Privacy Policy

Last updated: July 2025

Reflecto ("we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains what we collect, how we use it, and your rights under laws like the GDPR (Europe) and CCPA (California).

1. Information We Collect

• Account Info: Email, name, password (if you sign up).
• Journal Entries & App Data: Anything you log or upload in Reflecto (text, mood, goals, files, etc.).
• Usage Data: Device, browser, analytics (e.g. what features you use, crash logs).
• Payment Info: If you buy a paid plan, payment is handled by a third-party provider (e.g. Stripe)—we don’t store your card info.

2. Use of AI Services

If you use Reflecto’s AI features (like summaries, mood detection, etc.), your journal entries or app data may be sent to third-party AI providers (e.g. OpenAI, Gemini).
We do not use your data to train these AI models. These providers may temporarily process your data as part of the feature. See their privacy policies for details.

3. How We Use Your Info

• To provide, operate, and improve Reflecto
• To offer support and answer your questions
• To send updates or notifications (opt out anytime)
• To analyze usage and improve the app
• To comply with legal requirements

4. Legal Basis (GDPR)

If you’re in Europe, we process your data:

• To deliver Reflecto (contract)
• With your consent (for AI features, marketing, etc.)
• To comply with the law
• For our legitimate interest (e.g. security, improvements), if it doesn’t override your rights

5. Your Rights

Depending on where you live, you can:

• Access, correct, or delete your data
• Export your data ("data portability")
• Withdraw consent (where we rely on it)
• If you’re in California, request info, deletion, or opt out of "sales" (we don’t sell your info)

Contact us at contact.reflecto.app@gmail.com and we’ll respond within 30 days.

6. Data Sharing

We don’t sell your data. We may share data with trusted partners to provide services (hosting, payments, analytics, AI, etc.), all of whom must protect your info and follow the law.

7. Data Retention

We keep your data as long as you use Reflecto or as required by law. Delete your account to remove your data (except where legally required).

8. Security

We use modern security practices to protect your data, but no system is 100% secure.

9. Children’s Privacy

Reflecto isn’t designed for kids under 13. If we learn we’ve collected data from a child under 13 without parental consent, we’ll delete it.

10. Changes

We may update this policy. We’ll post changes here and notify you if the changes are significant.

11. Contact

Questions or requests? Email us at contact.reflecto.app@gmail.com.