Privacy Policy

Inner Sphere Lucid Code Labs Last Updated: March 16, 2026 Effective Date: March 16, 2026

1. Introduction

Welcome to Inner Sphere ("App", "we", "us", or "our"), operated by Lucid Code Labs. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application.

By using Inner Sphere, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree, please do not use the App.

2. Information We Collect

2.1 Account Information

When you create an account, we collect:

  • Email address (required for registration and account recovery)
  • Password (hashed and stored securely; we never store plaintext passwords)
  • Username (publicly visible to other users)
  • Display name (publicly visible to other users)

If you sign in using Apple Sign In or Google Sign In, we receive your name and email address as provided by those services. Apple's "Hide My Email" relay is supported.

2.2 Profile Information

You may optionally provide:

  • Profile photo (uploaded and stored on our servers)
  • Bio (text description)
  • Location (city, region, or country — entered manually, not collected via GPS)
  • Interests (selected from predefined categories such as spiritual, wellness, community, and personal growth)

2.3 Wellness and Health-Related Data

Inner Sphere is a wellness application. When you use our features, we collect the following sensitive wellness data:

Meditation:

  • Session duration, technique used, and completion status
  • Post-session reflection scores across emotional and physical dimensions
  • Written meditation insights and journal entries

Breathwork:

  • Breathing technique selected (e.g., Box Breathing, Wim Hof, 4-7-8)
  • Session duration and cycles completed

Fasting:

  • Fast type (Intermittent, Water, Dry, Juice), start/end times, and duration
  • Completion percentage and metabolic stages reached
  • Free-text journal notes associated with fasting sessions

Body Tracking:

  • Weight entries (kg or lb)
  • Custom body measurements (e.g., waist, chest, arms)
  • Target weight and starting weight

Mood Tracking:

  • Emotional dimension scores across multiple bipolar scales
  • Optional notes and context tags
  • Quick mood snapshots

Gratitude:

  • Daily gratitude journal entries including prompts and responses

2.4 Voice Recordings

When you use voice notes during meditation or speech-to-text features during the question game:

  • Voice note audio files are stored locally on your device only and are never uploaded to our servers.
  • Speech-to-text transcription is processed by your device's operating system speech recognition service (Apple or Google), which may transmit audio data to Apple or Google servers per their respective privacy policies.

2.5 Social and Communication Data

  • Friend relationships (sent, received, accepted, or blocked friend requests)
  • Direct messages (text messages, GIF attachments, emoji reactions, and read receipts)
  • Social feed posts (meditation insights, completed fasts, mood check-ins, gratitude entries, and milestones that you choose to share)
  • Feed reactions (likes, love, inspire, and support reactions on posts)
  • Activity presence (your current activity status, such as meditating or online, visible to friends when you enable this feature)

Important: Direct messages are stored on our servers and cached locally on your device. Messages are not end-to-end encrypted. We can access message content for moderation, legal compliance, and service operation purposes.

2.6 Game Data

  • Question categories played, questions answered, and session statistics
  • Transcribed spoken answers (processed via on-device speech recognition)
  • AI-generated follow-up questions (your answers may be sent to our AI service provider — see Section 4)

2.7 Subscription and Billing Data

  • Subscription status and tier (free or premium)
  • Trial status and dates
  • Purchase transaction identifiers (processed by Apple App Store or Google Play Store)

We do not directly collect or store your payment card information. All payment processing is handled by Apple or Google through their respective app stores.

2.8 Device and Technical Data

  • Device model and operating system version
  • App version and build number
  • Push notification token (for delivering notifications)
  • Bug reports you submit (including device information and description text)

2.9 Usage and Analytics Data

We collect anonymized usage data through our analytics service to improve the App, including:

  • Screen views and navigation patterns
  • Feature usage events (e.g., sessions started, features accessed)
  • Subscription-related events (e.g., paywall views)

2.10 Onboarding Preferences

During initial setup, we collect your:

  • Wellness goals and intentions
  • Experience level with mindfulness practices
  • Feature interests and daily practice preferences
  • Weekly commitment targets

3. How We Use Your Information

We use the information we collect to:

  • Provide and maintain the App's features and services
  • Create and manage your account
  • Personalize your experience (themes, reminders, and content)
  • Enable social features including friends, messaging, activity sharing, and the social feed
  • Track your wellness progress across meditation, fasting, breathwork, mood, and gratitude
  • Generate AI-powered insights for meditation sessions and game interactions
  • Send push notifications for reminders, messages, friend requests, and milestones
  • Process subscriptions and manage premium feature access
  • Analyze usage patterns to improve the App (via anonymized analytics)
  • Respond to bug reports and provide customer support
  • Enforce our Terms of Service and community guidelines
  • Comply with legal obligations

4. Third-Party Services

We use the following third-party services that may receive your data:

ServicePurposeData Shared
SupabaseBackend database, authentication, real-time features, file storageAccount data, wellness data, social data, uploaded photos
Google Gemini AIAI-generated follow-up questions and meditation insightsQuestion text and your transcribed answers
RevenueCatSubscription and in-app purchase managementUser ID, purchase and subscription events
Apple App Store / Google Play StorePayment processing for subscriptionsStandard purchase information per platform
PostHogProduct analyticsUser ID, screen views, anonymized usage events
KlipyGIF search for chatSearch query text only (no user identity)
Google Places APILocation autocomplete for profileText you type when searching for a city
Expo Push Notification ServicePush notification deliveryPush token and notification content
Firebase Cloud MessagingAndroid push notification infrastructureDevice token
Apple / Google Speech RecognitionOn-device speech-to-textAudio may be processed per Apple/Google privacy policies

Each third-party service operates under its own privacy policy. We encourage you to review their policies.

