SEEN:app Privacy Policy

Version: 2.0

Effective Date: June 14, 2025

Last Updated: August 26, 2025

Our Commitment to Your Privacy

At SEEN:app, your reflections are sacred. Privacy and safety are not features β€” they are the foundation. This policy explains, in plain language, how we protect your data and why you can trust this space.

Quick Summary

  • πŸ”’ Local Only: Journal entries live only on your device, encrypted
  • 🚫 We Can't See Them: Neither SEEN nor OpenAI/Anthropic can access your content
  • ⏳ Ephemeral Processing: AI insights are generated in the moment and discarded
  • πŸ›‘οΈ Dual-Key Protection: Even the developer cannot access profile details without majority approval from trusted keyholders
  • πŸ›Ÿ Built-In Safety: Crisis detection is always on, fully anonymous, and ensures resources appear if distress is detected
  • πŸ“Š Anonymous Metrics Only: We count devices and usage patterns, never your content
  • 🀝 No Ads, No Tracking: We don't sell, profile, or monetize your data

Our Security Architecture

  • Frontend Website: seenjournal.app hosted on Fly.io
  • Mobile App: Installed from iOS/Android stores, runs locally
  • Proxy Server: seen.place on Fly.io, isolates AI processing and handles push notifications
  • Push Notifications: APNs (Apple) and FCM (Android) routing through our proxy server
  • Data Sanitization: All content is cleaned before reaching AI services
  • Dual-Authentication System: Four keyholders; 3-of-4 must agree to access any optional profile info
  • No Logging: Technical safeguards block user content from appearing in logs
  • SOC 2 Hosting: Fly.io provides enterprise-grade compliance

The Three Most Important Things

1. Are My Journal Entries Safe?

Yes. Your writing stays private.

  • Local Storage Only: Entries remain encrypted on your device
  • No Access: We cannot read or retrieve them
  • Your Control: Only you unlock entries via Face ID / Touch ID / PIN
  • No Tracking: We don't monitor when or how often you write

2. What About My Conversations with Fathom Kairos?

Your exchanges with Fathom Kairos are also secure.

  • Temporary Processing: Sent to OpenAI only for generating responses
  • Limited Context: Only the last 6 messages are kept during a live chat
  • Not Retained: OpenAI's API does not store or train on your data
  • No Records: We do not store your conversations on our servers

3. Anonymous Device ID & Basic Metrics

We have sworn an oath to protect your journal entries, conversations, and reflections. Those will never be read, stored on our servers, or tied to your identity. At the same time, we are building something meaningful, and we need simple ways to gauge whether SEEN is serving people well.

To do this, SEEN:app creates a random device ID the first time you open the app. This ID is not linked to you or your writing. We use it only to count things like how many installs and active devices existβ€”similar to counting the number of phone calls received or how many times someone knocks on a door.

You can reset this ID at any time by reinstalling the app.

Data We Collect

Stored on Your Device

  • Journal entries and reflections
  • AI insights and weekly stories
  • App preferences and session data
  • Optional profile info (name, pronouns, birthday)

Anonymous Metrics Only

  • Random device ID (not linked to you or your content)
  • Basic usage counts (app opens, feature usage)
  • Anonymous crash reports and performance data
  • Device type and OS version (for compatibility)
  • Push notification delivery tokens (for app notifications only)

We Do NOT Collect

  • Writing analytics
  • Location data
  • Contacts or other app data
  • Server-stored content
  • Behavioral tracking
  • Any personally identifiable information

Crisis Detection & Safety

SEEN:app includes an anonymous crisis detection system:

  • Powered by Anthropic Claude: Detects signs of distress
  • Anonymous by Design: No identifying info ever leaves your device
  • Support Resources: Shown only in-app, directly to you
  • Team Notification: SEEN:app team only receives an anonymous flag (no content)
  • Always Active: Crisis detection runs anonymously to ensure help is available when needed
  • No Retention: Anthropic does not store analyzed text

How We Use Information

On Device: Journaling, insights, weekly summaries, personalization

With AI Services:

  • OpenAI β†’ Generates insights and chat
  • Anthropic β†’ Crisis detection
  • Fly.io β†’ Secure hosting (no content access)
  • Apple/Google β†’ Push notification delivery (APNs/FCM) through our proxy server

Anonymous Analytics:

  • Count active devices and usage patterns
  • Monitor app performance and stability
  • Understand which features are most helpful

No Other Third Parties: No analytics, advertising, or social media integrations

Your Rights and Control

Complete Control

  • Delete Your Data: Uninstalling the app removes all your data
  • No Account Required: No sign-up means no data tied to your identity
  • Reset Device ID: Reinstall the app to generate a new anonymous ID
  • Network Required: AI features require internet connection for processing

Contact Us

If you have questions about this privacy policy or your data:

Email: ben@seen.place

Website: www.seen.place

Summary: Your journal entries are stored on your device with strong encryption. When you request AI insights, content is processed ephemerally - analyzed and immediately discarded, never permanently stored by AI services. Crisis detection operates with complete anonymity when needed. Our dual-authentication system ensures even the developer cannot unilaterally access user profile information. We collect only anonymous device metrics to improve the app, never your personal content. We can't read your content, and neither can anyone else.