Privacy Policy

TheraCore is a software product for psychologists, developed by a company registered in Dubai (UAE). This Policy describes how we collect, use, and protect personal data of platform users and their clients.

The platform is available at theracore.ai (marketing website) and app.theracore.ai (application). Contact us: info@theracore.ai.

We split data into two categories:

2.1. User data (psychologist)

• Name, email, password (encrypted)
• Professional information: modalities, experience, specializations (optional)
• Payment data is processed by our payment provider — we do not store card numbers
• Technical data: IP address, browser type, language, timezone

2.2. Client data (entered by the psychologist)

• Name, contact details, date of birth, session notes, psychological portrait
• All such data is encrypted on the platform side before being saved in the database
• The psychologist acts as the data controller for their clients' personal data; TheraCore is the data processor

• Encryption of personal data. Every field with personal information is encrypted at the database level. Without the encryption key the data is unreadable.
• User's personal key. A unique key is generated at sign-up and stored by the user. The TheraCore team has no technical means to decrypt the contents of your records without this key.
• Anonymization for AI. Before sending requests to AI providers, client names and other identifiers are automatically replaced with tokens (for example, CLIENT_A7F3). AI never sees real personal data.
• Secure transport. All connections use TLS.
• GDPR compliance. Infrastructure is hosted in the European Union (Germany). Personal data processing follows the General Data Protection Regulation (Regulation (EU) 2016/679, GDPR) and applicable local laws of users' jurisdictions.

To run the platform we rely on the following third-party services:

• AI providers (OpenAI, Anthropic, Google, Groq) — receive only anonymized data through our anonymization layer.
• Vercel — application and website hosting.
• Payment provider — payment processing.
• Analytics — Google Analytics, PostHog. Used to understand how users interact with the site. They have no access to client data.
• Email provider — sending notifications and support emails.

All third parties operate under a data-processing agreement and must comply with applicable protection standards.

On the marketing site theracore.ai we use cookies for analytics (Google Analytics via Google Tag Manager, PostHog) and user-session recordings to improve the interface. This data is depersonalized and is not linked to the personal information of a psychologist's clients.

You can disable cookies in your browser settings.

• Active-account data is kept while you continue to use the platform.
• After account deletion personal data is removed within 30 days.
• Backups may retain data for up to 90 days after deletion.
• Analytics data is depersonalized and kept only in aggregated form.

Under GDPR and applicable law you have the right to:

• Obtain a copy of your personal data (PDF export is available any time)
• Correct inaccurate data
• Delete your account and all related data
• Request a restriction of processing
• Withdraw consent to data processing

To exercise any of these rights, contact us at info@theracore.ai.

The primary infrastructure (hosting, database) is located in the European Union (Germany). AI providers (OpenAI, Anthropic, Google, Groq) may process requests outside the EU; for that purpose we apply an anonymization layer — real client names and identifying information are replaced with hashed tokens before data leaves the EU infrastructure. Payment and email providers may be located outside the EU; the transfer of personal data to these services is limited to the minimum necessary and is governed by Standard Contractual Clauses or equivalent.

We may update this Policy. We will notify you of material changes by email or in-app. The date of the latest update is shown at the top of this document.

For any privacy or data-processing questions, contact us at info@theracore.ai.