Privacy Policy
- Your journal entries are stored on your device. We cannot read them.
- When you use Go Deeper, your entry text is sent to a third-party AI service to generate questions. No names, no emails, no device IDs are included.
- The AI provider operates under Zero Data Retention — your content is not stored or used for training. Technical metadata (timestamps, token counts) may be retained.
- We use anonymous analytics to understand which features work. No journal content is ever included.
- We don't sell data. We don't run ads. We're an indie app.
Sotie Journal ("Sotie", "we", "our") is a personal journaling app built on a privacy-first philosophy. We collect as little data as possible and never sell or share your personal information.
1. Data You Create
Your journal entries, AI conversations, and saved reflection questions are stored locally on your deviceusing Apple's on-device database (SwiftData). We do not have a server-side copy of your entries and cannot access them. If you delete the app, your data is permanently removed from your device unless you have exported a backup.
2. AI Processing ("Go Deeper")
When you use the "Go Deeper" feature, the text of your current journal entry and conversation context is sent to a third-party AI service to generate reflective questions. Here is exactly what happens:
- What is sent: The text of your journal entry and the conversation so far. No personal identifiers (name, email, device ID, or Apple ID) are included in the request.
- How it is processed: Requests are routed through Zero Data Retention (ZDR) endpoints. The AI provider does not store or log your content and does not use it for model training.
- What the provider may retain: Technical metadata such as request timestamps, model used, and token counts may be retained by the routing and AI provider for operational purposes (billing, abuse prevention). This metadata does not include your journal content.
- Transient processing: Your content is processed in real-time to generate a response. We cannot guarantee that transient caching does not occur during processing, but no persistent copy is retained by the provider.
We work with reputable AI service providers and reserve the right to change providers at our discretion. You will be asked for explicit consent before your content is sent to an AI service for the first time.
3. Analytics
We use TelemetryDeck, a privacy-first analytics service, to understand aggregate app usage patterns (e.g., which features are popular, session counts, device types).
- No personally identifiable information is collected.
- No journal content is ever included in analytics events.
- User identifiers are hashed on-device before transmission — no raw IDs leave your device.
- TelemetryDeck is fully GDPR- and CCPA-compliant. Their privacy policy.
4. Support & Diagnostics
If you contact us through the in-app support form (Settings → Contact Us), the following information is included in your message:
- Your message text (written by you).
- Basic device information: device model, iOS version, and app version.
- Optional diagnostic logs: If you choose to include logs (via an opt-in toggle), the last 24 hours of app logs are attached. These logs contain technical events (e.g., feature usage, errors) and never include journal content.
This information is sent via your device's default email client or share sheet. We do not collect it automatically.
5. In-App Purchases
Subscription purchases are handled entirely by Apple through StoreKit. We do not process, store, or have access to your payment card or billing information.
6. Data We Do NOT Collect
- Names, email addresses, or account credentials (Sotie has no user accounts)
- Location or GPS data
- Photos, contacts, or calendar data
- Advertising identifiers or cross-app tracking data
- Health, fitness, or biometric data
- Your journal content on our servers (we have no server-side copy of your entries)
7. Data Export & Deletion
- Export: You can export all your data at any time from Settings → Export Data.
- Deletion: To delete all your data, simply delete the app from your device. All locally stored data is permanently removed.
- AI requests:Because AI requests use Zero Data Retention endpoints, there is no persistent copy of your content on the provider's side to delete. Technical metadata retained by the provider (see Section 2) is subject to the provider's own data retention policies.
8. Age Restriction
Sotie is intended for users aged 17 and older. We do not knowingly collect data from anyone under the age of 17. If you believe someone under this age has used the app in a way that raises privacy concerns, please contact us at support@sotie.app.
9. Third-Party Services
We use the following third-party services to operate the App:
| Service | Purpose | Data shared |
|---|---|---|
| AI provider (via OpenRouter) | Reflection question generation | Journal entry text + conversation context (no identifiers). ZDR endpoints. |
| TelemetryDeck | Anonymous usage analytics | Hashed user ID, anonymous usage events, device type. No content. |
| Apple (StoreKit) | Subscription billing | Handled exclusively by Apple. |
Each service operates under its own privacy policy. We are not responsible for the data practices of third-party providers.
10. Changes to This Policy
We may update this Privacy Policy from time to time. Any changes will be reflected by updating the "Effective date" at the top of this document. If we make material changes to how your data is processed (for example, changing AI providers or adding new data collection), we will notify you through an in-app notice. Your continued use of the app after changes constitutes your acceptance of the revised policy.
11. Contact
Questions about your privacy or this policy? Reach us at support@sotie.app.