Download App

Data Security & Privacy

Last updated: Jan 1, 2026

At Inner Work Tech, LLC, we prioritize the security and privacy of your data. This document outlines our comprehensive approach to protecting the information you entrust to us through the abeni wellness platform.

Our Commitment to Security

As a mental health and wellness platform, we understand the sensitive nature of the information shared with abeni. We are committed to implementing the highest standards of data security to protect your privacy and build trust in our platform.

We adhere to industry best practices and comply with applicable data protection regulations, including GDPR, CCPA, and HIPAA guidelines for health-related data.

Security Features & Measures

We implement multiple layers of security to protect your data:

End-to-End Encryption

All data transmitted between your device and our servers is encrypted using TLS 1.2+ protocols. Sensitive conversations are further protected with additional encryption layers.

Secure Data Storage

All user data is stored in encrypted databases with strict access controls. We use industry-leading cloud providers with SOC 2 Type II certification.

Access Controls

We implement role-based access controls, multi-factor authentication for staff, and rigorous audit logging to ensure only authorized personnel can access sensitive data.

Secure Development

Our development follows secure coding practices, regular security testing, and third-party penetration testing to identify and address vulnerabilities.

Regular Audits

We conduct regular security audits, vulnerability assessments, and compliance reviews to ensure our security measures remain effective and up-to-date.

Data Minimization

We only collect data necessary for providing our services. You have control over what information you share and can delete your data at any time.

Data Privacy Principles

Our approach to data privacy is guided by the following principles:

  1. Transparency: We clearly explain what data we collect, why we collect it, and how we use it.
  2. Purpose Limitation: We only use your data for the purposes specified at the time of collection.
  3. Data Minimization: We collect only the data necessary for providing and improving our services.
  4. User Control: You have control over your data, including the ability to access, correct, or delete your information.
  5. Security by Design: Security considerations are integrated into every stage of our product development.
  6. Accountability: We take responsibility for complying with privacy principles and applicable laws.

What Data We Collect & Why

We collect different types of data to provide and improve our services:

Essential Service Data

  • Account Information: Email address, username, and password (hashed) to create and secure your account.
  • Conversation Data: Your interactions with abeni to provide personalized support and maintain conversation context.
  • Wellness Information: Mood tracking, meditation sessions, and wellness goals to provide personalized recommendations.

Optional Data

  • Demographic Information: Age, gender, and location (generalized) to improve our understanding of user needs.
  • Feedback: Your feedback and ratings to improve our services.
  • Device Information: Device type and operating system to optimize app performance.

Data We Never Collect

  • We do not access your personal contacts, photos, or other apps on your device.
  • We do not sell your data to third parties for advertising or marketing purposes.
  • We do not share identifiable conversation data with any external parties.

Your Rights & Controls

You have comprehensive control over your data:

  • Access: You can request a copy of all data we hold about you.
  • Correction: You can update or correct inaccurate information.
  • Deletion: You can request deletion of your account and associated data at any time.
  • Export: You can export your conversation history and wellness data.
  • Consent Management: You can manage your privacy preferences in the app settings.
  • Opt-Out: You can opt out of non-essential data collection and marketing communications.

Third-Party Services

We use a limited number of trusted third-party services to support our platform:

  • Cloud Infrastructure: For secure data storage and processing.
  • Analytics Services: To understand app usage patterns (anonymous data only).
  • Payment Processors: For secure handling of subscription payments.

All third-party providers are carefully vetted for security and privacy compliance. We have data processing agreements in place with each provider to ensure they meet our security standards.

Breach Notification

In the unlikely event of a data breach that affects your personal information, we will:

  1. Notify you within 72 hours of becoming aware of the breach
  2. Provide clear information about what happened and what data was affected
  3. Explain the steps we're taking to address the breach
  4. Offer guidance on protective measures you can take
  5. Report the breach to relevant authorities as required by law

Contact Our Security Team

If you have security concerns, questions about our practices, or want to report a potential vulnerability, please contact our security team:

  • Security Email: abeni@innerworktech.com
  • Phone: +1 (517) 802-1701

Updates to This Policy

We may update this Data Security document to reflect changes in our practices, technology, or legal requirements. We will notify you of significant changes through the app and/or email. The latest version will always be available on our website.