Privacy Policy

Last updated: September 14, 2025

At Oh Hey Mind, your privacy is fundamental. We are committed to handling your personal data transparently, securely, and in a way that respects your emotional well-being. This Privacy Policy outlines how we collect, use, and protect your information when you use our emotional reflection application.

1. Introduction

This Privacy Policy applies to the Oh Hey Mind mobile application, website, and related services (collectively, the "Service"). By using the Service, you agree to the terms of this Policy.

If you do not agree with any part of this Policy, you should not use the Service.

2. Data We Collect

2.1 Information You Provide

  • Emotional entries and context: Data you voluntarily submit during check-ins (e.g., feelings, tags, notes).
  • Account data: Email address, display name, and app preferences.
  • Messages: Content shared with trusted connections (only with your explicit consent).
  • Gifted access requests: If you voluntarily choose to request gifted access, we may collect non-sensitive information about your circumstances (e.g., therapy status or financial hardship) to help us process the request. This data is never shared and is deleted once the request is resolved.

2.2 Automatically Collected Data

  • Usage data: Interactions with the app (e.g., features used, frequency, screen views).
  • Device information: Device model, OS version, and diagnostic data.
  • Crash logs: Anonymized technical error reports used to resolve app issues.

3. How We Use Your Data

We use your data to:

  • Enable core functionality (e.g., emotional check-ins and journaling).
  • Provide optional features like insights and activity suggestions.
  • Facilitate connection and sharing with trusted individuals (if enabled).
  • Improve our app experience and ensure performance and reliability.
  • Comply with applicable legal obligations.

We do not use your data for advertising outside of our app and do not sell your personal information to third parties.

4. Sharing and Disclosure

We only share your data:

  • With third-party processors essential for app infrastructure (see Section 9).
  • With trusted connections only if you explicitly choose to share.
  • When required by law, regulation, or legal process.

We will never share your emotional entries, notes, or sensitive data without your explicit consent.

5. Your Rights and Controls

You have the right to:

  • Access the data we hold about you.
  • Export your data in a readable format.
  • Correct or update inaccurate information.
  • Delete your account and all associated data.
  • Control sharing settings for any social or support features.

You can manage these rights directly in-app or by contacting us.

6. Data Security

We use industry-standard security practices to protect your data, including:

  • End-to-end encryption for emotional entries and message data.
  • Encryption of all data in transit and at rest.
  • Access controls and internal policies to limit employee access to data.
  • Regular audits and monitoring of our systems.

7. Trusted Connections

If you enable social or shared features:

  • Only emotional summaries are shared — never private notes or journal entries.
  • Connections are established only with your explicit consent.
  • You can revoke access or remove connections at any time.

8. Data Retention

  • Data is retained as long as your account remains active.
  • Upon deletion of your account, personal data will be fully deleted within 30 days.
  • Backup systems purge associated data within 90 days of deletion request.

9. Third-Party Services

We use carefully vetted service providers for:

  • Cloud infrastructure (e.g., encrypted data storage).
  • Crash and performance monitoring (anonymized technical data).
  • Customer support (only if you contact us).

All providers meet our standards for data protection and compliance (e.g., GDPR).

A list of subprocessors is available upon request.

10. Children's Privacy

Oh Hey Mind is not intended for use by children under the age of 13. We do not knowingly collect personal information from children. If we become aware that such data has been collected, we will delete it promptly.

11. International Users

If you are accessing the Service from outside the country in which our servers are located, please note that your data may be transferred to, stored, and processed in jurisdictions that may not provide the same level of data protection.

By using the Service, you consent to the transfer of your information to these jurisdictions.

12. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes:

  • We will notify you via email (if you have provided it).
  • We may post a notice within the app.
  • Continued use of the Service constitutes your acceptance of the updated policy.

13. Governing Law

This Privacy Policy is governed by the laws of the Federal Republic of Germany, without regard to conflict of laws principles.

14. Contact Us

If you have any questions or concerns about this Privacy Policy or your data, please visit our Contact page for support options.

We are committed to protecting your privacy and addressing concerns promptly and respectfully.