— LEGAL —
PRIVACY POLICY
How we collect, use, and protect your personal information.
Effective date: January 1, 2026 · Last updated: April 9, 2026
Your privacy matters. This policy explains what data we collect, why we collect it, and how you can control it. We aim for transparency and minimal data collection.
1. Who We Are
Selfism Community ("Selfism," "we," "us") operates the Selfism mobile app (iOS and Android), the website selfism.community, and related services. For privacy inquiries, contact us at support@selfism.community.
2. Data We Collect
2.1 Account information
When you create an account, we collect:
- Email address — for authentication and communication
- Name (if provided) — for personalization
- Authentication tokens — from Google or Apple if you use social login
2.2 Usage data
We automatically collect:
- App usage patterns — screens visited, features used, session duration
- Device information — device type, operating system, app version
- Crash reports — technical error logs for debugging
2.3 User-generated content
- Survey responses — your answers to the Selfism self-assessment survey
- Community posts — content you choose to share in the community
- AI coach conversations — messages exchanged with the AI coach
- Journal entries — personal reflections you create within the app
2.4 Payment data
We do not directly collect or store credit card numbers or payment credentials. All payments are processed through Apple App Store or Google Play Store. We receive only transaction confirmation data (subscription status, expiry date).
2.5 Data we do NOT collect
- Location data (GPS)
- Contacts or address book
- Phone call logs or SMS messages
- Biometric data (fingerprint, face scan)
- Data from other apps on your device
3. How We Use Your Data
- Provide the Services — account management, content delivery, AI responses
- Personalization — tailoring survey results, recommended content
- Communication — password resets, service updates, optional promotional emails
- Improvement — analyzing usage patterns to improve the app experience
- Safety — detecting and preventing abuse, fraud, or violations of our Terms
- Legal compliance — meeting regulatory obligations
We do not sell, rent, or trade your personal data to third parties for advertising or marketing purposes.
4. Data Storage & Security
4.1 Infrastructure
Your data is stored on Supabase infrastructure (backed by Amazon Web Services). Supabase provides row-level security, encrypted connections (TLS), and encrypted data at rest.
4.2 Security measures
- All data transmitted between your device and our servers is encrypted via TLS/SSL
- Passwords are hashed using industry-standard bcrypt algorithms
- OAuth tokens from Google/Apple are handled by Supabase Auth and never stored in plaintext
- Database access is restricted through row-level security policies
4.3 Breach notification
In the event of a data breach that affects your personal information, we will notify affected users via email within 72 hours of discovery, as required by applicable law.
5. Third-Party Services
We use the following third-party services that may process your data:
- Supabase — authentication, database, storage
- Apple App Store / Google Play Store — payment processing
- Google OAuth / Apple Sign-In — social authentication
- OpenAI / Anthropic — AI coach functionality (conversations may be sent to AI providers for response generation; see section 7)
- Expo — app build and update infrastructure
- Resend — transactional email delivery (password resets, confirmations)
Each third-party service has its own privacy policy. We encourage you to review them.
6. Cookies & Website Tracking
The selfism.community website uses minimal tracking:
- Local storage — to remember your "Vow" input (stored only on your device)
- No third-party cookies — we do not use Google Analytics, Facebook Pixel, or any advertising trackers on our website
7. AI Coach & Conversation Data
Important: Messages you send to the AI coach may be transmitted to AI service providers (e.g., OpenAI, Anthropic) to generate responses. While we take measures to minimize personally identifiable information in these transmissions, you should avoid sharing sensitive personal details (full name, addresses, financial information, medical records) in AI conversations.
AI conversations are stored in your account for continuity purposes. You can delete your conversation history at any time from the app settings.
8. Children's Privacy
The Services are not intended for children under 16. We do not knowingly collect personal information from children under 16. If we become aware that a child under 16 has provided personal information, we will take steps to delete that information promptly. If you are a parent or guardian and believe your child has provided us with personal information, please contact us.
9. Your Rights
Depending on your jurisdiction, you may have the right to:
- Access — request a copy of the personal data we hold about you
- Correction — request correction of inaccurate personal data
- Deletion — request deletion of your personal data ("right to be forgotten")
- Portability — request your data in a portable format
- Restriction — request that we limit processing of your data
- Objection — object to certain types of processing
- Withdraw consent — withdraw previously given consent at any time
To exercise any of these rights, email support@selfism.community. We will respond within 30 days.
10. Data Retention
- Account data — retained as long as your account is active; deleted within 30 days of account deletion request
- Community posts — retained until you delete them or your account is deleted
- AI conversations — retained until you delete them or your account is deleted
- Survey results — retained as long as your account is active
- Usage analytics — retained in aggregate (non-identifiable) form indefinitely for product improvement
- Backup copies — may persist in encrypted backups for up to 90 days after deletion
11. International Data Transfers
Your data may be transferred to and processed in countries other than your own, including the United States (where our infrastructure providers operate). By using the Services, you consent to this transfer. We ensure appropriate safeguards are in place for international data transfers.
12. California Residents (CCPA)
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information is collected, request deletion, and opt out of the sale of personal information. We do not sell personal information.
13. European Residents (GDPR)
If you are a resident of the European Economic Area, our legal basis for processing your data includes: (a) your consent, (b) performance of a contract (providing the Services), (c) legitimate interest (improving our Services, ensuring security). You have the right to lodge a complaint with your local data protection authority.
14. Changes to This Policy
We may update this Privacy Policy periodically. Material changes will be communicated via the app or email. The "Last updated" date at the top reflects the most recent revision.
15. Contact
For privacy-related questions, data access requests, or concerns:
support@selfism.community
By using Selfism, you acknowledge that you have read and understood this Privacy Policy.