Privacy Policy

Last updated: 23 April 2026. Effective immediately for all users of Bark AI.

This policy explains what Bark AI ("we", "us") collects when you use the Bark AI mobile app and website, why, and what control you have.

1. The short version

• We don't track you across other apps or websites.
• We don't sell your data. We don't share it with advertisers.
• We collect what's needed to run the app — your email, the pet records you create, your country, and your location when you ask for a vet or post a lost-pet alert.
• You can export all your data as JSON any time, from the Account screen.
• You can delete your account any time, from the Account screen. We hard-purge within 7 days.

2. Who we are

Bark AI is operated by the Bark AI team. You can reach us at support@barkpethealth.com.

3. What we collect

Data you give us directly

• Email address — required to create an account, receive renewal warnings, and contact support.
• Name (optional) — used for personalisation.
• Pet records — species, breed, age, weight, photos, vaccination history, feeding log, vet-visit notes, and any free-text you add.
• Symptom descriptions — when you use AI triage, we send your text plus pet context to Anthropic's Claude API to generate urgency guidance. We retain the prompt + response in your account so you can refer back to it. You can delete any triage record from within the app.
• Lost-pet alerts — when you post one, the pet photo, GPS coordinates, last-seen location string, and contact details you enter are visible to other users within the alert radius until you mark the pet found.

Data we derive from your use

• Location — approximate (via IP) for country inference, precise (with permission) only when you actively use the vet finder, lost-pet feed, or lost-pet report. Precise location is never stored server-side beyond what you post on a lost-pet alert.
• Device metadata — user agent, IP address, and app version are logged with requests for abuse prevention and debugging. IP logs rotate every 30 days.
• Crash and performance data — Sentry or equivalent, anonymised. We do not attach personal data to crash reports.

Data from third parties

• Google Sign-In / Apple Sign-In — if you sign in with Google or Apple, we receive your email and a stable subject ID we use to link your account on future logins. We do not receive your OAuth tokens beyond the one-time id_token.
• Google Places — when you use the vet finder, your latitude/longitude is proxied through our server to Google Places to fetch nearby vets. Google receives an anonymous server-side request and does not see your Bark AI account.
• Payment processors — Razorpay (India) and Stripe (everywhere else) handle card data directly. Bark AI never sees or stores card numbers.

4. Why we collect it

• App functionality — delivering AI triage, reminders, vet search, lost-pet alerts, and feeding guidance.
• Account management — authentication, renewal warnings, customer support.
• Safety and abuse prevention — rate limiting, fraud detection, webhook verification.
• Legal compliance — responding to lawful requests (we challenge overbroad ones).

We do not use your data to train any machine-learning model (ours or anyone else's). Claude API calls are sent with Anthropic's zero-retention setting.

5. Who we share with

We share only what's necessary to run the service:

• Anthropic (Claude API) — your symptom descriptions and pet context, for the purpose of generating triage guidance. Retention: zero (Anthropic does not store the request beyond the call).
• Google Places — your approximate location, for the purpose of fetching nearby vets. Proxied through our server; Google does not see your Bark AI account.
• Google / Apple (Sign-In) — standard OAuth flows.
• Razorpay, Stripe — your email and subscription state for billing.
• Firebase Cloud Messaging — a device push token, for reminder notifications.
• Nodemailer / our SMTP provider — transactional email (verification, renewal warnings, support replies).

We do not share with advertisers, data brokers, or analytics aggregators.

6. Your rights

• Access — Account → Export all my data. JSON of every record we hold.
• Rectification — every profile field is editable in-app. For fields you can't reach, email support@barkpethealth.com.
• Erasure — Account → Delete my account. 7-day soft-delete window during which you can restore; after that, hard purge.
• Portability — the JSON export is machine-readable.
• Objection / restriction — contact support; we'll honour it or tell you why we can't (very narrow list).
• Withdrawal of consent — delete your account.
• Complaint — you can complain to your local data-protection authority.

7. Children

Bark AI is for adults (18+). We do not knowingly collect data from children under 13 (under 16 in the EEA/UK). If you believe we have, contact support and we'll delete it.

8. Security

All traffic is over HTTPS. Passwords are bcrypt-hashed (cost 12). Tokens are SHA-256-hashed at rest. Refresh tokens are single-use and rotate on every refresh. Our infrastructure runs on dedicated servers with restricted SSH access.

9. Retention

• Active account records: until you delete them or delete the account.
• Deleted account records: hard-purged within 7 days of deletion.
• IP / request logs: 30 days.
• Crash reports (anonymised): 90 days.
• Payment metadata: as required by tax law (typically 7 years).

10. International transfers

Our servers are hosted in the EU. Subprocessors (Anthropic, Google, Stripe, Razorpay, Apple) may process data in the US or India under Standard Contractual Clauses or equivalent.

11. Changes to this policy

We'll post a new "Last updated" date at the top and email you for material changes.

12. Contact

Questions, complaints, or rights requests: support@barkpethealth.com.