Privacy Policy / 隐私政策
English1. Who we are
Natively (“we”, “us”, “the app”) is an iOS custom keyboard plus a companion app that helps you write and speak more natural English. The keyboard rewrites your English to sound like a native speaker; the app also includes an AI chat feature where you practice with conversational personas and can get your own messages coached. Natively is built and operated by Natively Lab, Inc., a Delaware corporation with its principal place of business in Irvine, California, USA.
If you have any questions about this policy, contact us at [email protected].
2. What this policy covers
This policy explains what information Natively collects, how it’s used, and what your rights are. Because Natively is a keyboard, we want to be especially clear about what we can and cannot see when you type.
3. What we collect
Text you type while using Natively as your active keyboard. When you tap the “rewrite” button, the text you’ve entered is sent to our servers to be rewritten by an AI model.
Messages you send in the in-app AI chat, and any message you ask us to “coach” (analyze), along with the recent conversation needed to respond. These are sent to our servers to generate the reply, its Chinese annotations, or coaching feedback.
We do not collect:
- Anything you type in password fields. Natively detects secure text fields (password inputs) and completely disables AI processing in those contexts. No data leaves your device.
- Anything you type while another keyboard (e.g. the system keyboard) is active.
- Your contacts, photos, location, microphone, camera, or any other personal information.
- Your name, email address, or other identifying information — unless you voluntarily provide them (e.g. by saying them in the chat, joining our waitlist, or contacting support).
4. Full Access
To use the AI rewrite feature, you must enable “Allow Full Access” for Natively in iOS Settings → General → Keyboard → Keyboards → Natively. This permission is required by iOS to allow the keyboard extension to communicate with our server.
Without Full Access enabled, Natively works as a standard input keyboard, AI features are unavailable, and no text leaves your device.
5. How we process your text
When you trigger an AI rewrite:
- The text is sent over an encrypted HTTPS connection to our backend proxy, hosted on Cloudflare Workers.
- Our proxy forwards the text to OpenAI’s API for rewriting, and the result is returned to your device.
- The rewrite text is not stored on our servers or OpenAI’s (under their API data usage policy); it exists only in transit and is not used to train AI models.
When you use the in-app AI chat, or tap one of your messages to “coach” it:
- Before your first chat, we ask for your explicit permission to share your messages with our AI provider. Nothing is sent until you agree.
- Your message, the recent conversation, and a short memory profile (see Section 6) are sent over HTTPS to OpenAI’s API to generate the reply, its Chinese annotations, or coaching feedback.
- We instruct the system not to extract or store sensitive information (such as health, sexual, religious, political, or financial details), and OpenAI does not use API inputs to train its models.
6. What we store
On your device:
- A randomly generated user ID (UUID). It is used for rate limiting (to prevent abuse) and to key your chat memory; it is not linked to your real identity.
- Your app preferences and your chat conversation history. The chat transcript stays on your device — we do not store it on our servers.
On our servers:
- Your random user ID and a daily request count (Cloudflare KV), which expire automatically after 48 hours.
- A small chat “memory profile” (Cloudflare D1): a few non-sensitive facts an AI persona remembers about you to keep the conversation continuous — for example a name you give it, a city you mention, or interests you bring up. We instruct the extractor to skip sensitive categories (health, sexual, religious, political, financial, precise location). This is kept until you delete it: you can clear what any persona remembers at any time in Settings → Chat memory, or from that persona’s profile inside the chat.
- If you join our waitlist, your email address (voluntarily provided) is stored in a separate namespace, used only to send Natively launch and product updates. You can request deletion at any time by emailing us.
We do not store your rewrite text or your full chat transcript on our servers.
7. Third-party services
Natively uses the following third parties to operate:
- OpenAI (api.openai.com) — for AI text rewriting and to power the in-app AI chat and coaching. Your text is processed under OpenAI’s API data usage policies, which state that API inputs are not used to train OpenAI models.
- Cloudflare (cloudflare.com) — hosts our backend and stores rate-limit counters and your chat memory profile (see Section 6). Cloudflare may log standard request metadata (IP address, request timestamp) per their privacy policy. Such logs are retained for up to 7 days under Cloudflare’s standard log retention.
