Privacy Policy

• Account info: email address, password (stored as a salted hash by Supabase Auth — we never see your password), and your name.
• Birth data: month, day, and year. We use this to calculate your Life Path, Birthday Number, Personal Year, and Chinese Zodiac. Birth year is required to compute these accurately.
• Saved people (premium): if you add others to your circle for compatibility checks, we store the name, optional relationship label, and birth date you entered. You are responsible for having permission to enter this information.
• Subscription & billing: if you upgrade, our payment processor (Stripe on web, Apple In-App Purchase on iOS, Google Play Billing on Android) handles your payment details. We never see or store your card number.
• App usage: we cache the AI-generated readings we produce for you (one per day) so you can refresh without burning compute. We do not sell or share usage analytics with brokers.

• To calculate your numerology and personalize your daily readings.
• To send you the email confirmations and password reset links you request.
• To process payments and manage your subscription.
• To improve the product (in aggregate, never tied to your identity).

We do not sell your personal data. We do not use it for ad targeting.

• Supabase — authentication and database hosting.
• Anthropic — generates your AI readings. Only your numerology numbers and zodiac (not your email or password) are sent. Anthropic does not train on data sent through their API.
• Stripe — web subscription billing.
• Apple / Google — in-app subscription billing on iOS and Android, via RevenueCat for entitlement management.
• Resend — transactional email (sign-up confirmation, password reset).
• Vercel — application hosting.

Each provider above has their own privacy policy and is bound by data processing terms with us.

Your account data is kept for as long as your account exists. When you delete your account, we delete all associated profile data, saved people, readings, and decisions immediately. Backup copies are purged within 30 days. Billing records may be retained longer where required by law.

• Access: see all the data we have on you on theProfile page.
• Correction: edit your birth date or name from the Profile page or by emailing us.
• Deletion: delete your account and all associated data via the “Delete Account” button on the Profile page. No email request needed.
• Portability: email us and we’ll send you a copy of your data in a portable format.
• Withdraw consent: stop using the service and we stop processing.

If you are in the EU, UK, or California, you have additional rights under GDPR and CCPA. Contact us to exercise them.

DayCode is not intended for users under 13. We do not knowingly collect data from children under 13. If you believe a child has given us data, contact us and we will delete it.

Data is encrypted in transit (HTTPS) and at rest (Supabase managed Postgres). Passwords are salted and hashed by Supabase Auth. We use row-level security to ensure your data is only accessible by you.

If we make material changes, we will notify you by email and update the “Last updated” date above. Continued use after changes constitutes acceptance.

Questions? Email hello@getdaycode.com.