Privacy Policy

1. Information We Collect

When you use GratitudeJournal.io, we collect the following information:

• Account Information: Email address and password (hashed) when you create an account
• User Content: Your gratitude journal entries and any other content you create
• Usage Data: Information about how you interact with the service
• Technical Data: IP address, browser type, and device information for security purposes

2. How We Use Your Information

We use the collected information to:

• Provide and maintain the gratitude journal service
• Authenticate your identity and secure your account
• Store and retrieve your journal entries
• Improve our service and user experience
• Communicate with you about your account or service updates
• Ensure compliance with our terms and applicable laws

3. Data Storage and Security

Your data is stored securely using industry-standard encryption and security measures:

• Passwords are hashed using bcrypt with salt
• Data is transmitted over HTTPS encryption
• Database access is restricted and monitored
• Regular security audits are performed

4. Cookies and Authentication

We use cookies solely for authentication purposes:

• Session cookies to keep you logged in
• No tracking, advertising, or analytics cookies
• Cookies are automatically deleted when you log out

5. Data Sharing and Third Parties

We do not sell, trade, or otherwise transfer your personal information to third parties, except:

• When required by law or legal process
• To protect our rights, property, or safety
• With your explicit consent

6. Your Rights

You have the following rights regarding your personal data:

• Access: Request a copy of your personal data
• Correction: Update or correct your information
• Deletion: Delete your account and all associated data
• Portability: Export your data in a standard format
• Objection: Object to certain processing of your data

7. Data Retention

We retain your data for as long as your account is active. When you delete your account, we will permanently delete all your data within 30 days.

8. Children's Privacy

Our service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13.

9. International Data Transfers

Your data may be processed and stored in countries other than your own. We ensure appropriate safeguards are in place to protect your data in accordance with this privacy policy.

10. Changes to This Policy

We may update this privacy policy from time to time. We will notify you of any material changes via email or through the service interface.

11. Contact Us

If you have any questions about this privacy policy or our data practices, please contact us at gratitudejournalio@gmail.com.