Privacy Policy for Dayly

Effective Date: November 20, 2025

Thank you for using Dayly, your personal mood and journal tracking companion. This privacy policy explains how we handle your information when you use our app.

Dayly is developed and maintained by its founders based in Malaysia. Your privacy and the security of your personal journal are our top priorities.

Information We Collect

Account Information

When you create an account, we collect:

Google Sign-In: If you choose to sign in with Google, we receive your email address, display name, profile photo, and Google account ID
Anonymous Sign-In: If you choose anonymous login, we create an account with no personal identifying information

Journal Data

To provide the journaling service, we collect and store:

Journal entries and content you write
Mood selections
Entry subjects and categories
Dates and times of entries
Timestamps for when entries are created or modified

Technical Information

To ensure the app functions properly, we automatically collect:

Device screen dimensions (for proper display)
Authentication tokens (to keep you securely logged in)
Basic app performance data

Subscription Information

If you subscribe to our premium features, we collect:

Subscription status and validity period
Purchase history (processed securely by Google Play Store)
We do not store or have access to your credit card or payment details

How We Store Your Information

Your journal data is stored using a dual storage approach for optimal performance and reliability:

Local Storage

Your journal entries are stored directly on your device for quick access and offline functionality
Local data is stored in the app's secure storage area on your device
This allows you to access and create entries even without an internet connection

Cloud Storage

Your journal data is also stored securely using Google Cloud Firestore, a cloud database service. This means:

Your data is encrypted during transmission using industry-standard security protocols
Your data is encrypted when stored on Google's secure servers
Your data is accessible from any device when you sign in with your account
Firebase security rules ensure that only you can access your own journal entries
Data automatically syncs between your local device and the cloud when connected to the internet

How We Use Your Information

We use your information to:

Provide and maintain the journaling functionality
Authenticate your account and keep it secure
Sync your journal entries across your devices
Enable you to search through your entries
Organize your entries by date, mood, and category
Provide AI-powered insights and responses (only when you actively use these features)

We do not:

Sell your personal information
Display advertisements based on your data
Share your journal content with third parties
Use your entries to train our internal AI models or allow third-party AI providers to use your data for training their models
Use analytics or tracking services

Data Access and Sharing

Who Can Access Your Data

You: You have full access to view, edit, and delete your journal entries through the app.

Our Team: As with any cloud-based service, administrative access to the database exists for operational purposes such as technical support, troubleshooting, and system maintenance. We are committed to respecting your privacy and only accessing data when necessary for these purposes.

Google/Firebase: Your data is stored on Google Cloud Platform infrastructure. Google may access data as necessary to provide their services and comply with legal obligations, as described in the Google Privacy Policy and Firebase Terms.

We Do Not Share Your Data With:

Advertisers or marketing companies
Data brokers
Social media platforms
Analytics services
Any third parties for their own purposes

Legal Requirements

We may disclose your information if required by law, such as in response to a valid court order, subpoena, or other legal process.

Data Security

We take the security of your journal seriously:

Encryption: All data is encrypted in transit and at rest
Access Controls: Firebase security rules prevent unauthorized access
Authentication: You must be logged in to access your data
Secure Infrastructure: Data is stored on Google Cloud Platform's secure servers
Regular Updates: We keep the app and security measures up to date

While we implement strong security measures, no method of electronic storage is 100% secure. We cannot guarantee absolute security but are committed to protecting your data using industry-standard practices.

Your Rights and Choices

Access Your Data

All your journal entries are accessible within the app at any time.

Edit Your Data

You can modify any journal entry directly in the app.

Delete Your Data

Individual entries: Delete any journal entry through the app (removes from both local device and cloud)
All entries: Use the "Clear All Logs" feature in Settings (removes from both local device and cloud)
Account deletion: Contact us at kavenwong.xh@gmail.com to request complete account deletion from all systems

Export Your Data

If you would like a copy of your data, please contact us at kavenwong.xh@gmail.com and we'll help you export your information.

Choose Your Account Type

Google Sign-In: Your data syncs across devices and persists if you reinstall the app
Anonymous Sign-In: Your data is tied to your anonymous account; if you lose access to this account, your data cannot be recovered

Data Retention

Active accounts: We retain your data as long as your account is active, both locally on your device and in the cloud
Deleted data: When you delete entries or clear your data, it is removed from both local storage on your device and our cloud systems
Local data: If you uninstall the app, local data on your device is removed, but your cloud data remains accessible if you reinstall and sign in
Inactive accounts: Accounts that remain inactive for an extended period may be subject to deletion
Account closure: If you request account deletion, we will remove your data from both local and cloud storage within a reasonable timeframe

Third-Party Services

Firebase Services (Google)

We use Firebase for:

Authentication: Managing secure sign-ins
Cloud Firestore: Storing your journal data
Infrastructure: Hosting and data storage

Google Privacy Policy | Firebase Privacy Information

Google Sign-In

If you choose to sign in with Google, your use of Google Sign-In is subject to Google's privacy policy and terms of service.

We do not use any other third-party analytics, advertising, or tracking services.

OpenAI

We use OpenAI's API to provide AI-powered features, such as generating responses to your journal entries.

Data Processing: When you use an AI feature, the relevant journal content is sent securely to OpenAI for processing.
No Training: Data sent via the API is not used by OpenAI to train their models.
Retention: Data is retained by OpenAI only for a short period for abuse monitoring purposes and is then deleted.

OpenAI Privacy Policy

Children's Privacy

Dayly is not intended for use by children under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe we have inadvertently collected information from a child under 13, please contact us immediately at kavenwong.xh@gmail.com.

International Users

Your data may be stored and processed on servers located in various regions operated by Google Cloud Platform. Google ensures appropriate safeguards for international data transfers in compliance with applicable privacy laws.

By using Dayly, you consent to the transfer and processing of your data in accordance with this privacy policy.

Your Privacy Rights

Depending on your location, you may have additional rights under privacy laws such as GDPR (European Union), CCPA (California), or PDPA (Malaysia):

Right to Access: Request information about data we hold about you
Right to Correction: Request correction of inaccurate data
Right to Deletion: Request deletion of your data
Right to Data Portability: Receive your data in a portable format
Right to Object: Object to certain data processing activities
Right to Withdraw Consent: Withdraw consent at any time

To exercise any of these rights, contact us at kavenwong.xh@gmail.com.

Changes to This Privacy Policy

We may update this privacy policy from time to time to reflect changes in our practices or for legal, operational, or regulatory reasons.

When we make changes:

We will update the "Effective Date" at the top of this policy
For significant changes, we will notify you through the app or via email (if available)
Your continued use of Dayly after changes take effect constitutes acceptance of the updated policy

We encourage you to review this privacy policy periodically.

Future Features

We may introduce new features in the future, such as:

Automated data export functionality
Personal analytics and insights (processed on your device)
Optional AI-powered journaling features

If we add features that affect how we handle your data, we will update this privacy policy and notify you. Any optional features will require your explicit consent before activation.

Contact Us

If you have any questions, concerns, or requests about this privacy policy or how we handle your data, please contact us:

Email: kavenwong.xh@gmail.com
Developers: Independent Development Team, Malaysia

We will respond to your inquiry as promptly as possible.

Your Consent

By creating an account and using Dayly, you acknowledge that you have read, understood, and agree to this privacy policy.