Privacy Policy for 2026 Journal

Last updated: January 1, 2025

1. Information We Collect

1.1 Personal Information

Account Information: Email address, full name, and encrypted password
Profile Information: Optional bio, timezone preferences, and avatar
Journal Content: Your personal journal entries, prayers, goals, and habits
Usage Data: App usage patterns, feature interactions, and session duration

1.2 Technical Information

Device information (type, operating system, app version)
Log data (crashes, performance metrics, error reports)
Analytics data (anonymized usage statistics)

2. How We Use Your Information

Core Service: To provide and maintain your personal journal experience
Account Management: To create and manage your account, authenticate access
Personalization: To customize your experience and provide relevant content
Communication: To send important service updates and notifications
Improvement: To analyze usage and improve our app features and performance
Security: To detect and prevent fraud, abuse, and security issues

3. Data Storage and Security

3.1 Data Storage

All data is stored securely using Supabase infrastructure
Data is encrypted in transit using HTTPS/TLS
Database connections are encrypted and secured
Regular automated backups are maintained

3.2 Security Measures

Industry-standard encryption for sensitive data
Secure authentication using JWT tokens
Regular security audits and updates
Access controls and user permission systems

4. Data Sharing and Disclosure

4.1 We Do NOT Sell Your Data

We never sell, rent, or trade your personal information to third parties for marketing purposes.

4.2 Limited Sharing

We may share your information only in these specific circumstances:

Service Providers: With trusted third-party services that help us operate the app (e.g., Supabase for database hosting)
Legal Requirements: When required by law, court order, or government regulation
Safety: To protect the rights, property, or safety of users or the public
Business Transfer: In the event of a merger, acquisition, or sale of assets

5. Your Privacy Rights

5.1 Access and Control

Access: View all personal data we have about you
Correction: Update or correct inaccurate information
Deletion: Request deletion of your account and associated data
Export: Download your data in a portable format
Restriction: Limit how we process your information

5.2 Communication Preferences

Opt-out of promotional emails and notifications
Control push notification settings within the app
Manage data processing preferences

6. Data Retention

Active Accounts: Data retained while account is active
Inactive Accounts: Data may be deleted after 2 years of inactivity
Account Deletion: Data deleted within 30 days of account deletion request
Legal Requirements: Some data may be retained longer if required by law

7. Children's Privacy

2026 Journal is intended for users aged 16 and older. We do not knowingly collect personal information from children under 16. If we discover that we have collected information from a child under 16, we will delete it immediately.

8. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place to protect your information in accordance with applicable data protection laws.

9. Cookies and Tracking

Essential Cookies: Required for app functionality and security
Analytics: Help us understand how you use the app (anonymized)
Preferences: Remember your settings and preferences
No Third-Party Advertising: We do not use cookies for advertising purposes

10. Updates to Privacy Policy

We may update this Privacy Policy from time to time. When we make changes:

We will update the "Last updated" date at the top
For significant changes, we will notify you via email or app notification
Continued use of the app constitutes acceptance of the updated policy

11. Third-Party Services

Our app integrates with the following third-party services:

Supabase: Database and authentication services
Capacitor: Mobile app framework

These services have their own privacy policies, which we encourage you to review.

12. Contact Information

If you have questions about this Privacy Policy or want to exercise your privacy rights, please contact us:

Email: privacy@2026journal.app
Response Time: We will respond within 30 days

Data Protection Officer: Available upon request for EU residents

13. Legal Basis (GDPR)

For EU residents, our legal basis for processing personal data includes:

Contract: To provide the services you requested
Legitimate Interest: To improve our services and prevent fraud
Consent: For marketing communications (where required)
Legal Obligation: To comply with applicable laws

Effective Date: This Privacy Policy is effective as of January 1, 2025.