Privacy Policy

This Privacy Policy describes how the One mobile application ("App," "Service," or "One"), developed by tzavaras ("we," "us," "our," or "Developer"), collects, uses, stores, shares, and protects your personal information when you use the App.

We are committed to protecting your privacy and handling your data with transparency and care. One is a personal reflection and journaling app, and we understand that the content you create within it is deeply personal and sensitive. This Privacy Policy is designed to give you a clear understanding of how your data is handled at every stage.

By downloading, installing, or using the App, you consent to the data practices described in this Privacy Policy. If you do not agree with any part of this Privacy Policy, please do not use the App.

2.1 Information you provide directly

Reflection and journal content: Text entries you type during reflection sessions, responses to AI-generated follow-up questions, and complete conversation histories within individual reflection sessions.

Mood data: Mood scores recorded via the mood slider (numerical values on a scale from 0.0 to 1.0).

Session metadata: Date and time of each reflection, breathing, and focus session; session type and duration; timestamps for session creation and completion.

Authentication information: If you sign in with Apple: your Apple-provided user identifier, full name (if you choose to share it), and email address (which may be a private relay address). If you use anonymous access: a unique anonymous identifier generated by Firebase Authentication.

2.2 Information generated by the App

AI-generated insights: Emotional summaries, sentiment assessments, identified emotions and topics, action items and suggestions, monthly timeline insights, and calendar rhythm insights.

Sentiment and emotional scores: Numerical sentiment scores and mood categorisations generated by the AI model based on your reflection content.

Cache data: Cached AI-generated insights stored locally on your device, along with cache timestamps.

2.3 Information collected automatically

Firebase Authentication tokens: Temporary authentication credentials used to authenticate requests to backend services. Not used for tracking or profiling.

Device verification data: Apple App Attest attestation data (in production) used by Firebase App Check to verify that requests originate from genuine instances of the App. Used solely for security purposes.

2.4 Information we do NOT collect

• No analytics or usage tracking (analytics is disabled)
• No advertising data (advertising is disabled)
• No location data
• No camera or photo access
• No microphone access
• No contacts
• No health data
• No browsing history
• No cross-app tracking
• No device fingerprinting for tracking

3.1 Providing core App functionality

• Reflection text and conversation history — transmitted to Google's AI services to generate follow-up questions
• Recent reflection summaries (up to 5) — provided as context for more personalised insights
• Mood scores — included in AI analysis context
• Emotional topics from prior reflections — used to identify patterns and generate insights
• Session metadata — used to organise and display your reflections chronologically

3.2 AI-powered features

Your reflection content and associated data are transmitted to our backend service (hosted on Google Cloud Run in the europe-west1 region, Belgium, EU) which forwards it to Google's AI services for question generation, insight generation, timeline analysis, calendar rhythm analysis, and session generation.

3.3 Authentication and security

Firebase ID tokens authenticate your identity. Firebase App Check tokens verify request origins. Apple Sign-In credentials securely authenticate without us handling passwords. Anonymous user identifiers provide a unique session identity for users who choose not to sign in.

3.4 Local data storage and caching

Reflection data is saved locally for offline access. AI-generated insights are cached locally to improve performance. Notification preferences and app settings are stored locally on your device.

3.5 Push notifications

If you enable notifications, we use Firebase Cloud Messaging (FCM) to deliver reminder notifications at your chosen frequency and time. Preferences are stored locally on your device.

4.1 Local device storage

Your reflections are stored locally on your device in the App's sandboxed Documents directory as an encoded JSON file. This file is stored within the App's iOS sandbox (other apps cannot access it), protected by iOS file system encryption, and automatically saved to prevent data loss.

4.2 Cloud infrastructure

Our backend is hosted on Google Cloud Run. It receives your reflection data transiently for AI processing, forwards data to Google's AI services, returns responses, and does not persistently store your reflection content, conversation histories, or personal data on its servers.

4.3 Data retention periods

• Reflection entries — until you delete them or uninstall the App (stored locally)
• Cached AI insights — until cache is refreshed or App is uninstalled (stored locally)
• App settings/preferences — until you change them or uninstall the App (stored locally)
• Firebase authentication data — until you sign out or account is terminated
• Conversation data sent to Google AI services — transient, processed in real-time, not persistently stored
• FCM notification tokens — until you disable notifications or uninstall the App

4.4 Data deletion

You can delete individual reflections within the App. Uninstalling the App permanently deletes all locally stored data. Contact us to request deletion of Firebase authentication data.

5.1 Third-party service providers

Google AI Services: Reflection conversation histories, mood data, emotional topics, and recent reflection summaries are shared for AI-powered features. Requests are routed through our europe-west1 Cloud Run backend.

Google Firebase: Authentication tokens, device attestation data, and notification tokens are shared for authentication, device verification, and push notifications.

Apple: Apple Sign-In authentication data and in-app purchase transaction data (when applicable).

5.2 What we do NOT share

• We do not sell your personal data to any third party
• We do not share your data with advertisers or ad networks
• We do not share your data with data brokers
• We do not share your reflection content with other users (there are no social features)
• We do not share your data with analytics providers (analytics is disabled)

5.3 Legal disclosure

We may disclose your information if required by law, court order, or other legal process, or if we believe disclosure is necessary to comply with applicable law, protect our rights, property, or safety, or investigate potential violations of our Terms of Use.

