Privacy Policy

1. Information We Collect

At Taro's Tarot, we collect minimal information to provide you with personalized tarot readings:

• Account Information: Email address and display name (for registered users)
• Reading Data: Your tarot reading history, notes, and preferences
• Questions & Prompts: The questions or intentions you provide (e.g., "What's on your mind") are collected anonymously for product improvement and understanding user needs. This data is stored separately from your personal information and cannot be linked back to your account.
• Usage Information: Anonymous analytics to improve our service
• Device Information: Browser type, device type for optimal experience

2. How We Use Your Information

We use your information to:

• Provide personalized tarot readings and interpretations
• Save your reading history for future reference
• Send account-related communications (if you opt-in)
• Improve our services and user experience
• Ensure security and prevent fraud
• Produce and publish aggregate, de-identified statistics derived from user submissions (e.g., trends in questions asked, common themes, popular cards) for editorial, research, and marketing purposes. These statistics never include personal identifiers and cannot be linked back to any individual.

3. Data Storage and Security

Your data is securely stored using industry-standard encryption. We use Firebase Authentication and Firestore with security rules to protect your information. Your reading history and personal notes are private and only accessible to you.

4. Data Sharing

We never sell, rent, or share your personal information with third parties, except:

• When required by law or legal process
• To protect our rights, privacy, safety, or property
• With your explicit consent
• Aggregate, de-identified data with editorial partners: We may share aggregate statistics and anonymized insights derived from user submissions (e.g., common questions, popular cards, themes, regional trends) with editorial partners, journalists, and researchers. This data is stripped of all personal identifiers before sharing and cannot be used to identify any individual user.
• Trusted sub-processors: We use third-party services to operate our platform, including AI providers (e.g., Anthropic) to generate personalized readings and reports, and payment processors (e.g., Stripe) to handle purchases. These providers process data only as needed to deliver the service and are bound by their own privacy and security obligations.

5. Cookies and Tracking

We use essential cookies to maintain your session and preferences. We also use analytics cookies to understand how our service is used. You can control cookie settings in your browser.

6. Your Rights

You have the right to:

• Access your personal data
• Correct inaccurate information
• Delete your account and associated data
• Export your reading history
• Opt-out of marketing communications

7. Children's Privacy

Our services are not intended for children under 13. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

8. Changes to This Policy

We may update this privacy policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the effective date.

9. When You Use Our iOS App

In addition to the disclosures above, the following applies when you use the Taro's Tarot iOS app:

• Sign in with Apple: When you sign in with Apple, we receive only the identifiers needed to authenticate your account (a stable user identifier and, optionally, your name and email if you choose to share them). We never receive your Apple ID password.
• HealthKit (optional):If you grant permission, the app logs each completed reading as a mindfulness minute in Apple Health. This data is written to your device's HealthKit store and never leaves your device. We do not transmit, read, or store any HealthKit data on our servers.
• Local data storage:Readings, journal reflections, and preferences are stored locally on your device using Apple's SwiftData framework. This data is also made available to the home-screen widget through an App Group container. Local data is encrypted at rest by iOS.
• Sync (when signed in): When you sign in with Apple, your reading history is synced to your account so you can access it across devices and the web. Local journal reflections remain on-device only.
• Push notifications (optional):If you grant permission, we send local notifications for daily card reminders, moon phase events, and gentle re-engagement prompts. You can configure which notifications you receive in the app's Settings, or disable them entirely from iOS Settings. We do not send marketing notifications.
• AI-generated readings: Reading interpretations are generated by an AI service operated by us using third-party AI infrastructure. The question, intention, and card draws you provide are sent to that service for synthesis and are not retained beyond the time it takes to generate your reading. This is disclosed clearly in-app and on the App Store listing per Apple guideline 4.2.3.

10. Contact Us

If you have questions about this privacy policy or our data practices, please contact us at:

Email: contact@tarostarot.com
Website: https://tarostarot.com