- Apple — provides the iOS platform, App Store, and TestFlight. Apple’s data practices are governed by Apple’s privacy policy.
- Google — provides the Android platform and Google Play. Google’s data practices are governed by Google’s privacy policy.
We do not share your data with any other third parties. We do not sell your data, ever.
8. Children’s privacy
Natively is intended for users 13 and older and is not directed to children under 13. We do not knowingly collect personal information from children under 13. If you believe a child under 13 has used Natively, please contact us and we will take appropriate action.
9. Your rights
You have the right to:
- Stop using Natively at any time. Simply uninstall the app, or disable the keyboard in your device’s keyboard settings (on iOS: Settings → General → Keyboards).
- Clear what any AI chat persona remembers about you at any time, from Settings → Chat memory or that persona’s profile inside the chat.
- Request deletion of your user ID and any associated data by emailing [email protected].
- Ask questions about how your data is handled at [email protected].
10. California Privacy Rights
If you are a California resident, the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA), gives you the following rights regarding your personal information:
- Right to know the categories of personal information we collect and how we use them (described throughout this policy).
- Right to delete the personal information we hold about you.
- Right to correct inaccurate personal information.
- Right to opt out of the “sale” or “sharing” of personal information for cross-context behavioral advertising. Natively does not sell or share personal information for these purposes.
- Right to non-discrimination — we will not deny service, charge different prices, or provide different quality of service if you exercise any of these rights.
To exercise these rights, email us at the address in Section 15 (Contact). We verify requests using the random user ID stored on your device.
11. EEA, UK, and Switzerland Privacy Rights
If you are located in the European Economic Area, the United Kingdom, or Switzerland, the General Data Protection Regulation (GDPR) and equivalent laws apply to our processing of your personal data.
- Data Controller: Natively Lab, Inc. Contact details are in Section 15.
- Legal basis for processing: We process the text you submit for rewriting or chatting on the basis of contract performance under Article 6(1)(b) GDPR — to provide the service you have requested. If you join our waitlist, we process your email address on the basis of your consent under Article 6(1)(a) GDPR, which you can withdraw at any time.
- International data transfers: When you use Natively from the EEA, UK, or Switzerland, your text is transferred to the United States for processing by OpenAI and may transit Cloudflare’s global edge network. These transfers are protected by the Standard Contractual Clauses (SCCs) approved by the European Commission, and equivalent UK and Swiss addenda.
- Your rights: In addition to the rights listed in Section 9, you have the right to data portability, the right to object to processing, and the right to lodge a complaint with your local data protection supervisory authority.
- Retention: We do not retain your rewrite text or your chat transcript on our servers. Your chat memory profile (Section 6) is retained until you delete it. Rate-limit data expires after 48 hours. Waitlist email addresses are retained until you request deletion or until Natively ceases operation.
12. Data location
Our backend runs on Cloudflare (Workers, KV, and D1) and is distributed globally; your requests are processed at the data center geographically closest to you, and your chat memory profile is stored in Cloudflare’s D1 database. OpenAI’s servers are located in the United States.
13. Security
All data in transit is encrypted using HTTPS / TLS 1.3. Our backend uses authenticated request tokens to prevent unauthorized access. We do not store any sensitive information that would be valuable to an attacker.
14. Changes to this policy
We may update this policy from time to time. When we do, we’ll update the “Last updated” date at the top. For significant changes, Natively will ask you to re-confirm acceptance on next launch, and we’ll notify users via the app or email (if you’ve joined our waitlist).
15. Contact
If you have questions, concerns, or requests related to this policy, please email us at [email protected]. We read every message.
