Back to Products

PRIVACY POLICY

Last Updated: January 22, 2026

1. INTRODUCTION

LumenLeaf ("we," "our," or "us") respects your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, store, and protect your information when you use the LumenLeaf Journal application ("App").

By using LumenLeaf Journal, you acknowledge that you have read and understood this Privacy Policy and consent to the collection, use, and sharing of your information as described herein.

2. INFORMATION WE COLLECT

2.1 Account Information

  • Email address (when you register using Google OAuth)
  • Username
  • Profile information (birth year, gender, goals)
  • Profile photo (optional)

2.2 Journal Content

  • Journal entries and text you write or that are generated by the AI
  • Conversation history with the AI companion
  • Mood scores and emotional data
  • Relationship notes
  • Weekly highlights and summaries

2.3 Usage Information

  • App interaction data
  • Device information (device type, operating system)
  • Login timestamps
  • Feature usage statistics

2.4 Technical Information

  • IP address (for security purposes)
  • Error logs and diagnostic data
  • App performance metrics

3. HOW WE USE YOUR INFORMATION

We use your information to:

  • Provide and maintain the App's core functionality
  • Generate personalized journal entries using AI
  • Provide AI companion conversational features
  • Generate insights, weekly highlights, and relationship tracking
  • Improve and optimize the App experience
  • Communicate with you about your account and the App
  • Provide customer support
  • Detect and prevent fraud, abuse, or security issues
  • Comply with legal obligations

4. DATA STORAGE AND SECURITY

4.1 Encryption

Your journal entries are encrypted at rest using Google Cloud KMS (Key Management Service). Journal entries are only decrypted when needed for processing. Data in transit is encrypted using industry-standard TLS/SSL protocols.

4.2 Cloud Storage

Your data is stored on Google Cloud Platform infrastructure. We implement appropriate technical and organizational measures to protect your data. Our servers are located in secure data centers with restricted access.

4.3 Access Controls

Only authorized personnel have access to systems containing user data. Access is logged and monitored for security purposes. We use role-based access controls to limit data access.

5. DATA SHARING AND THIRD PARTIES

We do NOT sell your personal information or journal content to third parties.

We may share your information only in the following limited circumstances:

5.1 Service Providers

  • Google Cloud Platform: For hosting and infrastructure
  • OpenAI: For AI-powered features (journal generation and conversation)
  • Google OAuth: For authentication services
  • App Store Providers (Apple, Google): For payment processing and app distribution

5.2 Legal Requirements

We may disclose your information if required by law, court order, or government request, or if we believe disclosure is necessary to:

  • Comply with legal obligations
  • Protect our rights, property, or safety
  • Prevent fraud or abuse
  • Respond to emergencies involving danger of death or serious physical injury

5.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.

6. AI PROCESSING

Your journal entries and conversations are processed by OpenAI's API to provide AI companion features. We send only necessary context to the AI service (not your entire journal history at once). OpenAI has its own privacy policy and data handling practices. We implement retry mechanisms and error handling to protect your data during transmission.

7. DATA RETENTION

We retain your account information and journal entries for as long as your account is active. You may delete individual journal entries at any time. If you delete your account, we will delete or anonymize your personal information within 90 days, except:

  • Information required for legal, accounting, or security purposes
  • Anonymized, aggregated data used for analytics

8. YOUR PRIVACY RIGHTS

Depending on your location, you may have the following rights:

8.1 Access and Portability

  • You can access your journal entries and data within the App
  • You may request a copy of your data in a portable format

8.2 Correction

  • You can edit your profile information and journal entries within the App

8.3 Deletion

  • You can delete individual journal entries
  • You can request deletion of your entire account

8.4 Opt-Out

  • You may opt out of certain communications
  • You can disable specific features (e.g., notifications)

8.5 GDPR Rights (European Users)

If you are in the European Economic Area, you have additional rights under GDPR:

  • Right to restrict processing
  • Right to object to processing
  • Right to lodge a complaint with a supervisory authority

8.6 CCPA Rights (California Users)

If you are a California resident, you have rights under the California Consumer Privacy Act:

  • Right to know what personal information is collected
  • Right to know whether personal information is sold or disclosed
  • Right to opt-out of the sale of personal information (we do not sell your data)
  • Right to deletion
  • Right to non-discrimination for exercising your privacy rights

9. CHILDREN'S PRIVACY

The App is not intended for use by individuals under the age of 13. We do not knowingly collect personal information from children under 13. If we discover that we have collected information from a child under 13, we will delete it immediately.

10. INTERNATIONAL DATA TRANSFERS

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place for such transfers, including:

  • Standard contractual clauses
  • Adequacy decisions
  • Your consent

11. COOKIES AND TRACKING

The App does not use cookies in the traditional web sense. However, we may use:

  • Local storage for app functionality and preferences
  • Analytics tools to understand app usage
  • Crash reporting tools to identify and fix issues

12. PRIVACY BY DESIGN

We incorporate privacy principles into our development process:

  • Data minimization (we collect only what's necessary)
  • Purpose limitation (we use data only for stated purposes)
  • Storage limitation (we don't keep data longer than necessary)
  • Security measures at every level

13. CHANGES TO THIS PRIVACY POLICY

We may update this Privacy Policy from time to time. We will notify you of material changes by:

  • Posting a notice in the App
  • Sending an email to your registered email address
  • Updating the "Last Updated" date at the top of this policy

Your continued use of the App after changes constitutes acceptance of the updated Privacy Policy.

14. CONTACT US

If you have questions about this Privacy Policy or wish to exercise your privacy rights, please contact us at:

Email: support@fableforgeapps.com
Website: https://fableforgeapps.com/
Subject: Privacy Policy Inquiry

For data deletion requests, please use subject line: "Data Deletion Request"
For data access requests, please use subject line: "Data Access Request"

We will respond to your request within 30 days.

15. CALIFORNIA SHINE THE LIGHT LAW

California residents may request information about our disclosure of personal information to third parties for direct marketing purposes. We do not share personal information with third parties for their direct marketing purposes.

16. DO NOT TRACK SIGNALS

The App does not currently respond to "Do Not Track" signals as there is no universally accepted standard for handling such signals.

By using LumenLeaf Journal, you acknowledge that you have read and understood this Privacy Policy and consent to the collection, use, and sharing of your information as described herein.