Privacy Policy

Effective Date: March 4, 2026 | Last Updated: March 4, 2026

1. Information We Collect

1.1 Information You Provide Directly

We collect the following information when you voluntarily provide it through the App's features:

• Account information: Name, age, and email address (if you sign in via Apple or Google). If you choose to skip sign-in, we generate an anonymous session identifier (a random UUID) to associate your data with your device.
• Profile information: Username (custom display handle) and profile photo, if you choose to set them.
• Onboarding quiz responses: Answers to our 12-question emotional assessment quiz, including selected symptoms, recovery goals, and self-reported emotional state. We calculate an emotional dependency score from these responses.
• Journal entries: Text you write in the journaling feature, including AI-assisted conversations and voice-to-text transcriptions.
• Voice recordings: Audio captured via the microphone during voice journaling sessions. Speech-to-text transcription is performed on-device using Apple's speech recognition framework. The resulting text (not the raw audio) may be sent to our AI provider if you have consented to AI features.
• Audio check-in recordings: If you record an audio note during a check-in, the audio file is uploaded to our secure cloud storage (Supabase) for playback within the App.
• Photos of handwritten journal pages: Images you voluntarily capture or upload. These images are stored in our secure cloud storage and, if you have consented to AI features, may be sent to our AI provider for transcription.
• Mood data: Daily mood selections (depressed, sad, neutral, happy, ecstatic), detailed emotions, and optional contextual information you provide (current activity, who you are with, where you are). Location context is self-reported text, not GPS data.
• Recovery goals: Goals you select during onboarding (up to 8 options such as "Heal from emotional pain" or "Build healthier relationships").
• Positive reframes: Short affirmations or positive reframes you create and save within the App.
• Course and learning data: Responses to our 36-question attachment style quiz (7-point scale), lesson completion status, time spent on lessons, and written reflection answers.
• Community posts and replies: Content you submit to the community support forum, displayed pseudonymously using your chosen display name and recovery streak. Community posts are visible to other App users.
• Referral codes: Codes you enter or generate for referral rewards.

1.2 Information Collected Automatically

We automatically collect certain information when you use the App:

• Anonymous session identifier: A randomly generated UUID created on first launch to associate your data before you sign in. This identifier does not contain any personal information and cannot be used to identify you outside the App.
• Device information: Device type, operating system version, and app version.
• Usage data: App feature usage events, session duration, screens visited, and interaction patterns. This includes metadata such as mood level and emotion name when you log a mood (see Section 3.4). No journal text content is included in analytics events.
• Daily check-in tracking: Whether you completed a journal entry, logged your mood, or completed a meditation session each day (boolean flags only, not the content itself).
• Crash and performance data: Anonymized error logs, stack traces, and performance metrics (see Section 3.6).

2. How We Use Your Information

• Personalization: To tailor your recovery experience, including course content, meditation recommendations, and daily check-ins based on your quiz results and selected goals.
• AI-Powered Journaling: To provide AI-assisted journal responses, emotional analysis, session summaries, and pattern recognition. This requires sending certain data to our AI provider (see Section 3.1). AI features are only activated after you give explicit consent via an in-app "Data and Privacy" consent screen.
• Progress Tracking: To display your recovery progress, mood trends, check-in streaks, milestone badges, and course completion status.
• Community Support: To display your posts and replies to other users in the community forum. Posts are shown with your display name and streak count only. Your email, journal entries, and personal details are never shared with other users.
• Push Notifications: To send daily ritual reminders and motivational nudges. Push notifications require your device-level permission and can be disabled at any time in your device settings.
• Paywall Personalization: To show you relevant subscription offerings based on your onboarding progress and quiz results (see Section 3.5).
• Product Analytics: To understand how users interact with the App, identify issues, and improve features (see Section 3.4). Analytics events contain metadata only, never journal text or personal health narratives.
• Customer Support: To respond to your inquiries and resolve issues.

3. Third-Party Services and Data Sharing

We share your data with the following third-party service providers solely to operate and improve the App. We do not sell your personal data. Each third-party provider listed below is contractually or by policy required to protect your data with safeguards that are the same as, or equivalent to, those described in this Privacy Policy. We do not permit these providers to use your data for purposes beyond what is described here.

3.1 Anthropic, PBC (Claude AI)

Our AI journaling features are powered by Anthropic, PBC ("Anthropic"), the maker of Claude AI. No data is sent to Anthropic until you explicitly consent via the in-app "Data and Privacy" consent screen. When you consent, the following data may be sent to Anthropic for processing:

• Journal text entries and conversation history (up to 5 recent messages per request)
• Therapy profile data (emotional triggers, behavioral patterns, coping strategies)
• Session analysis data (summaries, detected emotions, themes)
• Photos of handwritten journal pages (sent as images for transcription)
• Your name and age (to personalize responses)

How we obtain consent: Before any AI feature is used for the first time, the App presents a full-screen "Data and Privacy" consent screen that discloses exactly what data will be sent and to whom. You must tap "Agree and Continue" to enable AI features. You can decline and use plain-text journaling instead.

How to revoke consent: You can revoke AI consent at any time in Profile > Settings. Revoking consent immediately stops all data transmission to Anthropic. Previously sent data is subject to Anthropic's retention policies.

Anthropic does not use your data to train its AI models. Anthropic processes data under its Privacy Policy and Usage Policy, which provide protections equivalent to those described here.

