your email address and the 6-digit code only |
| Cloudflare, Inc. | DNS and network security for onlyus.llc | IP address, request metadata (no content) |
| Sentry (Functional Software, Inc.) | Error monitoring and crash diagnostics | Technical error reports: error messages, device and app metadata. No message content or media. |
| Anthropic, PBC | AI Coach feature (only when you opt in) | Relationship context you've entered: check-in responses, love notes, bucket list items, calendar events, and aggregate counts. Your data is never used to train AI models. See Anthropic's Privacy Policy. |
We do not share your content, messages, or media with any of these providers except as described above. Anthropic only receives data when the AI Coach feature is actively enabled by you โ you can disable it at any time from your profile, and no further data will be sent.
Our servers are located in the United States. If you access the App from outside the United States, your data will be transferred to and processed in the United States. By using the App, you consent to this transfer. We apply appropriate safeguards as described in the Security section above.
Only Us is intended for users who are 18 years of age or older. We do not knowingly collect personal information from anyone under 18. If we learn that we have collected personal information from a user under 18, we will delete that information promptly. If you believe we have inadvertently collected such information, please contact us at support@onlyus.llc.
You have the following rights regarding your personal data:
California residents (CCPA/CPRA): You have the right to know what personal information we collect, request deletion of your personal information, and opt out of the sale of personal information. We do not sell personal information. To exercise your rights, contact support@onlyus.llc.
EU/UK residents (GDPR): Our lawful basis for processing your data is the performance of our contract with you (providing the App), and your consent for optional features such as the AI Coach. You have rights to access, rectification, erasure, restriction, portability, and objection. You also have the right to lodge a complaint with your local data protection authority. Contact us at support@onlyus.llc to exercise your rights.
If we make material changes to this Privacy Policy, we will notify you via the App or by email at least 14 days before the changes take effect. Continued use of the App after changes take effect constitutes acceptance of the revised Policy.
This Privacy Policy is governed by the laws of the State of Arizona, United States of America, without regard to conflict of law principles.
Questions or privacy requests? Email us at support@onlyus.llc
ยฉ 2026 Only Us. All rights reserved.