Privacy policy

Last updated: April 8, 2026

This policy describes how Reflect (“we”, “us”) collects, uses, and shares information when you use our diary app and website. We aim to be clear and minimalist: your journal is personal, and we design the product to respect that.

1. Information we collect

Account & profile. If you create an account, we collect identifiers such as email address, display name, and authentication tokens needed to sign you in securely.

Journal content. Entries, drafts, prompts, and attachments you save are stored to provide syncing and backup as we describe in the product.

Device & technical data. We may collect device type, OS version, app version, coarse location derived from IP (for security and compliance), and diagnostics such as crash logs when you opt in or when necessary to fix bugs.

Support. If you contact us, we keep your message and related metadata to respond and improve support quality.

2. How we use information

We use the information above to:

  • Operate the Service and sync your journal across devices
  • Maintain security, prevent fraud, and enforce our terms
  • Improve reliability and performance (including aggregated analytics)
  • Communicate product updates, security notices, and support replies
  • Comply with law and respond to lawful requests

3. Sharing

We do not sell your journal entries. We share information only with:

  • Service providers who host data, send email, or process analytics—under contracts that limit their use
  • Authorities when required by law or to protect safety and rights
  • Corporate transactions such as a merger, subject to safeguards

4. Retention

We keep account and journal data while your account is active. After you delete entries or your account, we remove or anonymize data within a reasonable period, except where we must retain backups, security logs, or records for legal compliance.

5. Security

We use industry-standard safeguards including encryption in transit and access controls. No method of storage or transmission is perfectly secure; use a strong password and protect your devices.

6. Your choices & rights

Depending on where you live, you may have rights to access, correct, delete, or export your data, and to object to certain processing. Contact us to exercise these rights. You may also adjust analytics and notification preferences in the app settings when available.

7. Children

Reflect is not directed at children under the age where parental consent is required in their region. We do not knowingly collect personal information from such children.

8. International transfers

If you use Reflect from outside the country where our servers are located, your information may be processed in other countries with different data protection laws. We use appropriate safeguards where required.

9. Changes

We will post updates here and change the “Last updated” date. For material changes, we will provide additional notice when required.

10. Contact

For privacy questions or requests, use the contact method published on our site or in the app. This placeholder policy is suitable for a pre-launch site; replace this section with a real email or Data Protection Officer contact before collecting live user data.