OneLine

OneLine is a private journaling app. This policy explains what data we collect, how we use it, how optional AI and voice features work, and how you can delete your account and associated data.

1. Contact

For privacy, access, or deletion questions, contact oneline.developerteam@gmail.com.

2. Data we collect

Account and profile data

Email address, authentication method, and account identifiers.
Profile details, onboarding state, settings, and consent preferences.

Journal and related content

Journal entries, dates, moods, streaks, summaries, reflections, exports, and related metadata.
Optional photos, attachments, generated story covers, and feedback content you submit.
Coach conversations, support messages, and AI response reports you send from inside the app.

Audio and voice data

Audio clips or voice recordings that you actively submit for transcription, dictation, or voice features.

Analytics and diagnostics

App interaction events, feature usage, diagnostics, and error reports.
Persistent pseudonymous identifiers such as anonymous IDs and session IDs.
Technical request metadata such as user agent, referrer, campaign parameters, and IP-derived security or attribution signals.

Data transmitted between your device and our services is encrypted in transit with TLS.

3. Permissions

Internet: required for sign-in, sync, exports, AI requests, and loading the hosted app experience.
Microphone: used only when you start voice journaling, coach dictation, or another voice feature.
Notifications: used if you enable reminders or notifications.

We do not request location or contacts access in the current Android release.

4. How we use data

To create and manage your account.
To store and sync your journal, settings, streaks, and account state.
To provide optional AI, summary, reflection, and voice features that you choose to use.
To monitor reliability, investigate abuse, prevent fraud, and improve product quality.

5. Encryption and AI processing

OneLine encrypts journal content before it is stored. Automatic Vault uses a protected key service so authenticated devices can recover access; this means OneLine's controlled backend can technically request the key. If you enable Private Vault, the key is instead protected by your passphrase and recovery key, and OneLine cannot recover it for you.

Some optional features require content to be processed after you trigger them. If you ask OneLine to transcribe audio, generate a story, create a reflection, or use AI features that rely on your content, the specific text, audio, or context you choose to send may be processed by our providers to produce that result.

Automatic Vault can be recovered through your authenticated account. With Private Vault, losing both the passphrase and recovery key makes the encrypted journal unrecoverable.

6. Legal bases

Contract: to provide the journaling service you requested.
Consent: for optional AI, reminder, or voice flows that you actively enable or trigger.
Legitimate interests: for analytics, diagnostics, service integrity, and abuse prevention.

7. Service providers

Supabase

Authentication, database storage, and file storage.
Privacy policy: supabase.com/privacy

Groq

AI-generated text and some voice-related experiences.
Privacy policy: groq.com/privacy-policy

Google services, including Gemini

Some generation and transcription-related features when triggered by the user.
Privacy policy: policies.google.com/privacy

Vercel

Hosting for the web app and API routes.
Privacy policy: vercel.com/legal/privacy-policy

8. Retention and deletion

We keep account and app data while your account remains active.
You can request deletion from Settings -> Security -> Delete Account or through our account deletion page.
When deletion is requested, we aim to remove the account identity and associated app data from active systems as part of the deletion flow.
Limited backups, logs, or legally required records may persist for a short period before expiring, typically no longer than 30 days.

9. Your rights

Access, update, export, and delete your data.
Withdraw consent for optional features where controls are provided.
Contact us if you need help with privacy or deletion requests.

10. Children

OneLine is not intended for children under 16, and we do not knowingly collect personal data from children.

11. Updates

We may update this page from time to time. The date above changes when we make material updates.

Contact

Email: oneline.developerteam@gmail.com