CARIAN.AI

Curated intimacy for digital companions.

Privacy Policy

Last updated: March 10, 2026

Carian is built on discretion. This policy explains what we collect, why we collect it, and how we protect it. We've written it to be read, not just agreed to.

1. Who we are

Carian is run by a real company. Privacy questions come to us directly.

Carian is an independent experience platform for AI companionship, operated by Asteria Holdings LLC DBA Carian AI, 6545 Market Ave. North STE 100, Canton, OH 44721. References to “Carian,” “we,” “us,” or “our” in this policy refer to this entity.

For privacy-related requests, contact us at hello@carian.ai.

2. What we collect and why

We collect only what we need to operate the platform. We do not sell your data. We do not use it for advertising.

Information you provide directly

Data	Why we collect it
Name	To personalize your experience
Email address	To manage your account and send you relevant communications
Purchase history	To deliver your experiences and power recommendations
Ratings and preferences	To improve future recommendations

Information collected automatically

Data	Why we collect it
Authentication cookies (Supabase)	To keep you logged in securely
Anonymous page view data (Vercel Analytics)	To understand how the platform is used — no personal data stored, no fingerprinting
Device and browser information	Collected passively via standard web infrastructure

Payment information

Payment is processed entirely by Stripe. Carian does not store card numbers, bank details, or full payment credentials. Stripe retains transaction records for up to 7 years as required by financial compliance law. These records are outside Carian's control and cannot be deleted upon request. For Stripe's privacy practices, see stripe.com/privacy.

3. How we use your data

We use your data to run Carian, send you things you've asked for, and make the experience better over time. Nothing else.

We use your information to:

Deliver purchased experiences and account access
Send purchase confirmations and account notifications
Respond to support requests
Send marketing communications to users who have opted in
Improve our recommendation engine based on aggregated usage patterns
Maintain the security and integrity of the platform

We do not use your data for advertising. We do not sell or share your data with third parties for commercial purposes.

4. Third parties we work with

We use a small number of trusted services to operate Carian. Each has its own privacy policy.

Service	Purpose	Privacy Policy
Supabase	Authentication and database	supabase.com/privacy
Stripe	Payment processing	stripe.com/privacy
Vercel Analytics	Anonymous usage analytics	vercel.com/legal/privacy-policy
Resend	Transactional email delivery	resend.com/legal/privacy-policy
Google Workspace	Internal operations and support email	policies.google.com/privacy

5. Cookies

We use two types of cookies — one to keep you logged in, one from Stripe during checkout. We don't use advertising or tracking cookies.

Cookie	Source	Purpose
sb-* (session cookie)	Supabase	Maintains your logged-in session
Stripe cookies	Stripe	Required during payment processing

Vercel Analytics does not use cookies.

If you are located in the EU or UK, you have the right to manage cookie preferences via the consent banner on this site.

6. Email communications

We email you when something happens with your account or purchase. We only send marketing emails if you've said yes.

We send:

Purchase confirmations
Account notifications
Support responses
Marketing emails — only to users who have explicitly opted in

You may unsubscribe from marketing emails at any time using the unsubscribe link in any email. Transactional emails (purchase confirmations, account notifications) cannot be opted out of while your account is active.

7. Data retention

We keep your data while your account is active. If you ask us to delete it, we will — with one exception we can't control.

We retain your data for as long as your account is active or as needed to provide services. If you request deletion:

Your account and associated data will be deleted from Carian's systems within 30 days
Purchase records associated with Stripe transactions cannot be deleted — Stripe is legally required to retain these for up to 7 years
Anonymous, aggregated usage data may be retained indefinitely as it cannot be traced back to you

8. Your rights

You have real rights over your data. We'll honor them.

Depending on where you are located, you may have the right to:

Access the personal data we hold about you
Correct inaccurate data
Delete your data (subject to the Stripe exception above)
Object to certain uses of your data
Withdraw consent for marketing communications at any time
Lodge a complaint with your local data protection authority

To exercise any of these rights, contact us at hello@carian.ai or use the account deletion option in your account settings. We will respond within 30 days.

EU and UK users: Carian processes your data on the basis of contractual necessity (to deliver your purchases), legitimate interests (to operate and improve the platform), and consent (for marketing communications). You have the right to lodge a complaint with your local supervisory authority.

California users (CCPA): Carian does not sell personal information. You have the right to know what data we collect, request deletion, and opt out of any future sale of data (which we do not currently conduct).

9. Data security

We take reasonable steps to protect your data. No system is perfect, but ours is built carefully.

Carian uses industry-standard security practices including encrypted connections (HTTPS), secure authentication via Supabase, and payment processing via Stripe's PCI-compliant infrastructure. We do not store payment credentials. Access to user data is limited to operational necessity.

10. Children's privacy

Carian is for adults only.

Carian is intended for users 18 and older. We do not knowingly collect personal data from minors. If you believe a minor has provided us with personal data, contact us at hello@carian.ai and we will delete it promptly.

11. Do-Not-Track

Carian does not currently respond to Do-Not-Track browser signals, as no uniform standard for recognizing them has been adopted.

12. Changes to this policy

If something meaningful changes, we'll tell you.

We may update this policy from time to time. Material changes will be communicated via email or a notice on the platform. Continued use of Carian after changes constitutes acceptance of the updated policy. The date at the top of this page reflects the most recent revision.

13. Contact

For privacy-related questions or requests:

Asteria Holdings LLC DBA Carian AI
6545 Market Ave. North STE 100
Canton, OH 44721
hello@carian.ai

This policy was last reviewed on March 10, 2026. Carian recommends users in the EU, UK, and California review sections 8 and 5 in particular.

← Contact Terms →