Privacy Policy

1. Introduction

Welcome to Harmonia ("we," "our," or "us"). We are committed to protecting your privacy and personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our personal wellness and life balance tracking application.

Please read this Privacy Policy carefully. By accessing or using Harmonia, you acknowledge that you have read, understood, and agree to be bound by all the terms of this Privacy Policy.

2. Information We Collect

We may collect the following types of information:

• Account Information: When you create an account, we collect your name, email address, password (encrypted), and other contact information you provide.
• Personal Wellness Data: We collect and store the content you create within the application, including:
  • Journal entries and personal reflections
  • Morning plans and daily goals
  • Evening reviews and daily assessments
  • Mood and energy level tracking
  • Financial tracking and budget information
  • Horoscope preferences and zodiac sign
  • Music preferences and relaxation settings
• Health Data (Optional): If you connect Apple HealthKit, we may access and display your health metrics (such as steps or activity data) to provide wellness insights. You control access and can revoke it at any time in iOS Settings.
• Usage Analytics: We collect information about how you interact with our application, including access times, features used, and general usage patterns (anonymized).
• Device Information: We collect basic information about the device you use to access our application, including device type, operating system, and browser type for technical support purposes.
• Payment Information: For subscription services, we collect payment information through secure third-party payment processors (Stripe on web). We do not store your full payment details on our servers.

3. How We Use Your Information

We use the information we collect for the following purposes:

• Service Provision: To provide, maintain, and improve our wellness tracking services
• Personalization: To personalize your experience and deliver content relevant to your wellness journey
• Account Management: To process transactions, manage your subscription, and maintain your account
• Communication: To send you technical notices, updates, security alerts, and support messages
• Customer Support: To respond to your comments, questions, and customer service requests
• Service Improvement: To monitor usage patterns and analyze trends to improve our application
• Luna AI: We use AI (via third-party provider OpenRouter) to analyze your wellness data when you use Luna AI. We send structured summaries (patterns, scores, themes) and, when you opt in, encrypted journal/note content. We do not use your data to train models for other users.

4. AI Data Processing and Analysis

Luna AI: We use AI (via third-party provider OpenRouter) to analyze your wellness data when you use Luna AI. We send structured summaries (patterns, scores, themes) and, when you opt in, encrypted journal/note content. We do not use your data to train models for other users.

• AI processing is limited to your personal wellness data within our app
• AI analysis is used solely to provide you with personalized wellness insights
• We will not use your data to train AI models for other users or third parties
• You can opt-out of Luna AI at any time while retaining access to other app features

5. Data Security and Encryption

We implement industry-standard security measures to protect your personal information, including:

• Encryption: Data in transit is protected by HTTPS. Data at rest is stored in Firebase with encryption. When you set an encryption keyphrase, your journal entries, notes, and birth data are additionally encrypted with AES-256 before storage. Luna AI receives structured summaries for analysis; raw sensitive content is only included when you opt in and is encrypted when possible.
• Secure Storage: Data is stored on secure, encrypted servers with restricted access
• Access Controls: Only authorized personnel have access to user data, and access is logged and monitored
• Regular Security Audits: We conduct regular security assessments and updates
• Secure Authentication: User passwords are hashed using industry-standard methods

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security.

6. Data Sharing and Third Parties

We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following limited circumstances:

• Service Providers: With trusted third-party service providers who assist us in operating our app (e.g., hosting, payment processing, analytics) under strict confidentiality agreements
• Legal Requirements: When required by law, court order, or to protect our rights and safety
• Business Transfers: In the event of a merger, acquisition, or sale of assets (with user notification)
• Consent: When you explicitly consent to sharing your information

Third-Party Services: We use Stripe for payment processing and Firebase for data storage. These services have their own privacy policies and security measures in place.

7. Data Retention and Deletion

We retain your personal information only for as long as necessary to provide our services and fulfill the purposes outlined in this Privacy Policy. Specifically:

• Account Data: Retained while your account is active and for 30 days after account deletion
• Wellness Data: Retained while your account is active; deleted within 30 days of account closure
• Usage Analytics: Anonymized data may be retained for service improvement purposes
• Audit Logs: We may retain security and audit logs for compliance and safety purposes after account deletion
• Legal Requirements: Some data may be retained longer if required by law

You can delete your account and associated data directly in the app (Account → Delete Account, or Settings → Data Management). You can also request deletion by contacting us at support@harmonia-app.com.

8. Your Rights and Choices

Depending on your location, you may have certain rights regarding your personal information:

• Access: Request a copy of the personal information we have about you
• Correction: Request correction of inaccurate or incomplete personal information
• Deletion: Request deletion of your personal information (right to be forgotten)
• Portability: Request a copy of your data in a portable format
• Restriction: Request restriction of processing of your personal information
• Objection: Object to processing of your personal information for certain purposes
• Withdraw Consent: Withdraw consent for AI data processing at any time

To exercise these rights, please contact us at support@harmonia-app.com. We will respond to your request within 30 days.

9. International Data Transfers

Your personal information may be transferred to and processed in countries other than your own. We ensure that such transfers comply with applicable data protection laws and that appropriate safeguards are in place to protect your personal information.

10. Children's Privacy

Harmonia is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If we become aware that we have collected personal information from a child under 13, we will take steps to delete such information promptly.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will notify you of any material changes by:

• Posting the updated Privacy Policy on our website
• Sending you an email notification (if you have an account)
• Displaying a notice in our application

Your continued use of our services after any changes constitutes acceptance of the updated Privacy Policy.

12. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at: