1. Information We Collect

1.1 Information You Provide

Reading History

• Tarot card selections and spreads
• Dates and times of readings
• Celestial interpretations received
• Favorited readings (if marked)

Usage Data

• Daily reading count
• Total readings performed
• Spread type preferences (Daily Vision vs. Tri-Realm Spread)
• App interaction patterns

1.2 Automatically Collected Information

Device Information

• Device type and model
• Operating system version (iOS/Android)
• App version
• Device identifiers (non-personally identifiable)

1.3 Information We Do NOT Collect

2. How We Use Your Information

2.1 Core Functionality

• Generate Celestial Interpretations: Process your card selections through our AI service (Dify API)
• Store Reading History: Save your past visions locally on your device
• Track Usage: Monitor daily reading limits and total counts

2.2 App Improvement

• Enhance user experience
• Fix bugs and resolve technical issues
• Optimize performance across devices

3. Data Storage and Security

3.1 Local Storage

3.2 External Services

Dify AI API:

• Card selections sent to AI service for interpretation generation
• No personally identifiable information is sent
• Connections encrypted via HTTPS/TLS
• Anonymous identification as "tarot-app-user"

3.3 Security Measures

• Encryption: All network communications use HTTPS/TLS encryption
• Secure Storage: Sensitive data stored using platform-secure mechanisms
• No Authentication Required: No account creation reduces data exposure risks
• Regular Updates: Security patches applied promptly

4. Data Sharing and Disclosure

4.1 Third-Party Services

Dify AI API (AI Service Provider)

• Purpose: Generate celestial tarot interpretations
• Data Shared: Card selections, spread type, optional user query text
• Privacy Policy: Dify Privacy Policy

Expo Platform Services

• Purpose: App development framework and crash reporting
• Data Shared: Anonymous crash logs, performance metrics
• Privacy Policy: Expo Privacy Policy

4.2 We Do NOT Share Data With:

5. Your Privacy Rights

5.1 Data Access and Control

View Your Data:

• Access all stored readings through the "Vision Archive" in the app
• Review your usage statistics

Delete Your Data:

• Delete individual readings within the app
• Clear all history through app settings
• Uninstall the app to remove all local data

5.2 Regional Rights

European Union (GDPR):

• Right to access your personal data
• Right to rectification and erasure
• Right to data portability
• Right to object to processing

California (CCPA):

• Right to know what personal information is collected
• Right to delete personal information
• Right to opt-out of sale (Note: We do not sell personal data)

6. Children's Privacy

7. International Data Transfers

Data Processing Locations:

• Local data stored on your device (no international transfer)
• Dify API requests processed on servers in various countries
• All transfers comply with applicable data protection laws

Safeguards:

• Standard contractual clauses (SCCs) where applicable
• HTTPS/TLS encryption for all data in transit
• Compliance with GDPR, CCPA, and regional regulations

8. Data Retention

• Local Storage: Retained on your device until deleted or app uninstalled
• Dify API: Temporary conversation data for quality improvement
• Crash Logs: Anonymous technical data retained for up to 90 days

9. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements.

Notification of Changes:

• Updated "Last Updated" date at the top
• In-app notification for significant changes
• Continued use constitutes acceptance

10. Contact Us

11. Disclaimer

Summary