JournAI

Privacy Policy

Last Updated: May 14, 2025

1. Introduction

JournAI (“JournAI,” “we,” “us,” or “our”) respects your privacy. This Privacy Policy explains what information we collect during our closed beta program, how we use it, and the choices you have. By installing or using JournAI you agree to the practices described below.

2. Information We Collect & Why

Account Data

What: First & last name (required), Profile picture (optional).

Purpose: To create and personalize your account.

Permissions

What: Microphone access, Reminders access.

Purpose: To record voice entries and write action-items to your device's Reminders app.

Voice Content

What: Audio you choose to record.

Purpose: Transcription and analysis via external AI services (see Section 3).

Analytics & Diagnostics

What: Anonymous event data sent to Amplitude Analytics (device ID, platform, session info, coarse location derived from IP), Crash logs & performance metrics.

Purpose: Understand feature usage, improve stability, and guide product decisions during beta.

No cookies: JournAI is a native iOS app. We do not set or read cookies; Amplitude's iOS SDK uses a non‑resettable device identifier (IDFV) or a random UUID instead.

3. How We Use Your Data

Voice processing

Your recordings are sent to AWS Bedrock and DeepGram strictly to generate transcriptions and AI insights. AWS Bedrock contractually states that customer data is not used to train their models.

Analytics (Amplitude)

We send de‑identified events (no name or email) so we can measure feature adoption, session length, crash frequency, and onboarding completion. Amplitude generates its own device & Amplitude IDs to recognise return visits; we do not attach personal identifiers to these events.

App operation

Names and (optionally) profile pictures are stored only so you can see them inside the app.

4. Data Sharing & Disclosure

We share your data only in the following circumstances:

  • Service providers:
    • AWS Bedrock (AI inference)
    • DeepGram (speech-to-text)
    • Amplitude Analytics (usage metrics)

    Each receives only the data needed for its task.

  • No sales or advertising: We never sell, rent, or monetise your data, and we do not run third-party ads.
  • Legal: We may disclose data if required by law or to protect our rights.

5. Data Retention

Account data

Retention period: Kept until you delete your account, then erased within 30 days.

Voice recordings & transcriptions

Retention period: Same as above.

Analytics events (Amplitude)

Retention period: Retained by Amplitude for up to 14 months of inactivity, then purged automatically.

6. Security

All data in transit is protected with TLS. Production databases are encrypted at rest and restricted to least-privilege access. No method of transmission or storage is 100% secure, but we follow industry best practices.

7. Your Rights & Choices

  • Access / edit: Update your name or profile picture anytime in Settings.
  • Delete account: Settings → Delete Account permanently removes your data (see Section 5).
  • Permission controls: Revoke microphone or reminders access in iOS Settings.

8. Children's Privacy

JournAI is not intended for anyone under 13 years of age. We do not knowingly collect data from children under 13. If you believe a child has provided us data, contact us and we will delete it.

9. Changes to This Policy

If we make material changes, we will notify you via email or an in-app banner and update the “Last updated” date.

10. Contact

Questions, concerns, or requests?
journalingai@gmail.com