Privacy Policy

Moodgrade is built around the idea that emotional data is personal, sensitive, and worth handling carefully. We design the product so you can log, review, export, and delete your data without relying on vague promises.

This Privacy Policy explains what data we collect, how we use it, who we share it with, and what rights you have. It applies to the Moodgrade mobile apps (iOS and Android), the web application at moodgrade.com, and all related services.

We do not market Moodgrade as end-to-end encrypted local-only storage. We use private cloud infrastructure that we operate, protect, and audit. By using Moodgrade, you agree to the practices described in this policy.

Moodgrade is operated by Yusuf Ihsan Gorgel (sole proprietor), based in Turkey. For all privacy-related inquiries, you can reach us at privacy@moodgrade.com.

We collect data that you provide directly and data generated automatically when you use the service.

• Account data: email address, display name, authentication tokens, timezone, and locale preferences
• Mood entries: mood scores, emotions, energy levels, journal notes, tags, triggers, and timestamps
• Sleep data: hours slept and sleep quality logged alongside mood entries
• Medication data: medication names, dosages, schedules, instructions, and adherence logs
• Reminders and notifications: reminder times, types, and notification subscription details
• Challenge and achievement progress: weekly challenge completions and unlocked achievements
• Streak data: current streak length, longest streak, total entries, and last entry date
• AI-generated content: prompt context summaries and generated prompt text (used to improve journaling suggestions)
• Export history: records of data exports you request
• Device information: browser user agent (collected with notification subscriptions only)

The Moodgrade mobile app stores mood entries, journal notes, habits, sleep logs, and preferences in a local SQLite database on your device. This data remains on your device unless you explicitly sync it to our servers by signing in and using the sync feature.

Local data is not accessible to us unless you choose to sync or export it.

We use the data we collect for the following purposes:

• Providing the core service: storing and displaying your mood entries, journal notes, medications, reminders, and insights
• Generating personalized prompts: using your recent mood context to create relevant journaling prompts (processed server-side, not sent to external AI for free-tier users)
• Calculating statistics and insights: computing mood averages, sleep correlations, streaks, and pattern analysis
• Managing your subscription: processing premium subscriptions through LemonSqueezy (web) and RevenueCat (mobile)
• Sending reminders: delivering push notifications and in-app reminders at times you configure
• Improving the product: analyzing aggregate, anonymized usage patterns to improve features
• Providing customer support: responding to your inquiries and troubleshooting issues

If you are in the European Economic Area (EEA), United Kingdom, or Switzerland, we process your personal data under the following legal bases:

• Contract performance: processing necessary to provide you with the Moodgrade service you signed up for
• Legitimate interest: analytics and product improvement using anonymized data, fraud prevention, and service security
• Consent: sending optional marketing communications and using cookies for analytics (you can withdraw consent at any time)

We use a limited number of third-party services. We do not sell your personal data to any third party.

• Plausible Analytics (plausible.io): privacy-focused web analytics on public pages. Plausible does not use cookies, does not collect personal data, and is fully GDPR compliant. No data is shared with advertisers.
• GlitchTip (self-hosted): error tracking for application crashes and bugs. Error reports may include technical context (browser, OS, error stack traces) but do not include your mood entries or journal content.
• OpenAI: used for AI-powered prompt generation for premium users. When you request an AI prompt, a brief summary of your mood context (emotion, mood score, and a short note excerpt) is sent to OpenAI. Your full journal entries are never sent. OpenAI does not use API data to train their models.
• RevenueCat: manages in-app subscriptions on iOS and Android. RevenueCat receives your anonymized app user ID and purchase data. See RevenueCat's privacy policy for details.
• Google AdMob: displays ads in the free tier of the mobile app. AdMob may collect device identifiers and ad interaction data. Premium users do not see ads. See Google's advertising privacy policy for details.
• LemonSqueezy: processes web-based premium subscriptions. LemonSqueezy receives your email and payment information during checkout. See LemonSqueezy's privacy policy for details.
• Google Sign-In and Apple Sign-In: used for authentication. We receive your email address and display name from the identity provider. We do not receive your password.

The Moodgrade website uses minimal cookies required for authentication and session management. We do not use advertising cookies or cross-site tracking cookies.

Plausible Analytics, our web analytics provider, does not use cookies at all. It measures aggregate page views without identifying individual visitors.

The mobile app does not use cookies. AdMob in the mobile app may use device advertising identifiers as permitted by your device settings.

We retain your account data and mood entries for as long as your account is active. You can delete individual entries at any time through the app.

When you delete your account, all associated data (mood entries, journal notes, medications, reminders, prompts, challenges, achievements, and streaks) is permanently deleted from our servers within 30 days. Local data on your device is cleared immediately when you confirm account deletion in the app.

Anonymized, aggregated analytics data that cannot be linked back to you may be retained indefinitely for product improvement.

Error tracking logs in GlitchTip are automatically purged after 90 days.

All data transmitted between your device and our servers is encrypted using HTTPS (TLS 1.2 or higher). Data at rest is stored on private infrastructure that we operate and control, hosted in European data centers.

Access to production databases is restricted to authenticated, authorized personnel only. We use connection pooling, role-based access, and audit trails to protect your data.

Authentication tokens are signed using RS256 (RSA with SHA-256) and verified via JWKS. Passwords are never stored in plaintext.

While we implement industry-standard security measures, no system is completely immune to risk. We encourage you to use a strong, unique password and keep your device secure.

Depending on your location, you have the following rights regarding your personal data:

• Right of access: you can view all your data in the app and export it as JSON or CSV at any time
• Right to rectification: you can edit any mood entry, journal note, or profile information directly in the app
• Right to erasure (right to be forgotten): you can delete individual entries or your entire account. Account deletion removes all server-side data permanently
• Right to data portability: you can export all your data in machine-readable formats (JSON, CSV) from the app or web dashboard
• Right to restrict processing: you can contact us to request that we limit how we process your data
• Right to object: you can object to processing based on legitimate interest by contacting us
• Right to withdraw consent: where processing is based on consent, you can withdraw it at any time without affecting prior processing

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

• Right to know: you can request details about the categories and specific pieces of personal information we have collected
• Right to delete: you can request deletion of your personal information
• Right to opt-out of sale: we do not sell your personal information to third parties
• Right to non-discrimination: we will not discriminate against you for exercising your privacy rights

Our servers are located in Europe (Hetzner data centers in Germany and Finland). If you access Moodgrade from outside Europe, your data will be transferred to and processed in Europe. We ensure appropriate safeguards are in place for any data transfers.

Moodgrade is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal data, please contact us at privacy@moodgrade.com and we will promptly delete that information.

Users between 13 and 16 years of age in the EEA require parental consent to use the service, in accordance with GDPR requirements.

• Sell or share your personal journal data with third parties for advertising or marketing purposes
• Train third-party AI models on your private entries
• Use your mood or health data for automated decision-making or profiling that produces legal effects
• Show ads inside the journal composer, reminder setup, or export flow
• Pretend Moodgrade replaces professional medical care or therapy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by updating the date at the top of this page and, where appropriate, sending a notification through the app.

We encourage you to review this policy periodically to stay informed about how we protect your data.

If you have questions about this Privacy Policy, want to exercise your data rights, or need to report a privacy concern, please contact us:

Email: privacy@moodgrade.com

For GDPR-related complaints, you also have the right to lodge a complaint with your local data protection authority.