Privacy PolicyYour privacy is important to us. This Privacy Policy explains what personal data we collect, how we use it, who we share it with, and your rights regarding your personal information. By using Tarot Coach, you consent to the practices described in this policy.

1. Information We CollectAccount Data: When you register, we collect your email address and password (stored securely via hashing). If you complete your profile, we also collect your name, date of birth, and optional profile photo.

Anonymous Usage Data: Anonymous users are identified by a random device ID stored locally on your device. We collect reading history and daily usage counters.

Chat and Messaging Data: If you use the chat feature, we store message content, timestamps, and file attachments you send.

Push Notification Tokens: If you enable push notifications, we collect your device push token (Expo Push Token) to deliver notifications. You can disable notifications at any time through your device settings.

Coach and Session Data: If you book coaching sessions, we store session details, notes, reviews, and payment/token transaction history.

Social Feed Data: Posts, comments, and interactions you make on the social feed are stored and visible to other users.

Device and Technical Data: We may collect device type, operating system version, app version, and crash reports (via Sentry) to improve the Service.

2. How We Use Your DataWe use your data to: provide personalized tarot readings and horoscope content; manage your account and profile; facilitate coaching sessions and bookings; process token purchases and transactions; deliver push notifications; enable real-time chat messaging; moderate content and enforce community guidelines; improve app performance and fix bugs; comply with legal obligations. We do not sell your personal data to third parties.

3. AI-Generated Content and Data ProcessingReadings and horoscopes are generated using artificial intelligence (OpenAI). Your questions, birth date, and zodiac sign may be sent to our AI provider to generate personalized content. We do not include your email, name, or other personally identifiable information in AI requests. AI-generated content is for entertainment purposes only and is not stored by the AI provider beyond the processing request.

4. Data Sharing and Third-Party ServicesWe use the following third-party services that may process your data:

Supabase — Authentication, database, file storage, and real-time messaging infrastructure.
OpenAI — AI content generation for tarot readings, horoscopes, and AI bot conversations.
Expo / React Native — App infrastructure and push notification delivery.
Sentry — Crash reporting and error tracking (anonymized device and app data).
RevenueCat — In-app purchase validation and subscription management.
Apple App Store / Google Play Store — Payment processing for in-app purchases.

Each third-party service operates under its own privacy policy. We do not share your data with any third parties for advertising or marketing purposes.

5. Data Storage and SecurityYour data is stored on secure servers powered by Supabase (hosted on AWS). Passwords are cryptographically hashed and never stored in plain text. We use industry-standard security measures including HTTPS encryption, secure authentication tokens, and access controls to protect your information. Despite our efforts, no method of electronic transmission or storage is 100% secure, and we cannot guarantee absolute security.

6. Data RetentionWe retain your personal data for as long as your account is active or as needed to provide you with the Service. Reading history and usage data are retained for up to 90 days for anonymous users. If you delete your account, we will permanently delete all associated personal data, including your profile, messages, sessions, readings, and transaction history. Some data may be retained in anonymized form for analytics purposes or as required by law.

7. Cookies and Local StorageThe mobile app uses local storage on your device to store preferences, authentication session tokens, and your anonymous device ID. The web application uses cookies for session management. No third-party tracking cookies are used.

8. Your Rights (including GDPR)Depending on your jurisdiction, you may have the following rights regarding your personal data:

Right of Access: Request a copy of the personal data we hold about you.
Right to Rectification: Request correction of inaccurate or incomplete data.
Right to Erasure: Request deletion of your personal data ("right to be forgotten"). You can delete your account directly in the app (Profile Settings > Delete Account).
Right to Data Portability: Request a copy of your data in a machine-readable format.
Right to Restrict Processing: Request that we limit how we use your data.
Right to Object: Object to certain types of data processing.
Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent.

To exercise any of these rights, contact us at support@tarotcoach.app. We will respond within 30 days.

9. International Data TransfersYour data may be transferred to and processed in countries other than your country of residence, including the United States (where our infrastructure providers operate). By using the Service, you consent to such transfers. We ensure that appropriate safeguards are in place to protect your data in accordance with applicable data protection laws.

10. Children's PrivacyTarot Coach is not intended for children under the age of 13 (or 16 in the European Economic Area). We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us immediately and we will delete such data.

11. Changes to This PolicyWe may update this Privacy Policy from time to time. We will notify users of significant changes through the app or via email. The "Last updated" date at the bottom of this policy indicates the most recent revision. Continued use of the Service after changes constitutes acceptance of the updated policy.

12. ContactFor any privacy-related questions, data requests, or concerns, contact us at support@tarotcoach.app.

Last updated: February 2026