BondOS policies
BondOS helps people practise better communication. Because this can involve personal feelings and private notes, our public rules are written plainly and reviewed often.
BondOS is coaching and reflection support. It is not therapy, diagnosis, emergency help, legal advice, or a promise that a relationship will change. You can ask about your data, vendors, AI use, or a legal question on this page.
The public page stays simple. Detailed records are kept separately so we can answer support, security, vendor and compliance questions carefully.
New regulated or high-risk use cases are reviewed before they go live.
AI Act
We review BondOS features against the EU AI Act risk-based approach and UK data-protection expectations. This page is a public summary, not legal advice.
BondOS is built for relationship reflection, communication practice, surveys, insights and app support. It is not designed to make legal, medical, employment, credit, education, immigration, law-enforcement, or other high-stakes decisions.
BondOS is not for social scoring, hidden manipulation, biometric identification, deepfake abuse, non-consensual intimate content, or prompts that try to exploit vulnerable people.
If a future feature could affect someone in a regulated or high-risk way, it needs a separate review before activation. That review covers purpose, users, data, oversight, vendors and safety controls.
Impact assessment
This is the simple version of our assessment. A downloadable PDF is available for customers, reviewers and partners. Detailed review records are kept separately so we can answer privacy, vendor and safety questions without publishing sensitive operational detail.
Help users reflect, practise conversations, understand patterns and continue inside the BondOS app.
BondOS users, newsletter readers, survey takers, affiliates, support contacts and legal requesters.
Account details, app activity, survey answers, messages to support or legal, and technical records needed to run the service.
Support, legal, safety and account issues can be reviewed by authorised people. Public AI content is checked before release where needed.
Approved AI, hosting, storage, email, payment, app-store, analytics and support providers may process limited data for the service.
BondOS avoids therapy, diagnosis, crisis claims and guaranteed outcomes. Users should seek professional or emergency help where needed.
Security, privacy, vendor and AI safety issues are reviewed and handled through the right support or legal path.
Last reviewed 12 May 2026. Next scheduled review is quarterly, or sooner after a major feature, vendor or legal change.
GDPR and DPIA
BondOS is designed to minimise data, explain why data is used, protect sensitive areas, and let people ask for access, correction, deletion, restriction, objection or portability.
We collect what is needed to run BondOS, provide support, improve safety and meet legal duties. We avoid asking for extra personal detail when a lighter path works.
We screen new personal-data processing for risk. Higher-risk changes require a fuller data protection impact assessment before launch.
You can use the form below to ask for a copy of your data, correct it, delete it, move it, restrict it, object, or withdraw consent.
Vendors
BondOS may use approved providers to run AI features, hosting, storage, email, payments, app distribution, analytics, security and support. We review vendor purpose, data access, retention, location and contract terms before sensitive use.
Used for features such as drafting, summarising, coaching prompts, insight generation and support assistance. We limit the data sent to what the task needs.
Used for hosting, databases, object storage, delivery, security, logs and app availability.
Used for payments, app-store distribution, email, forms, analytics, support requests and partner operations.
If you need the current vendor list for a legal, procurement or data-protection review, use the enquiry form below and tell us what you need.
Version history
We keep public wording simple and keep detailed review records separately for support, security, vendor and compliance questions.
Humanised the policy wording, removed internal process references, refreshed official links, and added a downloadable public AI impact summary.
Added EU AI Act position, public impact assessment, GDPR/DPIA summary, vendor disclosure, data request and legal enquiry anchors.
Published the first BondOS policy hub with privacy, GDPR, vendor and data-request routes.
Data request
Use this form for access, correction, deletion, portability, objection, restriction, or consent withdrawal. We aim to acknowledge requests within 1 working day and answer within the legal deadline, normally one month.
We may ask for proof that you are the right person before we release or delete information.
Legal enquiry
This form is for policy questions, vendor questions, AI-processing questions, complaints and legal enquiries. Tell us what happened, when it happened, what account or service it relates to, and what answer or outcome you need.