Privacy Policy
Last Updated: June 22, 2025
Table of Contents
Company Information
1. Introduction
BreakAI Corporation ("we," "our," or "the Company") operates the LLMonster (PekoPeko) application ("the App"). This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you use our App. We are committed to protecting your privacy and complying with applicable data protection laws, including Japanese privacy laws, the California Consumer Privacy Act (CCPA), and the European Union General Data Protection Regulation (GDPR).
2. Information We Collect
Special Considerations for Children's Personal Information
We collect minimal information from users under 16 and only with explicit parental consent. Children's information is managed with stricter safeguards than adult data.
2.1 Account Information
- Information provided through Apple Sign-In or Google OAuth authentication (User ID, email address, name)
- Profile information (optional display name, avatar image)
2.2 Content Information
- Content you add to the App (URLs, PDFs, videos, text)
- Content metadata (titles, descriptions, tags, creation timestamps)
- Content hashes (for deduplication purposes)
2.3 Monster and Game Data
- Information about monsters you create (names, levels, statistics)
- MCP (Model Context Protocol) server URLs
- Conversation history and messages
3. How We Use Your Information
3.1 Service Provision
- Account management and authentication
- Content storage, management, and synchronization
- Monster cultivation features
- MCP server URL generation and LLM integration
3.2 Service Improvement
- App functionality improvements and new feature development
- User experience enhancement
- Bug fixes and performance optimization
6. Data Security
Technical Safeguards
- HTTPS encryption
- Secure JWT tokens
- User-isolated databases
Physical Safeguards
- AWS secure data centers
- Data redundancy
- Regular backups
Administrative
- Employee training
- Access controls
- Confidentiality agreements
5. Data Retention
Account Information
- Retained until account deletion
- Completely deleted within 30 days
Content Information
- Retained until deleted by user
- Completely deleted within 7 days
Log Information
- Retained for maximum 1 year
- May be retained up to 3 years for security investigations
7. Your Rights and Choices
Access Rights
Right to access and receive a copy of your personal information
Correction & Deletion
Right to correct inaccurate or delete your personal information
Data Portability (GDPR)
Right to receive your data in a structured format
Withdrawal of Consent
Right to withdraw consent at any time
9. International Data Transfers
As our App is available in the US and EU, we implement appropriate safeguards:
9.1 Safeguards
- Use of services with adequate security measures (AWS)
- Data processing agreements
- Regular security audits
9.2 Legal Mechanisms
- Adequacy decisions
- Standard contractual clauses
10. Children's Privacy
Age Restrictions & Parental Consent
Our App is not intended for children under 16. We do not knowingly collect personal information from children under 16 without appropriate parental consent. If we learn we have collected information from a child under 13, we will delete it promptly.
10.1 Family Policy Compliance
Content Appropriateness
We ensure all content that children may see within the app is appropriate for children. We implement automatic content filtering to prevent inappropriate material.
Advertising Restrictions
Currently, our app does not display advertisements. If ads are introduced in the future, we will only show child-appropriate content using Google Play certified ad networks.
10.2 Legal Compliance
- COPPA Compliance: Full adherence to the US Children's Online Privacy Protection Act
- GDPR Compliance: Compliance with EU General Data Protection Regulation child protection provisions
- Japanese Privacy Laws: Adherence to special consideration obligations for personal information of minors under 18
- Neutral Age Verification: Implementation of unbiased age verification systems when necessary
10.3 Parental Rights
Information Access
Review and request disclosure of personal information collected from your child
Deletion Rights
Request deletion of your child's personal information and account suspension
Collection Cessation
Request to stop further collection of personal information
Contact Method
Contact us at support@breakai.ai for all inquiries
11. California Privacy Rights (CCPA)
California residents have the following rights:
Right to Know
Categories of personal information collected, sources, business purposes, and third parties
Right to Delete
Request deletion of personal information (certain exceptions may apply)
Right to Opt-Out
Right to opt-out of sale of personal information (we do not sell personal information)
Non-Discrimination
We will not discriminate against you for exercising your privacy rights
13. Updates to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of material changes through our website (https://breakai.ai) and in-app notifications.
Important Changes
Important changes will be notified 30 days in advance.
14. Governing Law and Jurisdiction
This Privacy Policy is governed by the laws of Japan. For EU residents, this policy also complies with GDPR requirements. For California residents, this policy complies with CCPA requirements.
EU Residents
Right to lodge a complaint with supervisory authorities
US Residents
Disputes will be resolved through binding arbitration
15. Contact Us
Effective Date: June 22, 2025