Privacy Policy
DRAFT — not yet reviewed by a lawyer. This placeholder text exists so the
signup flow and the /legal/privacy page have real content to render; it must
not be relied on as an actual privacy policy until an author/lawyer pass
replaces it (flagged in the Job 120 PR body).
Last updated: 2026-07-06 (placeholder — a real review date replaces this).
1. Sovereignty over your data
You own your data. This platform holds wellbeing-adjacent information — how
you're doing, what you practice, what you note about your own state — and we
treat that as yours, not ours. You can export everything we hold about you,
or permanently delete it, at any time from Settings > Privacy.
2. What we collect
- Account details: name, email, timezone.
- Practice data: your check-ins, practice preferences, and any notes you write (never logged or analysed as raw text — only aggregate counts).
- Support requests: messages you send us via the contact form or the support inbox.
- Consent records: which version of these policies you agreed to, and when.
- Billing: handled entirely by Stripe's hosted Checkout and Customer Portal — we never see or store your card details.
- First-party analytics: only with your consent (see the cookie banner); no third-party trackers.
3. How we use it
To run the Daily Engine (check-in, prescription, practice logging), to
communicate with you (account, billing, support emails), and — only with
consent — to understand product usage in aggregate.
4. Who we share it with
Stripe (billing), Resend (transactional email). Neither receives your
practice content or notes.
5. Your rights
- Export: a full JSON copy of your data, from Settings > Privacy.
- Deletion: permanent, irreversible account deletion, from the same page.
- Correction: edit your profile and preferences directly in Settings.
6. Retention
Account data is retained while your account is active. Deleting your account
permanently removes your personal data (see docs/DATA-MAP.md for the
table-by-table detail); a small number of records — like audit log entries —
are retained in de-identified form for security accountability.
7. Changes to this policy
Material changes require you to re-consent before continuing to use the
platform.
8. Contact
Questions about this policy can be sent via the contact form linked in the
site footer.