Privacy Policy

Last updated: 2026-05-12 · Private beta version

Beta notice. Takiki is currently in private beta with a small group of explicitly consented testers (currently three Tokyo households). This policy reflects the data practices of the beta service. A formal production privacy policy, reviewed by Japanese privacy counsel and aligned to a registered business entity, will be published before public launch and before any user is charged.

1. Who we are

Takiki ("we", "us", "the service") is a private-beta voice AI service operated by an independent developer based in Tokyo, Japan. Contact for privacy matters: app@luke.archi.

2. What data we collect

When you set up your profile

Your name, contact email, and Japanese callback phone number.
Profile details you choose to enter so the AI can answer common receptionist questions: child's name and age, postal address, school enrollment, allergies, insurance card information.

When you ask the AI to make a call

The audio of your spoken request and our transcription of it.
The Japanese business you asked us to call, the time and outcome of the call.
The audio + transcript of the call between our AI and the receptionist, retained briefly for debugging the call's outcome and for you to review.
The vocabulary words you encountered during the call (so Takiki can drill them later, if you opt in).

When Japanese businesses call back

The audio and transcript of any voicemail left at our shared business number, which we forward to you.

We do not collect credit-card data, biometric voiceprints, browser tracking identifiers beyond what is needed to maintain your login session, or social-media data.

3. How we use your data

Data is used only for these purposes, no others:

To complete the calls you specifically request.
To answer the receptionist's questions accurately on your behalf, using profile information you entered yourself.
To show you the outcome of each call and the vocabulary that came up.
To debug failures and improve call quality.

We do not use your data to train AI models, sell it, share it with marketers, or contact you with anything other than service-related notifications.

4. AI disclosure on outbound calls

Every outbound call made on your behalf begins with an explicit disclosure to the Japanese receptionist:

お電話ありがとうございます。AIアシスタントとして、ご利用者様の代わりにお電話を差し上げております。

The receptionist always knows they are speaking to an AI assistant calling on your behalf. The AI never impersonates a human. This is in line with Japan's Ministry of Internal Affairs and Communications (総務省) guidance on automated voice.

5. Third-party services we use

Your data is processed by these named third parties as part of providing the service:

Twilio (United States) — telephony / outbound voice / number provisioning.
OpenAI / OpenRouter (United States) — language model inference for AI dialogue.
Cloudflare (global edge) — site delivery, DNS, DDoS protection.
Fly.io (Tokyo region) — backend service hosting.

Each of these processes only the minimum data needed to perform its function. We do not share user data with any party not listed here.

6. Cross-border data transfers

Our language model and telephony providers are based in the United States. Audio, transcripts, and the personal information you enter (including your child's name and age) are transmitted to those providers in the United States for processing.

By using Takiki you consent to this cross-border transfer. We commit to:

Encrypting data in transit (TLS) and at rest.
Using providers that have publicly committed to GDPR / equivalent privacy regimes.
Documenting a formal cross-border transfer mechanism (APPI Article 28, PIPL Chapter III) before exiting beta.

7. Where data is stored and for how long

Your profile data is stored as an encrypted JSON file on our server, decrypted only at the moment of a call.
Call audio is retained for up to 30 days for debugging, then automatically deleted.
Call transcripts and vocabulary captures are retained while your account is active. You can delete them at any time.
If you delete your account, all data is zero-overwritten and purged within 7 days, including from backups.

8. Children's data

To make a reservation for your child, the AI needs your child's name, age, and (for medical bookings) sometimes their insurance card or health information. We handle this data with the same encryption and access controls as adult profile data, and we apply additional rules:

We do not profile children, build behavioral models of them, or use their data for any purpose other than the specific call you requested.
We do not allow children to create their own accounts. Profiles are created and managed by a parent or guardian.
Children's data is purged on the same schedule as adult data, and immediately upon account deletion.

9. Your rights

You have the right to:

Access — request a copy of all data we hold about you and your family.
Correct — edit any profile information.
Delete — remove specific transcripts, your entire profile, or your whole account, via the in-app "Delete my data" button or by email.
Object — opt out of any specific processing (e.g., vocabulary capture).
Withdraw consent — at any time. We will stop processing and delete on the schedule above.

To exercise any of these rights email app@luke.archi. We respond within 14 days during beta; under 7 days at production.

10. Compliance commitments

Takiki's data practices are designed to align with:

Japan's Act on the Protection of Personal Information (APPI / 個人情報保護法) — privacy notice, purpose limitation, security measures, cross-border transfer disclosure, user rights.
China's Personal Information Protection Law (PIPL / 个人信息保护法) — for users who are Chinese citizens, including the cross-border transfer rules in Chapter III.
EU General Data Protection Regulation (GDPR) — to the extent any EU-resident user uses the service.
Twilio Acceptable Use Policy — no false identity, AI disclosure on every call, no transmission of unlawful content.

During the private-beta phase, our compliance is operational rather than formally audited. A registered business entity, formal APPI privacy review by Japanese counsel, and PIPL cross-border transfer mechanism will be put in place before exiting beta.

11. Security

All data in transit is encrypted via TLS.
Profile data and call transcripts are encrypted at rest with per-user keys.
Access to production data is limited to the developer named above; no third-party operators have access.
In the event of a data breach affecting your data, we will notify you by email within 72 hours of discovery and report to the Personal Information Protection Commission (個人情報保護委員会) as required by APPI.

12. Changes to this policy

We will update this policy as the service moves out of beta. Material changes will be notified to users by email at least 30 days in advance. The "Last updated" date at the top of this page reflects the most recent change.

13. Contact

Privacy questions, data requests, or complaints: app@luke.archi. We will respond within 14 business days. If you are dissatisfied with our response, you have the right to lodge a complaint with Japan's Personal Information Protection Commission (個人情報保護委員会) at ppc.go.jp.