Privacy Policy
Your journal should be yours.
Effective 1 May 2026
1. The short version
- Your journal entries are encrypted on your device with AES-256-GCM before they ever reach our servers. We literally cannot read them.
- We never sell, rent, or trade your data. There are no advertisers.
- Mann is for adults 18 and older. We do not knowingly collect data from minors.
- You can delete every byte of your data at any time. Deletion is final and completes within 7 days.
- We comply with India's Digital Personal Data Protection (DPDP) Act 2023 and the Information Technology Act 2000.
2. Who we are
"Mann" (this site, the iOS and Android apps, and the underlying service) is operated by Mann Journal Pvt. Ltd. Contact: privacy@mannjournal.app. For DPDP-related questions, use the same email and put "DPDP request" in the subject line — we'll respond within 30 days.
3. What we collect
To make Mann work, we collect:
- Account info: email address, display name (optional), avatar emoji, language preference, and reminder time.
- Encrypted journal entries: we store ciphertext only. The decryption key never leaves your device.
- Mood logs and habit completions: 1–5 mood ratings, dates, optional notes (also encrypted).
- Subscription status: plan, period end date, and Razorpay transaction IDs (no card numbers — Razorpay handles those directly).
- Device info: device model, OS version, app version, FCM push tokens. Used for crash reporting and notifications.
- Usage analytics: aggregated, anonymized — which screens you visit, feature engagement, retention. Never linked to entry content.
4. What we cannot collect
The plaintext of your journal entries, mood notes, AI reflections, and chat messages. These are encrypted on-device with AES-256-GCM before any network request. The encryption key is derived from your password plus a device-only secret stored in your phone's secure enclave (iOS Keychain or Android Keystore). We have no way to recover or read this content. If you forget your password, your entries cannot be restored — that's by design.
5. How we use your data
- Run the app. Authenticate you, sync entries across devices, deliver push notifications, charge subscriptions.
- Generate AI reflections and weekly reports. Only the first 100 characters of an entry — generated as plaintext on your device before encryption — are ever sent to Google Gemini. Full entries never leave your device unencrypted.
- Improve the product. Aggregated usage metrics help us understand which features people use. No personal data is linked.
- Comply with the law. If we receive a valid Indian legal order, we can produce account metadata. We cannot produce decrypted entries because we don't have the keys.
6. Third-party services
We use the smallest set of third parties needed to run Mann. Each one receives only what's listed below.
| Service | Purpose | What they receive |
|---|---|---|
| Google Firebase | Auth, Firestore, Cloud Functions, Storage, FCM (asia-south1, Mumbai) | Email, encrypted entry ciphertext, FCM tokens |
| Google Gemini API | AI reflections, weekly insights, memory nudges | Only contentPreview (first 100 plaintext chars) — never full entries, never AI reflection ciphertext |
| Razorpay | Subscription payments (UPI, cards, net-banking) | Email, plan, payment metadata. Card numbers are tokenized by Razorpay; we never see them. |
| Firebase Crashlytics | Crash reports (mobile) | App version, device model, stack traces. No personal content. |
7. Data retention and deletion
We keep your data only as long as your account is active. When you tap Delete account in Settings (and confirm by typing DELETE), we run a cascading deletion across:
- Your user profile, encrypted entries, mood logs, chat sessions, habits
- Your weekly reports, notifications, cached AI nudges
- Your community posts and reactions
- Your Razorpay subscription
- Your Firebase Auth account
The deletion completes within 7 days, and we email you a confirmation when it does. Backups are purged within 30 days. Once it's done, it cannot be undone — the encryption keys are gone too.
8. Children — Mann is 18+
Mann is intended for users aged 18 and older. We display an age-gate during sign-up and ask you to confirm. We do not knowingly collect personal data from anyone under 18. If you believe a minor has created an account, write to privacy@mannjournal.app and we will delete the account within 7 days.
9. Your rights under DPDP Act 2023
As a Data Principal under the DPDP Act, you have the right to:
- Access the personal data we hold about you (account fields, metadata; entry ciphertext can be exported but not decrypted by us).
- Correct inaccurate data — most fields can be edited in the app directly.
- Erase all your data — see Section 7.
- Withdraw consent at any time. The lawful basis for processing is your consent given at sign-up.
- Grievance redressal — write to our Grievance Officer at grievance@mannjournal.app. If unsatisfied, you may escalate to the Data Protection Board of India.
10. Crisis resources (always free)
Mann is a journaling tool, not a medical service. If you need to talk to a human right now:
- iCall — 9152987821 · Mon–Sat, 8am–10pm
- Vandrevala Foundation — 1860-2662-345 · 24/7
- NIMHANS — 080-46110007 · 24/7 toll-free
11. Medical disclaimer
Mann does not provide medical advice, diagnosis, or treatment. AI reflections are reflective prompts, not clinical guidance. Nothing Mann says should substitute professional mental health care. Always consult a licensed therapist or psychiatrist for medical concerns.
12. Changes to this policy
If we make material changes, we'll notify you via email and an in-app banner at least 30 days before they take effect. Minor edits (clarifications, typos) are published silently — the "Effective" date at the top tells you the latest version.
Questions? Write to privacy@mannjournal.app. We answer.