Legal
We built daycanva around a simple principle — your diary is yours alone.
Contents
This Privacy Policy explains what data daycanva collects when you use our service, how we use it, and what rights you have over it. We've written this in plain English, not legal jargon.
By using daycanva, you agree to the practices described here.
We do not collect location data, device fingerprints, behavioural tracking, or any data beyond what's listed above.
We do not use your data to train AI models. We do not serve ads. We do not sell your data to anyone, ever.
Your data is stored securely on Supabase — a trusted cloud database provider built on PostgreSQL and hosted on AWS infrastructure. All data is encrypted at rest and in transit using industry-standard TLS.
Your photos and videos are stored in a private storage bucket. They are never publicly accessible — each image requires a signed URL that expires after one hour.
Photos and videos you attach to diary entries are stored in a private, access-controlled storage bucket. They are:
If you choose to sign in with Google, we receive your name, email address, and profile picture from Google. We do not receive access to your Gmail, Google Drive, contacts, or any other Google data.
We use this information only to create and identify your daycanva account. We do not store your Google password.
You have the right to:
You can delete all your diary data at any time from within the app — go to the overflow menu ⋯ → Settings → Reset all data. This permanently deletes all entries, photos, notes, chapters and golden days.
To delete your account entirely including your email and profile, contact us at the address below and we will complete the deletion within 7 days.
If you have any questions about this policy or want to exercise your rights, please reach out via the app settings or through our website.