5. Data Storage and Security

5.1 Server-Side Storage

Your data is stored on servers operated by Supabase. All data is transmitted over HTTPS (encrypted in transit). Database-level security policies ensure users can only access their own data, with limited exceptions for social features (e.g., friends can see your public profile information, shared posts, and messages).

5.2 On-Device Storage

Certain data is stored locally on your device for offline functionality:

  • Cached chat messages (retained for up to 90 days locally)
  • Voice note audio recordings (stored locally only, never uploaded)
  • Meditation presets and timer settings
  • Fasting timer state for active fasts
  • Pending operations queued for sync when offline

5.3 Security Measures

We implement reasonable technical and organizational measures to protect your data, including:

  • Password hashing (never stored in plaintext)
  • HTTPS encryption for all data in transit
  • Row-level security policies on our database
  • Server-side enforcement of data access permissions

However, no method of electronic storage or transmission is 100% secure. We cannot guarantee absolute security.

6. Data Sharing and Disclosure

We do not sell your personal information to third parties.

We may share your information in the following circumstances:

  • With other users: Your public profile (username, display name, avatar, bio), posts you share to the feed, messages you send, and activity presence (when enabled) are visible to your friends.
  • With service providers: As described in Section 4, to operate and improve the App.
  • For legal compliance: If required by law, regulation, legal process, or governmental request.
  • To protect rights: To enforce our Terms of Service, protect our rights, privacy, safety, or property, and that of our users or the public.
  • Business transfers: In connection with a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.

7. Your Rights and Choices

7.1 Account and Profile

  • You can edit or remove your profile information (display name, bio, location, interests, and profile photo) at any time within the App.
  • You can control which activities are shared with friends via activity sharing settings.

7.2 Social Features

  • You can block users to prevent them from contacting you or seeing your content.
  • You can delete your own social feed posts.
  • You can choose whether to share meditation insights, mood check-ins, gratitude entries, and fasting completions to the social feed.

7.3 Notifications

  • You can manage push notification preferences within the App's settings, including toggling notifications for messages, friend requests, meditation reminders, mood check-ins, and gratitude reminders.
  • You can disable push notifications entirely via your device settings.

7.4 Data Access and Deletion

  • To request a copy of your personal data or to request deletion of your account and associated data, please contact us at the email address listed in Section 13.
  • Upon receiving a verified deletion request, we will delete your personal data from our active systems within 30 days, except where retention is required by law.

7.5 Analytics Opt-Out

  • Analytics data collection can be managed through the App's configuration. Contact us if you wish to opt out of analytics tracking.

8. Data Retention

  • Account data: Retained for as long as your account is active. Upon account deletion, data is removed from active systems within 30 days.
  • Wellness data (meditation, fasting, breathwork, mood, gratitude, body tracking): Retained for as long as your account is active.
  • Messages: Retained on our servers for as long as the conversation exists. Local message cache is automatically pruned after 90 days.
  • Voice notes: Stored only on your device. Deleted when you remove them or uninstall the App.
  • Analytics data: Retained in anonymized/aggregated form and may persist after account deletion.
  • Subscription records: Retained as required for financial and legal compliance.

9. Children's Privacy

Inner Sphere is not intended for children under the age of 13 (or the applicable age of digital consent in your jurisdiction). We do not knowingly collect personal information from children under 13. If we become aware that a child under 13 has provided us with personal information, we will take steps to delete such information. If you believe a child under 13 has provided us with personal data, please contact us immediately.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that differ from your jurisdiction. By using the App, you consent to the transfer of your information to such countries.

11. California Residents (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

  • Right to Know: You may request disclosure of the categories and specific pieces of personal information we have collected about you.
  • Right to Delete: You may request deletion of your personal information, subject to certain exceptions.
  • Right to Non-Discrimination: We will not discriminate against you for exercising your CCPA rights.
  • No Sale of Personal Information: We do not sell personal information as defined by the CCPA.

To exercise these rights, contact us using the information in Section 13.

12. European Residents (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, the following applies:

  • Legal Basis for Processing: We process your data based on: (a) your consent, (b) performance of a contract (providing the App's services), (c) our legitimate interests (improving the App, ensuring security), and (d) legal obligations.
  • Your Rights: You have the right to access, rectify, erase, restrict processing, data portability, and object to processing of your personal data. You also have the right to withdraw consent at any time.
  • Sensitive Data: Wellness and health-related data (mood, fasting, body measurements) is processed based on your explicit consent, which you provide by voluntarily entering this data into the App.
  • Complaints: You have the right to lodge a complaint with your local data protection authority.

To exercise your rights, contact us using the information in Section 13.

13. Contact Us

If you have questions about this Privacy Policy, wish to exercise your data rights, or have concerns about your privacy, please contact us at:

Lucid Code Labs Email: [INSERT CONTACT EMAIL]

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy within the App and updating the "Last Updated" date above. Your continued use of the App after changes are posted constitutes your acceptance of the updated Privacy Policy.

This Privacy Policy applies to the Inner Sphere mobile application available on the Apple App Store and Google Play Store.