Scope & Who We Are
GEDO PTE. LTD. is the data controller for the Service. This Policy applies to account holders and to visitors who interact with published digital persona pages. It does not cover third-party services you choose to connect.
What we collect, why, who processes it, and the controls you keep. Your data stays yours.
This Privacy Policy explains how GEDO PTE. LTD., a company registered in Singapore ("GEDO", "we"), collects, uses and protects personal data when you use GEDO — the gedo.ai website, web app, mobile apps, digital persona pages and related services (the "Service"). We process personal data in accordance with Singapore’s Personal Data Protection Act (PDPA) and, where applicable, other local data protection laws. This Policy should be read together with our Security & Privacy Statement at gedo.ai/security.
GEDO PTE. LTD. is the data controller for the Service. This Policy applies to account holders and to visitors who interact with published digital persona pages. It does not cover third-party services you choose to connect.
We do not collect advertising identifiers, and we do not sell personal data.
To generate replies and reports, relevant excerpts of your content are sent to AI model providers as processors. Under our agreements with them, this data is not used to train their models. We use the following categories of subprocessors:
We never use your content to train models without your separate, explicit consent. Optional programs (such as training your personal Twin model) each require an independent opt-in, are limited to the stated purpose, and can be withdrawn at any time — withdrawal stops further use and deletes the training copies.
We keep your data while your account is active. You can hard-delete individual memories at any time, pause long-term memory, or delete your entire account in-app (Settings → Privacy → Delete account) or on the web — deletion is permanent and cascades to memories, goals, persona data and subscription records. Residual copies in encrypted backups are rotated out within approximately 60 days. Records we must keep for legal reasons (e.g. tax and billing records) are retained as required by law.
All traffic is encrypted in transit (TLS). Access to production data is restricted and audited, backups are encrypted, and secrets are isolated. During beta we deliberately describe our safeguards precisely — see the Security & Privacy Statement at gedo.ai/security for the current, versioned description of our measures. No internet service can guarantee absolute security; notify us at support@gedo.ai of any suspected incident.
The Service is not directed to children under 13, and we do not knowingly collect their data. If you believe a child has provided us personal data, contact us and we will delete it.
Our infrastructure and subprocessors may process data outside your country (including Singapore and the United States). Where required, we use appropriate safeguards such as contractual protections that meet PDPA transfer requirements.
We use essential cookies for sign-in sessions and preferences. Usage analytics are first-party and privacy-respecting; we do not use third-party advertising trackers.
We will notify you of material changes to this Policy (in-app or by email) before they take effect. Privacy questions and data requests: support@gedo.ai. General enquiries: info@gedo.ai.
Privacy-first is a design constraint at GEDO, not a slogan: export anytime, hard-delete anytime, and never trained on without consent.