中文
1. 我们是谁
Natively(“我们”、“本应用”)是一款 iOS 自定义键盘,外加一个配套应用,帮你写出、说出更地道的英语。键盘会把你的英语改写得像母语者一样;应用还包含一个 AI 聊天功能,你可以和对话角色练习,并让我们点评(coach)你自己发的消息。Natively 由 Natively Lab, Inc.(一家特拉华州公司,主要办公地点位于美国加州尔湾)开发和运营。
如对本政策有任何疑问,请联系我们:[email protected]
2. 本政策的范围
本政策解释了 Natively 收集哪些信息、如何使用,以及你的权利。由于 Natively 是一个键盘,我们希望特别清楚地说明:你输入文字时,我们能看到什么、不能看到什么。
3. 我们收集的内容
你在使用 Natively 作为当前键盘时输入的文字。当你点击“改写”按钮时,你输入的文字会被发送到我们的服务器,由 AI 模型改写。
你在应用内 AI 聊天里发送的消息,以及你让我们“点评”(分析)的消息,连同生成回复所需的近期对话内容。这些会被发送到我们的服务器,用于生成回复、中文标注或点评反馈。
我们不会收集以下内容:
- 你在密码框中输入的任何内容。Natively 会检测密码输入框(secure text field),并在这些场景下完全禁用 AI 处理。任何数据都不会离开你的设备。
- 你在使用其他键盘(如系统键盘)时输入的内容。
- 你的通讯录、照片、位置、麦克风、摄像头或任何其他个人信息。
- 你的姓名、邮箱地址或其他身份识别信息 —— 除非你主动提供(如在聊天里说出、加入候补名单或联系支持)。
4. 关于 Full Access(完全访问)
使用 AI 改写功能时,你必须在 iOS 设置 → 通用 → 键盘 → 键盘 → Natively 中开启“允许完全访问”。这是 iOS 系统要求,用于允许键盘扩展与我们的服务器通信。
未开启 Full Access 时,Natively 作为普通输入键盘工作,AI 功能不可用,任何文字都不会离开你的设备。
5. 我们如何处理你的文字
当你触发 AI 改写时:
- 文字通过加密 HTTPS 连接发送到我们的后端代理(部署在 Cloudflare Workers 上)。
- 代理将文字转发给 OpenAI API 进行改写,结果返回到你的设备。
- 改写文字不会被存储在我们的服务器或 OpenAI 的服务器(根据其 API 数据使用政策);它只存在于传输过程中,也不会用于训练 AI 模型。
当你使用应用内 AI 聊天,或点按你自己的某条消息进行“点评”时:
- 在你首次聊天前,我们会请求你的明确同意,把你的消息共享给我们的 AI 服务商。在你同意之前,不会发送任何内容。
- 你的消息、近期对话,以及一份简短的记忆档案(见第 6 节)会通过 HTTPS 发送给 OpenAI API,用于生成回复、中文标注或点评反馈。
- 我们会指示系统不要抽取或存储敏感信息(如健康、性、宗教、政治或财务细节),并且 OpenAI 不会用 API 输入训练其模型。
6. 我们存储的内容
在你的设备上:
- 一个随机生成的用户 ID(UUID)。它用于使用频率限制(防止滥用)以及关联你的聊天记忆,与你的真实身份无关联。
- 你的应用偏好设置,以及你的聊天对话历史。聊天记录保存在你的设备上 —— 我们不会把它存储在服务器上。
在我们的服务器上:
- 你的随机用户 ID 和每日请求计数(Cloudflare KV),48 小时后自动过期清除。
- 一份简短的聊天“记忆档案”(Cloudflare D1):AI 角色记住的少量关于你的非敏感信息,用于保持对话连贯 —— 例如你告诉它的名字、你提到的城市,或你聊到的兴趣。我们会指示抽取程序跳过敏感类别(健康、性、宗教、政治、财务、精确位置)。这些会一直保留,直到你删除:你可以随时在「设置 → 聊天记忆」,或在聊天里该角色的资料页,清除任意角色记住的内容。
- 如你加入候补名单,你主动提供的邮箱地址会存储在一个独立命名空间,仅用于发送 Natively 上线及产品更新通知。你可随时发邮件请求删除。
我们不会在服务器上存储你的改写文字或完整聊天记录。
7. 第三方服务
Natively 使用以下第三方服务运行:
- OpenAI(api.openai.com)—— 用于 AI 文字改写,以及驱动应用内的 AI 聊天和点评。你的文字根据 OpenAI 的 API 数据使用政策处理,该政策声明 API 输入不会用于训练 OpenAI 模型。
