privacy policy
what we collect, why, and what we do with it. no surprises.
last updated: december 25, 2025
1. introduction
Moodlog, LLC ("we") runs moodlog. this policy explains what data we collect and how we handle it. we tried to write it like a human.
2. information we collect
account information
when you create an account, we collect your email address, username, and password (stored encrypted).
journal content
your journal entries (text + emotion tags) are stored encrypted. this is the whole point of the app.
usage data
we collect information about how you interact with the service, including login times, feature usage, and session activity.
payment information
payment processing is handled by stripe. we do not store your credit card information. we retain transaction records and subscription status.
cookies and analytics
we use google analytics 4 to understand how users interact with our service. google analytics collects information such as:
- · pages you visit and features you use
- · how long you spend on each page
- · your approximate location (city/country level)
- · device and browser information
we have enabled ip anonymization, which means google analytics anonymizes your ip address before processing. google analytics uses cookies to track your interactions across sessions. you can opt out of google analytics by installing the google analytics opt-out browser add-on, or by adjusting your browser's cookie settings.
for more information on how google uses data, visit google's privacy policy.
3. how we use your information
- · to provide and maintain the service
- · to process your journal entries and generate insights
- · to communicate with you about your account
- · to improve and develop new features
- · to conduct research (only with explicit consent)
4. research data
if you participate in our research preview tier or opt into research data sharing, we may use anonymized, aggregated data for research purposes. you can control this setting in your privacy preferences. individual entries are never shared in identifiable form.
5. data sharing and disclosure
we do not sell your personal information. we may share data in these limited circumstances:
- · with service providers (stripe for payments, hosting providers)
- · when required by law or to protect rights and safety
- · in connection with a business transfer or acquisition
6. data security
your journal text is encrypted at rest. we use secure authentication, tls in transit, and regular security reviews. no system is 100% secure, but we take this seriously because it's mental health data.
7. your rights
you have the right to:
- · access your personal data
- · export your data (available via settings)
- · request deletion of your account and data
- · control research data sharing preferences
- · opt out of marketing communications
8. data retention
we retain your data as long as your account is active. when you delete your account, we will delete your personal data within 30 days, except where we are required to retain it for legal purposes.
9. machine learning
we use a fine-tuned roberta model to analyze your journal text and suggest emotion tags. this runs on our servers. your journal content is never sent to third-party ai services.
10. children's privacy
the service is not intended for users under 13 years of age. we do not knowingly collect information from children under 13.
11. changes to this policy
we may update this privacy policy from time to time. we will notify you of significant changes via email or through the service.
12. contact us
questions about any of this?