Privacy Policy

1.1 Information You Provide Directly

When you use Life Planner, you may voluntarily provide the following categories of information:

• Account Information: Name, email address, and profile picture when you sign in with Google or Apple via Firebase Authentication
• Profile Preferences: Display name and timezone settings
• Goals and Milestones: Goal titles, descriptions, categories, progress data, milestones with due dates, and dependency relationships between goals
• Habit Data: Habits you create, daily check-ins, streak counts, and frequency configurations
• Journal Entries: Written reflections, mood ratings (5-point scale), tags, and associations with goals or habits
• Focus Session Data: Timer duration, selected themes, linked milestones, and session completion records
• Life Balance Assessments: Self-reported scores across eight life domains (Career, Financial, Physical Health, Social, Emotional, Spiritual, Family, Personal Growth) with trend indicators
• AI Coaching Conversations: Messages you send to AI coaching personas and the AI-generated responses

1.2 Information Collected Automatically

We automatically collect certain information when you use the app:

• Device Information: Device model, operating system version, unique device identifiers, and language settings
• Gamification Data: Experience points (XP), level progression, badges earned, and challenge completion records
• Usage Analytics: Features accessed, interaction patterns, session duration, and notification engagement
• Diagnostic Data: Error logs, crash reports, and application performance metrics

1.3 Information from Third-Party Services

• Authentication Providers: When you sign in with Google or Apple via Firebase Auth, we receive your basic profile information (name, email, profile picture) as authorized by you
• Analytics Services: Aggregated usage data to help us understand how the app is used
• Advertising Networks: Google AdMob may collect advertising identifiers and device information for free-tier users to serve relevant advertisements

If you are located in the European Economic Area (EEA) or the United Kingdom, we process your personal data based on the following legal grounds under the General Data Protection Regulation (GDPR):

• Contract Performance: Processing necessary to provide you with our services (goal tracking, habit management, AI coaching, cloud sync)
• Legitimate Interest: Analytics and app improvement, fraud prevention, and ensuring security
• Consent: Where you have provided explicit consent, such as for personalized advertising, push notifications, and optional AI features. You may withdraw consent at any time
• Legal Obligation: Processing required to comply with applicable laws

We use the information we collect for the following purposes:

• Core Services: To provide and operate goal management, habit tracking, journaling, focus sessions, life balance assessments, and retrospective reviews
• AI Coaching: To deliver personalized AI coaching through built-in and custom coaching personas. Your messages are processed by your selected third-party AI provider (Google Gemini, OpenAI ChatGPT, or xAI Grok) via a secure server-side proxy
• AI-Powered Features: To generate performance reviews (weekly, monthly, quarterly, yearly), suggest SMART goals with milestones, assist with journal entries, and provide life balance insights
• Gamification: To calculate experience points, track level progression and achievements, manage challenges, and deliver motivational rewards
• Cross-Device Sync: To synchronize your data across multiple devices when you are signed in
• Notifications: To send reminders, habit check-in prompts, and progress updates (with your permission)
• Service Improvement: To analyze usage patterns, fix bugs, and improve the user experience
• Advertising: To display advertisements to free-tier users via Google AdMob
• Legal Compliance: To comply with applicable laws, regulations, and legal processes

Life Planner integrates AI-powered features including coaching, goal generation, journal assistance, and performance reviews. This section explains how your data is processed in relation to these features:

• All AI requests are routed through a secure server-side proxy (Supabase Edge Functions). No third-party AI API keys are stored on or accessible from your device
• You may choose between three AI providers: Google Gemini, OpenAI ChatGPT, or xAI Grok
• Only the minimum data necessary for each specific AI request (e.g., your message and relevant context) is transmitted to the selected provider
• We do not use your personal data to train, fine-tune, or improve any AI models. Each provider's own data processing policies govern how they handle requests
• AI-generated content (coaching responses, reviews, goal suggestions) is stored within your account for your personal reference
• You may opt out of AI features entirely and continue using all non-AI functionality of the app

For details on how each AI provider handles data, please refer to their respective privacy policies:

• Google Gemini: Google AI Privacy Notice
• OpenAI: OpenAI Privacy Policy
• xAI: xAI Privacy Policy

Life Planner is built as an offline-first application with optional cloud synchronization:

• Local Storage: All data is stored locally on your device using SQLite. The app is fully functional without an internet connection
• Cloud Sync: When you create an account and sign in, your data is encrypted and synced to our cloud infrastructure (Supabase, powered by PostgreSQL) for cross-device access. Sync is bidirectional with automatic conflict resolution
• Encryption: All data is encrypted in transit using TLS 1.2+ and encrypted at rest on our cloud servers
• Guest Mode: If you use the app without creating an account, all data remains exclusively on your device and is never transmitted to any external server
• Data Retention: We retain your data for as long as your account is active. Upon account deletion, your data is soft-deleted immediately and permanently purged from our systems within 30 days
• Server Location: Cloud data is hosted on servers located in the United States and the European Union via Supabase infrastructure

We share your information only as described below. We do not sell, rent, or trade your personal information to any third party.