- Cloudflare(cloudflare.com)—— 托管我们的后端,并存储频率限制计数和你的聊天记忆档案(见第 6 节)。Cloudflare 可能会根据其隐私政策记录标准请求元数据(IP 地址、请求时间戳),此类日志按 Cloudflare 标准策略保留最长 7 天。
- Apple —— 提供 iOS 平台、App Store 和 TestFlight 服务。Apple 的数据处理由 Apple 隐私政策管理。
- Google —— 提供 Android 平台和 Google Play 服务。Google 的数据处理由 Google 隐私政策管理。
我们不会与任何其他第三方共享你的数据。我们永远不会出售你的数据。
8. 儿童隐私
Natively 面向 13 岁及以上用户,不针对 13 岁以下儿童。我们不会有意收集 13 岁以下儿童的个人信息。如果你认为有 13 岁以下儿童使用了 Natively,请联系我们,我们将采取适当措施。
9. 你的权利
你有权:
- 随时停止使用 Natively。直接卸载应用,或在你设备的键盘设置中停用本键盘(iOS:设置 → 通用 → 键盘)。
- 随时清除任意 AI 聊天角色记住的关于你的内容,入口在「设置 → 聊天记忆」或聊天里该角色的资料页。
- 请求删除你的用户 ID 和任何关联数据,发邮件至 [email protected]。
- 询问有关数据处理的任何问题,邮件至 [email protected]。
10. 加州隐私权(California Privacy Rights)
如你是加州居民,《加州消费者隐私法》(CCPA)及其修订法案《加州隐私权法案》(CPRA)赋予你以下与个人信息相关的权利:
- 知情权:知悉我们收集的个人信息类别及使用方式(本政策已全文说明)。
- 删除权:要求删除我们持有的关于你的个人信息。
- 更正权:要求更正不准确的个人信息。
- 选择退出权:选择退出为跨情境行为广告而进行的个人信息“出售”或“共享”。Natively 不为上述目的出售或共享个人信息。
- 反歧视权:你行使上述任何权利时,我们不会拒绝服务、收取不同价格或提供不同质量的服务。
如需行使上述权利,请发邮件至第 15 节(联系我们)所列地址。我们将使用你设备上存储的随机用户 ID 验证请求。
11. 欧洲经济区、英国及瑞士隐私权
如你位于欧洲经济区(EEA)、英国或瑞士,《通用数据保护条例》(GDPR)及同等法律适用于我们对你个人数据的处理。
- 数据控制者:Natively Lab, Inc.,联系方式见第 15 节。
- 处理的法律依据:我们处理你提交的待改写或聊天文字,依据是 GDPR 第 6 条第 1 款 (b) 项的合同履行——为你提供你所请求的服务。如你加入候补名单,我们处理你的邮箱地址依据是 GDPR 第 6 条第 1 款 (a) 项的同意,你可随时撤回同意。
- 跨境数据传输:当你在 EEA、英国或瑞士使用 Natively,你的文字会传输至美国由 OpenAI 处理,并可能经过 Cloudflare 的全球边缘网络。此类传输受欧盟委员会批准的标准合同条款(SCCs)及英国、瑞士相应附录保护。
- 你的权利:除第 9 节所列权利外,你还享有数据可携带权、反对处理权,以及向当地数据保护监管机构投诉的权利。
- 数据保留:我们不会在服务器上保留你的改写文字或聊天记录。你的聊天记忆档案(第 6 节)会保留至你删除为止。频率限制数据 48 小时后过期。候补名单邮箱保留至你请求删除或 Natively 停止运营。
12. 数据位置
我们的后端运行在 Cloudflare(Workers、KV 和 D1)上并分布于全球;你的请求会由地理上最近的数据中心处理,你的聊天记忆档案存储在 Cloudflare 的 D1 数据库中。OpenAI 的服务器位于美国。
13. 安全性
所有传输中的数据均使用 HTTPS / TLS 1.3 加密。我们的后端使用已认证的请求令牌防止未授权访问。我们不存储任何对攻击者有价值的敏感信息。
14. 政策变更
我们可能会不时更新本政策。更新时,我们会修改顶部的“最后更新”日期。对于重大变更,Natively 会在下次启动时请你重新确认接受,并通过应用内提示或邮件(如果你加入了候补名单)通知用户。
15. 联系我们
如对本政策有任何问题、顾虑或请求,请发邮件至 [email protected]。我们会阅读每一条消息。
← Back to home