← Back to sygn

Privacy Policy

Last updated: March 19, 2026

shchstudio ("we", "us", "our") operates the sygn mobile application ("App"). This Privacy Policy explains how we collect, use, and protect your information.

1. Information We Collect

Data you create: Moments, gratitude entries, intention pages, and other journal content you enter into the App. This data is stored locally on your device and, if you sign in, synced to our servers.

Account information: If you sign in with Google or Apple, we receive your name, email address, and a unique identifier. We do not receive or store your password.

Usage analytics: We use PostHog to collect anonymous usage data (screens viewed, features used, app events). This data does not include your journal content and is used solely to improve the App.

Photos: If you attach photos to moments, they are stored locally on your device and synced to Supabase Storage if you are signed in.

2. How We Use Your Data

• To provide and maintain the App's functionality.
• To sync your data across devices when you are signed in.
• To provide AI-powered goal analysis (your intention text is sent to Anthropic's Claude API for processing; it is not stored by Anthropic).
• To transcribe voice input (audio is sent to OpenAI's Whisper API via a secure edge function; audio is not stored after transcription).
• To improve the App based on anonymous usage patterns.
• To send local push notifications for reminders you set (never for marketing).

3. Data Storage & Security

Your data is stored locally using Apple's SwiftData framework and, when synced, in Supabase (hosted on AWS). All data in transit is encrypted via TLS. Supabase enforces Row Level Security (RLS), meaning only you can access your data.

4. Third-Party Services

• Supabase — Authentication and data sync. Privacy policy
• Anthropic (Claude API) — AI goal analysis. Privacy policy
• OpenAI (Whisper API) — Voice-to-text transcription. Privacy policy
• PostHog — Anonymous usage analytics. Privacy policy
• Apple — Sign-In, subscriptions, push notifications.
• Google — Sign-In via Supabase OAuth.

5. Data Retention

Your data is retained as long as you have an account. If you delete your account or request data deletion, we will remove your data from our servers within 30 days. Local data on your device is only removed when you delete the App.

6. Your Rights

You have the right to:

• Export your data at any time (Settings → Export Data).
• Delete your account and all associated data.
• Access all data we store about you.
• Opt out of analytics by disabling it in Settings.

7. Children's Privacy

The App is not intended for children under 13. We do not knowingly collect data from children under 13. If you believe a child has provided us data, please contact us and we will delete it.

8. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes through the App or by updating the "Last updated" date.

9. Contact

If you have questions about this Privacy Policy or wish to exercise your rights, contact us at support@sygnapp.com.