• Cloud Infrastructure (Supabase): Data storage, synchronization, authentication, and serverless AI proxy functions
• Authentication (Firebase): Google and Apple sign-in services
• AI Providers: Google (Gemini), OpenAI (ChatGPT), or xAI (Grok) — only the data required for your selected AI interaction is shared, based on your chosen provider
• Subscription Management (RevenueCat): In-app purchase and subscription processing
• Advertising (Google AdMob): Ad serving for free-tier users only. Premium subscribers do not see advertisements
• Legal Obligations: We may disclose information when required by law, regulation, legal process, or enforceable governmental request
• Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. You will be notified of any such change

We implement industry-standard technical and organizational security measures to protect your personal information:

• TLS 1.2+ encryption for all data in transit
• AES-256 encryption for data at rest on cloud servers
• Secure authentication via Firebase Auth (Google and Apple Sign-In) with OAuth 2.0
• Server-side AI proxy architecture to prevent exposure of API credentials on client devices
• Row-level security (RLS) policies enforced at the database level to isolate user data
• Regular security audits and vulnerability assessments
• Principle of least privilege for all system access

While we strive to protect your data using commercially reasonable measures, no method of electronic transmission or storage is completely secure. We cannot guarantee absolute security.

Depending on your location, you may be entitled to the following rights under applicable data protection laws (including GDPR, CCPA/CPRA, LGPD, PIPEDA, POPIA, and other regional regulations):

• Right of Access: Request a copy of the personal data we hold about you
• Right to Rectification: Request correction of inaccurate or incomplete personal data
• Right to Erasure: Request deletion of your personal data and account
• Right to Data Portability: Receive your data in a structured, machine-readable format
• Right to Restrict Processing: Request limitation of processing of your personal data
• Right to Object: Object to certain processing activities, including direct marketing and profiling
• Right to Withdraw Consent: Withdraw previously given consent at any time without affecting the lawfulness of prior processing
• Right to Opt-Out of Sale/Sharing: We do not sell your personal information. California residents may still exercise this right under CCPA/CPRA
• Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights

To exercise any of these rights, please visit our account deletion page or contact us at support@tribe.az. We will respond to verified requests within 30 days (or sooner where required by law).

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA):

• We do not sell or share your personal information for cross-context behavioral advertising
• You may request to know what categories and specific pieces of personal information we have collected
• You may request deletion of your personal information
• You may designate an authorized agent to make requests on your behalf

To submit a verifiable consumer request, contact us at support@tribe.az.

Life Planner is available globally. Your information may be transferred to, stored, and processed in countries other than your country of residence, including the United States, where our cloud infrastructure and service providers operate.

For transfers of personal data from the EEA, UK, or Switzerland, we rely on:

• Standard Contractual Clauses (SCCs) approved by the European Commission
• Adequacy decisions where applicable
• Your explicit consent where no other legal mechanism applies

We ensure that all international data transfers are subject to appropriate safeguards as required by applicable data protection laws.

Life Planner is not directed at children under the age of 13 (or the applicable minimum age in your jurisdiction, such as 16 in certain EEA countries). We do not knowingly collect personal information from children below the applicable age threshold.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately at support@tribe.az. We will take steps to delete such information promptly.

The Life Planner mobile app does not use browser cookies. However, the following tracking technologies may be used:

• Device Identifiers: Used for analytics and crash reporting
• Advertising Identifiers: Used by Google AdMob for free-tier ad personalization. You can reset or opt out of personalized ads through your device settings
• Firebase Analytics: Collects anonymized usage data to help us improve the app

Our app may contain links to or integrate with third-party websites and services that are not operated by us. We are not responsible for the privacy practices or content of these third parties. We strongly encourage you to review the privacy policies of any third-party service you access.

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will:

• Update the "Last Updated" date at the top of this page
• Notify you through the app or via email for significant changes

Your continued use of Life Planner after any changes to this Privacy Policy constitutes your acceptance of the updated policy.