Privacy Policy

Last updated: May 27, 2026

EmitDream ("we", "our", or "us") is a private memory and emotional transmission platform. We take your privacy seriously. This policy explains what data we collect, how we use it, and your rights.

What We Collect

Account data: email address and display name when you sign up.
Content you create: text entries, photos, videos, voice memos, and scheduled emissions you write or upload.
Connection data: the connections you form with other users (by mutual consent only).
Usage data: basic app usage for debugging purposes (no advertising profiles).
Security data: hashed IP addresses (not plaintext), retained for 90 days for fraud prevention and then automatically deleted.

What We Do Not Do

We do not sell your data to anyone, ever.
We do not show you ads.
We do not share your content with third parties except as required by law.
We do not use your memories for AI training.
We do not build advertising profiles.

How We Store Your Data

Your data is stored in Supabase (PostgreSQL) with row-level security — only you can access your own data. All data is encrypted in transit (TLS) and at rest. File uploads (photos, videos, voice memos) are stored in a private storage bucket accessible only via short-lived signed URLs.

Cookies & Local Storage

EmitDream uses:

Session cookies: a single authentication cookie set by Supabase to keep you signed in. This is strictly necessary for the app to function. It is not used for advertising or tracking.
Local storage: your preferences (theme, particle effects, layout) are stored locally in your browser so they persist between sessions. No personal data is stored there.
IndexedDB: a small set of emission replay IDs is stored locally so the app knows which emissions you have already seen. This data never leaves your device.

We do not use tracking cookies, third-party analytics cookies, or advertising cookies of any kind.

Retention & Deletion

You can delete your account at any time from Settings → Account → Delete Account. This permanently and irreversibly deletes all your entries, emissions, connections, and account data from our systems. Hashed security logs are purged automatically after 90 days via a scheduled database job.

Data Portability

You can export all your data at any time from Settings → Export. The export includes all your entries, emissions sent and received, and connection data in JSON format.

Your Rights

Depending on your location, you may have rights under GDPR, CCPA, or other applicable laws, including:

Access: request a copy of all data we hold about you (use Settings → Export).
Deletion: permanently delete your account and all associated data (use Settings → Account → Delete Account).
Correction: update your name or email from Settings at any time.
Portability: export your data in machine-readable format.
Opt-out of sale: we do not sell personal information. There is nothing to opt out of.

California Residents (CCPA)

If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA):

You have the right to know what personal information we collect and how it is used.
You have the right to delete your personal information. Use Settings → Account → Delete Account.
We do not sell or share personal information for cross-context behavioral advertising. There is no "Do Not Sell or Share My Personal Information" opt-out mechanism because we do not engage in these activities.
We do not discriminate against you for exercising your privacy rights.

Children

EmitDream is not directed at children under 13. We do not knowingly collect personal data from anyone under 13. If you believe a child under 13 has created an account, please contact us and we will delete it promptly.

Changes to This Policy

If we make material changes to this policy, we will update the date above and notify users via the app. Continued use of EmitDream after changes constitutes acceptance of the updated policy.

Contact

Questions about this policy? Email us at privacy@emitdream.com.