Privacy Policy
Transparency is part of how we care for you.
Version 1.0 · April 25, 2026
At Madelaide, privacy isn't a technical detail — it's a value. You share sensitive and personal things with us, and that demands responsibility. This policy explains, without fluff, what we collect, why, and what your rights are.
📋What do we collect?
When you create an account and use the app, we collect:
Data you give us: name or nickname, email, password (always encrypted), date of birth, gender (optional), profile photo (optional), relationship status, and reason for using — collected during onboarding to personalize your experience.
Data generated by use: messages exchanged with the AI, diary entries (title, text, mood, categories), tasks created, emotional patterns identified, and language and theme preferences.
Technical data: device type, operating system, error logs, and timestamps.
🚫 We do NOT collect: location, phone contacts, microphone, camera (except when you choose to add a profile photo), or external browsing history.
🎯Why do we collect it?
Every piece of data has a reason:
• Your name and email enable login and personalization
• Your messages power the AI conversation
• Your diary and tasks are stored so you can access them later
• Emotional patterns generate personalized insights and reports
• Technical data helps identify and fix errors
We never use your data for third-party advertising. We never sell your information.
🤝Who do we share with?
We share data only with essential partners for the app to function:
Supabase — database and authentication infrastructure. Your data is stored on secure servers. (supabase.com/privacy)
OpenAI — AI message processing. Conversations are transmitted securely via API. (openai.com/privacy)
Both partners have strict data protection policies.
🌎 These services operate in the USA. Data transfer occurs with the safeguards required by applicable law.
🔐How do we protect your data?
Security is not optional for us:
• All connections use TLS/HTTPS encryption
• Passwords are stored with secure hashing — never in plain text
• Data access is controlled by Row Level Security (RLS) policies
• AI API keys live only on servers — never on your device
• We continuously monitor for suspicious access
In the event of a security incident that may affect you, we will notify affected users within the legal timeframe.
⏳How long do we keep it?
We keep your data for as long as necessary:
• Active account: while you use the app
• AI conversations: up to 12 months, then anonymized
• After account deletion: personal data removed within 30 days
Some data may be kept longer when the law requires it.
✅Your rights
You can, at any time:
• Access your data — know what we have about you
• Correct incorrect or outdated information
• Delete unnecessary data
• Portability — receive your data in a structured format
• Revoke consent whenever you want
• Delete your account — available directly in Settings
To exercise your rights:
privacidade@madelaide.app
Response within 15 business days.
💔Emotional and sensitive data
What you share in the diary, in conversations, and in mood data is treated with maximum protection.
• Processed only with your explicit consent
• Accessible only by you
• Never shared with third parties for commercial purposes
• Used only to personalize your experience in the app
🔞Minors
Madelaide is exclusively for users aged 18 and older. If we identify that a minor is using the app, the account will be closed and data immediately deleted.
If you are aware of a minor using the app, please let us know:
privacidade@madelaide.app.