Privacy Policy

Last updated: November 14, 2025

This Privacy Policy explains how Decision Buddy (“we”, “us”, “our”) collects and processes personal data when you use our mobile app and support site.

1. Controller

Manuel Strasser
Lexe 1, 86971 Peiting, Germany
Email: contact@decisionbuddy.com

2. What we collect and why

• Account data (email, authentication identifiers): to create and secure your account.
• Content you provide (e.g., decisions, reflections, notes): to deliver app features, including AI-powered insights.
• Transactional email data (recipient address, delivery metadata): to send confirmations, verification and password resets.
• Technical logs (timestamps, device/OS, IP truncated where feasible): for security, debugging and abuse prevention.
• Internal analytics (API key usage statistics only): to monitor system health and fair use. No third-party tracking scripts.

3. Legal bases (GDPR)

• Art. 6(1)(b) GDPR (contract): providing the app and its features.
• Art. 6(1)(f) GDPR (legitimate interests): security, fraud prevention, service improvement.
• Art. 6(1)(c) GDPR (legal obligation): where applicable (e.g., retention duties).
• Art. 6(1)(a) GDPR (consent): if we explicitly ask for it in specific cases.

4. Processors and recipients

We use vetted processors under data processing agreements:

• Supabase – database and authentication.
• ZeptoMail (Zoho) – transactional email delivery.
• OpenAI API – processes user-provided text to generate insights.

We may disclose data if required by law or to protect our rights and users.

5. International transfers

Where processors are outside the EU/EEA, we ensure appropriate safeguards (e.g., EU Standard Contractual Clauses) and minimize personal data shared.

6. Retention

We keep personal data only as long as necessary for the purposes above or as required by law. Backups and logs may persist for a limited time.

7. Your rights (EU/UK)

You may have the right to access, rectify, erase, restrict or object to processing, and data portability. You can also lodge a complaint with your local supervisory authority.

To exercise rights, contact: contact@decisionbuddy.com

8. AI processing

When you use AI features, the text you provide may be sent to the OpenAI API for processing. We strive to send the minimum necessary context to provide the feature. Outputs can be fallible; please review results critically.

9. Cookies and tracking

We do not use third-party marketing trackers. We may use strictly necessary cookies/session storage to operate authentication and security.

10. Security

We use industry-standard safeguards to protect data. No method of transmission or storage is 100% secure; we work continuously to improve protections.

11. Account deletion

We do not yet offer self-service deletion. To request deletion, email contact@decisionbuddy.com from your registered address. We will confirm and process your request unless legal obligations require a longer retention.

12. Changes to this policy

We may update this policy to reflect changes in our services or legal requirements. The latest version is always available on this page.