Privacy Policy

Your Data, Your Journey

Spirit Lodge is built on the principle that your consciousness exploration is deeply personal. We treat your data with the same reverence you bring to your practice. This policy explains what we collect, why, and how we protect it.

What We Collect

• Account information: Email address and display name, used for authentication and personalization.
• Journal entries: The text, titles, and metadata of your journal entries, including timestamps.
• Mood and analysis data: Sentiment scores, emotional dimensions, and AI-generated insights derived from your entries.
• Microdose logs: Substance type, dosage, protocol, and self-reported effects you choose to record.
• Location data: Latitude and longitude, only when you explicitly grant permission, used for weather context and astrological calculations.
• Usage data: Basic app interaction data such as streaks, XP, and quest completions.

How We Use Your Data

• AI-powered analysis: Your journal entries are processed by our AI system (powered by Anthropic's Claude) to generate mood analysis, emotional insights, and personalized reflections.
• Environmental context: Location data is used to fetch weather conditions (via OpenWeatherMap) and astrological data to enrich your journal context.
• Personal insights: We analyze patterns across your entries to surface correlations between mood, microdosing, weather, and cosmic events.
• Account management: Email is used for authentication, password resets, and essential account communications.

Data Storage and Security

Your data is stored in a PostgreSQL database with encryption at rest. All data transmission occurs over HTTPS/TLS. Passwords are hashed using bcrypt and are never stored in plaintext. We implement industry-standard security practices to protect your information.

Third-Party Services

• Anthropic (Claude AI): Journal entry text is sent to Anthropic's API for mood analysis. Anthropic does not retain your data for training purposes under our agreement.
• OpenWeatherMap: Your coordinates (when provided) are sent to retrieve local weather data. No personal information is shared.

We do not use any advertising networks, tracking pixels, or analytics services that harvest your data.

Data Retention and Deletion

Your data is retained as long as your account is active. You may delete your account at any time from your profile settings. Upon account deletion, all your data — journal entries, mood analyses, microdose logs, and personal information — is permanently and irreversibly removed from our systems within 30 days.

We Never Sell Your Data

Your journal entries, mood data, microdose logs, and personal information are never sold, rented, or shared with third parties for marketing or commercial purposes. Your inner world is not a commodity.

Your Rights (GDPR)

If you are located in the European Economic Area, you have the right to:

• Access: Request a copy of all personal data we hold about you.
• Rectification: Correct any inaccurate or incomplete personal data.
• Erasure: Request deletion of your personal data (“right to be forgotten”).
• Portability: Receive your data in a structured, machine-readable format.
• Restriction: Request that we limit how we process your data.
• Objection: Object to processing of your personal data.

To exercise any of these rights, contact us at the address below.

Your Rights (CCPA)

If you are a California resident, the California Consumer Privacy Act (CCPA) provides you with the following rights:

• Right to Know: You have the right to request disclosure of the categories and specific pieces of personal data we have collected about you, the sources of that data, our purposes for collecting it, and the categories of third parties with whom we share it.
• Right to Delete: You have the right to request deletion of your personal data. You can delete your account and all associated data directly from your profile settings, or by contacting us.
• Right to Opt Out of Sale: Spirit Lodge does not sell, rent, or trade your personal information to third parties. Because we do not sell personal data, there is no need to opt out.
• Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA rights. You will not receive different pricing, quality of service, or access levels for exercising your privacy rights.

To exercise your rights under the CCPA, you may contact us at privacy@entheo-eosin.vercel.app. We will verify your identity before processing any request and respond within 45 days as required by law.

Contact

For privacy-related inquiries, data requests, or concerns, reach us at:
privacy@entheo-eosin.vercel.app