Privacy Policy
Effective Date: March 12, 2026 | Last Updated: March 12, 2026
1. Introduction
Welcome to Navia ("we," "our," or "us"). Navia is a productivity and peer-matching platform designed for neurodivergent individuals, accessible at joinnavia.com. We are committed to protecting your privacy and handling your personal information with transparency and legal compliance. This Privacy Policy explains what data we collect, why we collect it, how it is used, and the rights you have over your information.
By accessing or using Navia, you acknowledge that you have read and understood this Privacy Policy. If you do not agree, please discontinue use of the Service immediately.
2. Age Requirement
Navia is intended solely for users who are 18 years of age or older. We do not knowingly collect or solicit personal information from anyone under 18. If we learn that we have inadvertently collected information from a person under 18, we will delete that information immediately. If you believe a minor has provided us with personal information, please contact us at naviaapp.ai@gmail.com.
3. Information We Collect
3.1 Information You Provide Directly
- Account Information: Name, email address, and authentication credentials.
- Profile Information: Neurotype, executive function challenges, graduation timeline, interests, and biographical details.
- User-Generated Content: Tasks, notes, calendar events, and other data you create within the platform.
3.2 Information from Third-Party Integrations
When you voluntarily connect third-party services, we collect only the minimum data necessary:
| Integration | Data Collected |
|---|---|
| Google Calendar | Calendar events, attendees, scheduling information |
| Microsoft Outlook (Calendar + Mail) | Calendar events and email metadata |
| Gmail | Email content and metadata for AI context |
| Notion | Pages, databases, and workspace content |
| Obsidian | Vault notes and markdown files (read-only or uploaded) |
3.3 Chrome Extension (Navia Vault)
When you use the Navia Vault Chrome extension:
- Authentication tokens: Stored locally on your device to keep you signed in.
- Website content: Page titles, URLs, and metadata (OG tags, structured data) only from pages you explicitly choose to save.
- Selected text: Only when you use the right-click "Save to Navia Vault" option.
- Save queue: A local queue of pending saves stored on your device when offline, synced when connectivity is restored.
The extension does not collect your browsing history, does not track pages you visit passively, and only activates when you take a direct action to save content.
3.4 Navia Vault
When you save content to your Navia Vault:
- Saved content: URLs, page titles, selected text, and notes you add.
- Content metadata: Automatically extracted metadata such as content type, author, price, or channel name.
- AI-generated annotations: A short classification and note generated by our AI to help you find the item later.
3.5 Automatically Collected Information
- Usage Data: Features used, session duration, and interaction patterns.
- Device and Browser Information: Browser type, operating system, and device identifiers.
- Analytics Data: Performance metrics and error logs.
4. How We Use Your Information
- Providing, maintaining, and improving our services.
- Personalizing your experience and delivering AI-powered recommendations.
- Syncing and integrating data from connected third-party services.
- Generating vector embeddings for semantic search and intelligent peer matching.
- Connecting you with peers who share similar interests and challenges.
- Sending service-related notifications, updates, and support communications.
- Analyzing usage patterns to enhance platform functionality.
- Detecting and preventing fraud, abuse, or security threats.
5. Data Storage and Security
5.1 Encryption
- All data is encrypted at rest using AES-256-GCM encryption.
- OAuth tokens and credentials are encrypted before storage.
- All data in transit is protected via TLS 1.2+.
5.2 Infrastructure Providers
| Provider | Purpose |
|---|---|
| Supabase | Database storage and authentication |
| Pinecone | Vector embeddings and semantic search |
| Vercel | Application hosting and deployment |
| OpenAI | AI language model processing |
5.3 Data Retention
- Active user data is retained for the duration of your account.
- Deleted data is permanently removed within 30 days of a deletion request.
- Integration data is deleted immediately upon disconnection.
6. Data Sharing and Disclosure
We do not sell your personal information. We may share your information only in the following circumstances:
- With Your Consent: When you have explicitly authorized sharing.
- Service Providers: With vetted vendors who assist in operating our platform, bound by confidentiality obligations.
- Peer Matching: Only anonymized and aggregated profile information is shared with matched peers.
- Legal Requirements: When required by applicable law, court order, or to protect our rights.
- Business Transfers: In connection with a merger, acquisition, or asset sale, with prior notice to you.
7. Your Rights and Choices
- Access: Request a copy of all personal data we hold about you.
- Correction: Update or correct inaccurate or incomplete information.
- Deletion: Request deletion of your account and all associated data.
- Data Portability: Export your data in a structured, machine-readable format.
- Opt-Out: Disable analytics or specific features at any time.
- Disconnect Integrations: Remove any third-party service connection at any time; all synced data will be deleted.
To exercise any of these rights, contact us at naviaapp.ai@gmail.com.
8. Third-Party Integrations
- We request only the minimum permissions necessary to deliver each integration.
- You may disconnect any integration at any time from your account settings.
- Disconnecting an integration immediately deletes all data synced from that service.
- Each third-party service is governed by its own privacy policy and terms of service.
9. Cookie Policy
We use cookies and similar tracking technologies to maintain your session, remember preferences, analyze usage, and provide personalized content. You may control cookies via your browser settings; disabling essential cookies may limit functionality.
10. California Privacy Rights (CCPA)
California residents have additional rights under the CCPA, including the right to know what information is collected, the right to opt out of the sale of personal information, and the right to non-discrimination. We do not sell personal information.
11. European Privacy Rights (GDPR)
If you are located in the European Economic Area (EEA), you have rights under GDPR including access, rectification, erasure, data portability, restriction of processing, and the right to lodge a complaint with your local supervisory authority. Our lawful bases for processing include contract performance, consent, legal obligations, and legitimate interests.
12. International Data Transfers
Navia operates in the United States. Your information may be transferred to and processed in other countries. We implement appropriate safeguards — including Standard Contractual Clauses where required — to protect your data regardless of where it is processed.
13. Changes to This Privacy Policy
We may update this Privacy Policy periodically. For material changes, we will post the updated policy, send an email notification, and display a prominent in-app notice. Continued use of the Service after the effective date constitutes acceptance.
14. Contact Us
| Email / Support | naviaapp.ai@gmail.com |
| Privacy Requests | naviaapp.ai@gmail.com |
| Website | joinnavia.com |
| Mailing Address | 1900 E Apache Blvd, Tempe, AZ 85281, USA |