5.4 Business transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred. We will notify you of any change in ownership or use of your personal information.

6.1 Security measures

• Authentication security: Firebase Authentication provides secure token-based authentication. Apple Sign-In uses industry-standard OAuth protocols. All API requests require valid Firebase ID and App Check tokens.
• Device verification: Firebase App Check with Apple App Attest prevents unauthorised access from scripts, bots, or modified app versions.
• Transport security: All network communications use HTTPS (TLS/SSL encryption).
• Local device security: Data is stored within the App's iOS sandbox. iOS Data Protection encrypts files when the device is locked. Optional biometric lock adds additional protection.
• Backend security: CORS restrictions, request validation, and Google Cloud Run infrastructure-level security.

6.2 Security limitations

No method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security. Local device security depends on your device's settings, and third-party service providers manage their own security independently.

6.3 Your security responsibilities

You are responsible for maintaining the security of your device, enabling biometric lock if desired, signing out if you share your device, and safeguarding any exported data.

• View your data: You can view all reflections, mood data, and insights within the App
• Export your data: Export reflections in JSON format for full portability
• Delete reflections: Delete specific entries or uninstall to remove all local data
• Notification preferences: Enable, disable, or customise notifications in the App's settings
• Authentication choices: Choose Apple Sign-In or anonymous access; use Apple's "Hide My Email" feature
• Biometric lock: Optionally enable Face ID or Touch ID for additional access protection

The App is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child under 13 has provided personal information, please contact us immediately and we will take steps to delete such information.

Users between 13 and 17 may use the App with parental or guardian consent and supervision. We comply with the Children's Online Privacy Protection Act (COPPA).

9.1 Processing locations

• AI processing requests — Google Cloud Run, europe-west1 region (Belgium, EU)
• Google AI processing — Google's global AI infrastructure
• Firebase Authentication and Cloud Messaging — Google's global infrastructure
• Local data storage — your device

9.2 Cross-border transfers

If you are located outside the regions where data is processed, your information may be transferred to countries with different data protection laws. By using the App, you consent to these transfers.

9.3 EU/EEA users

Your data is processed on our Cloud Run backend located in Belgium, EU. Data may also be processed by Google's global infrastructure for Firebase and Google AI services, conducted in accordance with applicable data protection frameworks.

10.1 Legal bases for processing

• Consent: You consent to data processing when you accept this Privacy Policy and use the App
• Contract performance: Processing is necessary to provide the App's services
• Legitimate interests: Processing for security purposes (App Check, authentication)

10.2 Your GDPR rights

• Right of access (Article 15)
• Right to rectification (Article 16)
• Right to erasure (Article 17)
• Right to restriction of processing (Article 18)
• Right to data portability (Article 20) — the App's JSON export fulfils this
• Right to object (Article 21)
• Right to withdraw consent at any time

To exercise any of these rights, contact us using the information in Section 14. We will respond within 30 days. You also have the right to lodge a complaint with your local data protection supervisory authority.

If you are a California resident, you have the following rights:

• Right to know: Request disclosure of the categories and specific pieces of personal information collected
• Right to delete: Request deletion of your personal information
• Right to opt-out of sale: We do not sell your personal information
• Right to non-discrimination: We will not discriminate against you for exercising your rights

To exercise your rights, contact us using the information in Section 14.

We recognise that reflection and journal content may contain sensitive personal information, including thoughts about mental health, emotional states, personal relationships, and life events.

Given the sensitive nature of this data:

• We do not use your reflection content for any purpose other than providing the App's AI features directly to you
• Your content is never shared with other users
• Analytics and advertising are explicitly disabled
• We do not profile you based on emotional content for marketing purposes
• AI-generated emotional assessments are stored only on your device

We may update this Privacy Policy from time to time. When we make changes, we will update the "Last Updated" date at the top of this document. For material changes, we will make reasonable efforts to notify you through the App. Your continued use of the App after changes are posted constitutes acceptance of the revised Privacy Policy.

If you have any questions, concerns, or requests regarding this Privacy Policy, your personal data, or your privacy rights, please contact us at:

Developer: Panagiotis Tzavaras
App: One — Reflection App
Email: one@tzavaras.ai

We will respond to privacy-related inquiries within 30 days.

The App relies on the following third-party infrastructure. Each provider has its own privacy policy and terms:

Google

Firebase

Apple

• Reflection storage: Text, mood, timestamps — locally on device — retained until deleted by user
• AI question generation: Conversation history — Google AI via Cloud Run — transient
• AI insight generation: Conversation, mood, emotions — Google AI via Cloud Run — cached locally
• Timeline analysis: Recent reflection summaries — Google AI via Cloud Run — cached locally
• Authentication: Apple ID / anonymous UID — Firebase Auth — retained until sign-out/deletion
• Device verification: App Attest attestation — Firebase App Check — session-based
• Push notifications: FCM token, preferences — Firebase Cloud Messaging — retained until disabled/uninstall
• Subscription management: Purchase receipt data — Apple StoreKit — per Apple's policies
• Settings storage: Preferences, toggles — locally on device — retained until changed/uninstall