Privacy Policy

Last updated: May 20, 2026

Effective: May 20, 2026

1. Introduction

AITYTECH ("we", "our", "us") provides the Yomite mobile application and the website at yomite.app (together, the "Service"). This Privacy Policy explains how we collect, use, and protect information when you use the Service.

We comply with Japan's Act on the Protection of Personal Information (APPI, 2022 amendment), the EU/UK GDPR, the California CCPA / CPRA, the US Children's Online Privacy Protection Act (COPPA), and the Apple App Store privacy requirements including the Privacy Manifest.

2. Core principle — on-device processing

Yomite's core functionality runs entirely on your device (iPhone, iPad, Mac). The following data is never transmitted to our servers:

  • Source text being read (EPUB / Aozora Bunko / web article bodies)
  • Generated audio output
  • Reading history, bookmarks, resume positions
  • User-added pronunciation dictionary entries
  • Listening stats and badge progress

Synthesis runs entirely on your device. No network connection is required.

3. Information we collect

3.1 In-app

  • Optional diagnostic logs and crash reports (opt-in, default off) — anonymous, not linked to device identifiers. If routed through Apple's MetricKit, Apple's privacy terms apply.
  • Voice model download events — CDN access logs only (IP, User-Agent, URL, timestamp). Raw logs are anonymised into aggregate stats after 30 days.

3.2 Website yomite.app

  • Google Analytics 4 — anonymised IP, Consent Mode v2 default-deny.
  • Cloudflare access logs — for security and performance monitoring.

3.3 What we do not collect

We do not collect: name, postal address, phone number, email (except contact form), payment data, location, device identifiers (IDFA/IDFV), contacts, photos, calendar.

4. How we use information

Collected information is used only to:

  • Provide, maintain, and improve the Service
  • Diagnose and fix bugs
  • Maintain security and prevent abuse
  • Understand aggregate usage trends (no individual identification)
  • Respond to your inquiries

5. Third parties & processors

We do not share collected information with third parties except as required by law or with your consent. We use the following sub-processors:

  • Cloudflare, Inc. (USA) — CDN, DNS, voice model distribution
  • Google LLC (USA) — website analytics (GA4)
  • Apple Inc. (USA) — App Store distribution, crash aggregation, iCloud / CloudKit sync

6. International data transfer (APPI Art. 28)

Our sub-processors are located in the United States and some user data is processed there. Although the US data protection regime differs from Japan's, we maintain the following safeguards:

  • APPI-compliant Data Processing Agreements (DPAs) with each sub-processor
  • Verified technical and organisational security measures (encryption, access control)
  • Preference for sub-processors certified under the EU–US Data Privacy Framework

If you do not consent to this transfer, please discontinue use of the Service.

7. On-device AI & synthesised voice

7.1 Synthesis engine

The app runs 音声合成エンジン on オンデバイス処理 on your device. Synthesis completes locally; input text is never sent off-device.

7.2 Voice model licensing

Voice models (ボイスモデル format) ship under 個別ライセンス契約. Users must comply with its terms.

7.3 Ownership of synthesised audio

  • Input text remains the property of you or its original author.
  • Use of synthesised audio is permitted under 個別ライセンス for personal use and conditional commercial use.
  • Redistribution of the voice model files themselves is prohibited.

7.4 Anti-impersonation / anti-deepfake

You may not use the synthesis to: impersonate a real person without their explicit consent; spread misinformation; commit fraud; harass; or otherwise infringe on the rights of others. We reserve the right to suspend Service access for violations.

8. iCloud sync

If you enable iCloud sync, your library, bookmarks, and pronunciation dictionary are synced between your devices via Apple's CloudKit. This data is tied to your Apple ID and we cannot access it. See Apple's Privacy Policy for Apple's handling.

9. Web Reader & third-party content

The Web Reader feature fetches the URL you provide, extracts the body text via the article extractor, and reads it aloud on your device.

  • Fetching is performed by your device directly; nothing goes through our servers.
  • You are responsible for complying with the terms of service and copyright of any third-party website you access.
  • The app does not bypass DRM.

10. Aozora Bunko content

The built-in Aozora Bunko reader displays and reads aloud public-domain works published at aozora.gr.jp. These transcriptions are produced by Aozora Bunko volunteers; please respect Aozora Bunko's terms of use.

11. Cookies & tracking (website only)

The app itself does not use cookies or SDK-based tracking. The yomite.app website uses Google Analytics 4 cookies, gated behind a consent banner shown on first visit. By default, Google Consent Mode v2 keeps all advertising and analytics cookies in a denied state until you accept.

12. Data retention

Data typeRetention
Diagnostic logs (opt-in)Up to 2 years
CDN access logs30 days raw / 2 years aggregate
Google Analytics 414 months (default)
Support emails3 years after resolution
In-app data (on device)Until you delete it

13. Security measures

We maintain the following safeguards against unauthorised access, loss, or alteration of personal information:

  • Organisational: Designated Personal Information Protection Administrator, internal policies, periodic audits
  • Human: Employee training, confidentiality agreements, access revocation on departure
  • Physical: Cloud providers meeting SOC 2 / ISO 27001 standards
  • Technical: TLS 1.3 in transit, encryption at rest, least-privilege access, periodic vulnerability scans

14. Children's privacy (COPPA / APPI)

The Service is not directed to children under 13. If we learn we have inadvertently collected information from a child under 13, we will delete it promptly. Parents who believe their child is using the Service should contact [email protected].

15. Your rights

You have the following rights regarding your personal information held by us:

  • Access
  • Correction / addition / deletion
  • Suspension of use, erasure, or third-party disclosure
  • Lodging complaints regarding our handling
  • EU / UK residents: GDPR rights including data portability and objection to automated decision-making
  • California residents: CCPA / CPRA rights to opt out of "sale" and "share" (we do neither)

Send requests to [email protected]. After identity verification, we will respond within 14 days.

16. Apple Privacy Manifest

The app complies with Apple's Privacy Manifest requirements. The privacy disclosures shown on App Store Connect (Privacy Nutrition Labels) match this policy, and all required-reason APIs are properly declared.

17. Open source attribution

The app uses the following open-source software (main components):

  • 音声合成 — MIT License
  • / () — MIT License
  • — BSD-3-Clause
  • — Apache-2.0
  • オンデバイス処理 — MIT License
  • — MIT / Apache-2.0
  • 記事抽出エンジン — Apache-2.0
  • ボイスモデル voice models — 個別ライセンス

Full licence texts are available in-app under Settings → Licences.

18. Personal Information Protection Administrator

AITYTECH Personal Information Protection Administrator
Contact: [email protected]

19. Complaint handling

For complaints or questions about this policy or our handling of personal information:
Email: [email protected]
Hours: Mon–Fri 10:00–18:00 JST
Response target: 5 business days.

20. Changes

We may amend this policy due to legal changes or Service changes. Material changes will be announced on the website and in the app. The amended policy takes effect on the "Last updated" date shown above.

21. Contact

AITYTECH
Email: [email protected]
Web: aitytech.com