Privacy Policy – The Mind Nomad

The Mind Nomad (“we,” “us,” “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and protect your information in compliance with GDPR and CCPA standards.

1. Information We Collect

• Account Information: Name, email address, and authentication details collected through our secure authentication system.
• Journal Entries: Your personal journal entries, reflections, and content that you create within the app.
• AI Interaction Data: Prompts and responses from AI-powered journaling features, subject to our strict data retention policies.
• Usage Data: Analytics such as IP addresses, app usage patterns, and feature interactions to improve user experience.
• Subscription Data: Payment confirmation and subscription status information.

2. How We Use Your Information

We use your information to:

• Provide and improve our AI journaling service
• Personalize your journaling experience
• Send important service notifications and updates
• Analyze usage patterns to enhance app functionality
• Ensure compliance with legal obligations
• Prevent fraud and abuse of our services

3. AI Service Providers & Data Retention

The Mind Nomad uses AI service providers that offer zero-data retentionpolicies. This means:

• No Permanent Storage: AI service providers do not retain your journal entries or AI interactions beyond the immediate processing required to provide responses.
• Abuse Monitoring Only: The only data retention is for abuse monitoring purposes, which is limited to 30 days maximum. This monitoring helps protect our community from harmful content and misuse of our AI services.
• Immediate Deletion: Your personal journal content and AI interactions are deleted immediately after processing, ensuring your privacy and data security.

For reference on OpenAI's data handling practices, visit: OpenAI Data Usage Guide

4. Data Security & Encryption

We implement industry-standard security measures to protect your data:

• Encryption at Rest: All your data is encrypted at rest using AES-256 encryption, ensuring that even if our systems were compromised, your information would remain secure.
• Encryption in Transit: All data transmitted between your device and our servers is encrypted using TLS 1.3 protocols.
• Secure Authentication: We use secure authentication methods and never store your passwords in plain text.
• Regular Security Audits: We conduct regular security assessments and updates to maintain the highest security standards.

5. Sharing of Information

We share your data with the following third-party providers to deliver our service:

• AI Service Providers: For processing journal entries and providing AI-powered insights (with zero-data retention policies)
• Payment Processors: For handling subscription payments (we do not store payment information)
• Analytics Services: For understanding app usage and improving user experience

We do not sell or share your personal data for marketing purposes.

6. Your Rights

Under GDPR and CCPA, you have the right to:

• Access Your Data: Request details of personal data we process about you
• Rectify Your Data: Update or correct inaccuracies in your information
• Delete Your Data: Request deletion of your account and all associated data
• Restrict Processing: Limit how your data is processed in certain scenarios
• Data Portability: Request a machine-readable copy of your data
• Opt-Out: Opt-out of non-essential data-sharing practices

To exercise your rights, contact us at: [email protected]

7. Data Retention

We retain your data only as long as necessary to provide our service or comply with legal obligations:

• Account Data: Retained while your account is active and for 30 days after deletion for recovery purposes
• Journal Entries: Stored until you delete them or close your account
• AI Interactions: Zero retention beyond immediate processing (maximum 30 days for abuse monitoring only)
• Analytics Data: Aggregated and anonymized data may be retained for service improvement

8. Children's Privacy

The Mind Nomad is not intended for children under 13 without parental consent. We do not knowingly collect data from children under 13 without appropriate parental consent. If you believe we have collected information from a child under 13, please contact us immediately.

9. International Data Transfers

While we primarily serve users globally, your information may be processed in various countries through our service providers. When we transfer your data, we ensure appropriate safeguards are in place in compliance with GDPR and other applicable data protection laws.

10. Policy Updates

We may revise this Privacy Policy periodically to reflect changes in our practices or applicable laws. We will notify you of any material changes through the app or via email. Continued use of our service after updates indicates acceptance of the revised terms.

11. Contact Information

For privacy-related questions, data requests, or to exercise your rights, please contact us at: