1. Who we are
Sanctuary is a private journaling application operated as a sole proprietor side project based in Malaysia. Contact:
support@getsanctuary.app2. What we collect
On-device data: Your journal entries, mood logs, and settings are stored locally on your device by default and are never accessed by us. All users can use the app fully without creating an account.
Cloud sync (Premium): Premium users can optionally sync data across devices via an email address. Data is stored in Supabase (AWS ap-southeast-1, Singapore).
Companion: Messages you send to the companion are processed by Anthropic (US) to generate responses. Your journal entries are not sent unless you paste them yourself.
Feedback: If you submit in-app feedback, we collect your message and optionally your user ID, used solely to improve the app.
3. Legal basis (GDPR / PDPA)
We process your data under: (a) performance of a contract; (b) legitimate interests (improving the app via aggregated analytics); (c) consent (where applicable).
4. Your rights
You have the right to access, correct, or delete your personal data. Within the app: Settings → Privacy & Security → Delete All Data. For account deletion or data export requests, email
support@getsanctuary.app. We respond within 30 days.
5. Data retention
Local data stays on your device until you delete it. Cloud data is deleted within 30 days of account deletion. Server logs are retained up to 90 days.
6. Third-party services
- Supabase (cloud database — AWS ap-southeast-1, Singapore)
- Anthropic (AI companion — messages processed in the US)
- Google AdMob (banner ads — free tier only)
- Google Play / RevenueCat (billing — when subscriptions launch)
7. Anonymous analytics
We optionally collect anonymous usage events (e.g. "journal entry created"). These contain no journal content and no personal information — only a random device ID never linked to your account. Analytics are off by default. Opt in/out in Settings → Privacy & Security → "Help Improve Sanctuary".
8. Children
Sanctuary is not directed at children under 13. We do not knowingly collect data from children under 13.
9. Changes
Material changes will be notified in-app and by email (cloud account holders) at least 14 days before taking effect. Continued use after changes constitutes acceptance.