3.2 Supabase

Supabase, Inc. provides our backend infrastructure, including database hosting, user authentication, file storage (journal photos, audio recordings, profile photos), and serverless functions. All persistent App data is stored on Supabase's infrastructure. Data is protected with:

• Encryption at rest and in transit (TLS/HTTPS)
• Row-level security (RLS) policies ensuring users can only access their own data
• Rate limiting on all API endpoints

See Supabase's Privacy Policy.

3.3 RevenueCat

RevenueCat, Inc. manages our in-app subscriptions and payment processing. RevenueCat receives:

• Purchase transaction data and subscription status
• Anonymous user identifiers

RevenueCat does not receive your journal entries, mood data, community posts, or personal health information. See RevenueCat's Privacy Policy.

3.4 PostHog (Product Analytics)

PostHog, Inc. provides product analytics to help us understand how users interact with the App and improve features. PostHog receives:

• Anonymous or pseudonymous user identifiers (session ID, user ID)
• App usage events (e.g., features used, screens visited, session duration)
• Engagement metadata (e.g., mood level selected, number of goals chosen, lesson completed) — this includes category-level data such as "happy" or "sad" but never journal text content or detailed personal narratives
• Device and platform information (OS, app version)

PostHog does not receive the text content of your journal entries, community posts, reflection answers, or photos. See PostHog's Privacy Policy.

3.5 Superwall

Superwall, Inc. provides dynamic paywall management and conversion optimization. Superwall receives:

• Anonymous user identifiers and subscription status
• Onboarding progress events (e.g., quiz completed, goals selected, symptoms selected)
• User attributes for paywall targeting: name, age, quiz score, severity level, selected goals, selected symptoms, referral code usage

Superwall uses this data solely to determine which paywall experience to display. Superwall does not receive journal entries, mood entries, community posts, or AI conversation content. See Superwall's Privacy Policy.

3.6 Sentry

Sentry (Functional Software, Inc.) provides error tracking and performance monitoring. Sentry receives:

• Anonymized crash reports and error stack traces
• Device metadata (OS, app version, device model)

Sentry does not receive journal content, mood data, community posts, or personal health information. See Sentry's Privacy Policy.

3.7 Expo (Push Notifications)

Expo provides our push notification infrastructure. Expo receives your device push token to deliver notifications. Expo does not receive any App content or personal data. See Expo's Privacy Policy.

3.8 Apple (App Rating)

The App may prompt you to rate it using Apple's native StoreKit review dialog. This is a system-level prompt controlled entirely by Apple. We do not collect or transmit any data related to your rating. See Apple's Privacy Policy.

4. How We Collect Your Data

• Direct input: When you type journal entries, answer quiz questions, write reflections, create posts, or enter profile information.
• On-device processing: Voice-to-text transcription uses your device's built-in speech recognition. The raw audio is not sent to our servers for voice journaling (speech-to-text). Audio check-in recordings, if you choose to create them, are uploaded to our secure storage.
• Camera/photo library: When you voluntarily photograph or select images of handwritten journal pages.
• Automated collection: Analytics events, crash reports, and device information are collected automatically as you use the App. Analytics SDKs (PostHog, Sentry) capture these events in the background.
• Server-side processing: When you use AI features (with consent), your data is sent from our backend (Supabase Edge Functions) to Anthropic's API. The App never sends data directly from your device to Anthropic.

5. Data Storage and Security

• Your data is stored on Supabase's secure cloud infrastructure with encryption at rest and in transit.
• Row-level security (RLS) policies ensure users can only access their own data.
• Journal entries, mood data, and course progress are also cached locally on your device for offline access.
• We use HTTPS/TLS for all network communications between the App, our backend, and third-party services.
• API endpoints are protected with rate limiting and input validation.
• File uploads (photos, audio) are stored in access-controlled storage buckets scoped to your user or session identifier.

6. Your Rights and Choices

• Access: You can view all your data within the App, including journal entries, mood history, course progress, profile information, and community posts.
• AI Consent: You can decline AI features during the initial consent prompt. You can also revoke AI consent at any time in Profile > Settings, which will immediately stop all data transmission to Anthropic.
• Account Deletion: You can request deletion of your account and all associated data by contacting us at the email below. We will delete your data within 30 days of your request.
• Data Export: You can request a copy of your personal data by contacting us at the email below.
• Notifications: You can disable push notifications at any time through your device settings.
• Community Content: You can delete your own community posts and replies within the App.
• Microphone and Camera: You can revoke microphone and camera permissions at any time through your device settings. This will disable voice journaling and photo features respectively.

7. Data Retention

We retain your data for as long as your account is active or as needed to provide you with the App's services. If you delete your account, we will delete your personal data within 30 days, except where retention is required by law.

Anonymized analytics data (without personal identifiers) may be retained for longer periods for product improvement purposes.

Data sent to Anthropic for AI processing is subject to Anthropic's data retention policies. Anthropic does not retain your data for model training purposes.

8. Children's Privacy

The App is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If we become aware that we have collected data from a child under 13, we will delete it promptly.

9. International Data Transfers

Your data may be transferred to and processed in countries other than your own, including the United States, where our service providers (Supabase, Anthropic, PostHog, RevenueCat, Superwall, Sentry) operate. We ensure appropriate safeguards are in place for such transfers, and each provider is required to protect your data with measures equivalent to those described in this Privacy Policy.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the updated policy within the App or via push notification. Your continued use of the App after changes constitutes acceptance of the revised policy.

11. Contact Us

If you have questions about this Privacy Policy, your data, or wish to exercise any of your rights, please contact us:

Email: support@healr.site

Support: https://advait-raman.github.io/healr-legal/support.html