Writn
Privacy Policy
Privacy Policy
Effective Date: October 20, 2025
Last Updated: October 20, 2025
Thank you for using Writn. This Privacy Policy explains how Writn LLC (“Writn,” “Company,” “we,” “us,” or “our”) collects, uses, and discloses information about you when you use our mobile application (the “App”) and related services (collectively, the “Services”). It also describes your rights and choices regarding your information. This Privacy Policy is incorporated into our Terms of Use, and by downloading or using the App you agree to the data practices described in this Privacy Policy. If you do not agree with our practices, please do not use the App.
Please read this Privacy Policy carefully to understand what data we collect and how we handle it. If you have any questions or concerns about this Privacy Policy or our data practices, contact us at support@writnapp.com.
1. Information We Collect
We collect information about you in various ways when you use our App:
1.1 Personal Information You Provide to Us: You may provide certain personal information to us when using the Services, including:
Account Information: When you create an account, we collect information such as your name, email address, and password. If you sign up using a third-party login (e.g. Sign in with Apple or Google), we receive information from those services (for example, your name and email as authorized by you). We do not receive your third-party account passwords or payment information from Apple/Google.
Journal Entries & User Content: Our App is a journaling tool that lets you record voice notes and generate text. If you choose to record audio or input text, we will collect and store those voice recordings and their transcribed text. This content may include personal information or sensitive data if you choose to include it in your journal (for example, you might speak about your feelings, health, or other personal matters). You own and control the content you create – we do not use your private journal entries for any purpose except to provide the Services (as described in this Policy).
Photos or Files: If in the future the App allows you to attach images or files to entries (or if you grant the App permission to access your device’s storage, camera, or microphone), we will only collect those files or data you specifically choose to upload for use in the App.
Payment and Order Information: While standard in-app subscription purchases are handled by Apple or Google (see Section 4.1 below), if you choose to purchase additional products through our Services (for example, ordering a printed book of your journal entries), you may provide shipping information such as your name and physical address, and possibly payment details. If these purchases are facilitated via an in-app purchase or an external payment processor, the information will be collected either by the platform (Apple/Google) or by our designated payment provider (e.g. Stripe). We will collect and store the details necessary to fulfill your order (such as the print file of your journal, order number, and shipping address), but we do not store your full payment card numbers as those are handled securely by Apple, Google, or our payment processor.
Customer Support and Other Communications: If you contact us for support or communicate with us by email or through any feedback forms, we will collect the information you choose to give us (such as your contact information and the content of your communications). This may include your email address, the nature of your question or issue, and any attachments or screenshots you send. We use this information to respond to you and improve our Services.
1.2 Information Collected Automatically: When you use our App, certain information is collected automatically about your device and usage of the App. This includes:
Device and Usage Data: We collect data about the mobile device and app version you use to access the Services. This may include your device model, operating system and version, unique device identifiers, and general device settings. We also log information about your use of the App, such as the date and time you launched the app, features or screens you access, and other usage statistics. This data helps us troubleshoot issues and understand how users interact with Writn.
IP Address and Network Information: When you connect to our Services, we may record your device’s IP address and approximate location (e.g. city or country). We do not use precise GPS location, but an IP address can provide a rough geographical region. We may also collect network and connection info like Wi-Fi or carrier name, and error logs if the app crashes or encounters errors (for diagnostic purposes).
Cookies and Similar Technologies: While the Writn Service is primarily a mobile app, we may use cookies or similar tracking technologies on our website or within the app experience (for instance, for keeping you logged in on our web portal, if applicable). These cookies may collect information like browser type, pages visited, and preferences. We do not use cookies for third-party advertising or share cookie data for marketing purposes. You can configure your browser to refuse cookies or alert you when cookies are being used. (Note: If you only use the mobile app, cookies have minimal to no usage except as needed for any embedded web content or our informational website.)
1.3 Information from Third Parties: We may receive information about you from third-party sources that you choose to use in connection with the App, such as:
Social or Single Sign-On Services: If you register or log in via Apple, Google, or another account, those services will send us certain information (like your name and email address, as noted above in Account Information). We only receive data that you authorize those platforms to share with us. This information is used to create or log in to your Writn account. Linking your Writn account with these services is optional.
Subscription and Purchase Data: We use third-party services (such as RevenueCat) to manage and verify subscription purchases made through Apple’s App Store or Google Play. RevenueCat may receive basic identifiers (like an internal user ID or device ID and purchase receipts) in order to confirm your subscription status across devices. This helps us unlock premium features on your account after you subscribe. RevenueCat does not receive your personal journal data; it only handles purchase validation information. Similarly, if we use Stripe or another payment processor for any direct purchases (like a book order via our website), we may receive confirmation of your payment and basic purchaser info from them (e.g., that payment was successful, last four digits of card for reference, etc.). We treat this information in accordance with this Privacy Policy.
Analytics Providers: Currently, Writn does not use any extensive third-party analytics or advertising tracking services within the app. If we later implement analytics tools (for example, to understand user engagement or improve features), we will update this Privacy Policy accordingly. Any analytics service would only receive anonymized or minimal data needed to perform their tasks, and we would not use analytics to collect personally identifiable information without your knowledge or consent.
Public Feedback: If you leave a review or comment about the App on an app store or social media and we are able to view it, we may collect that information to address your feedback or improve our Services. However, we do not combine that with your in-app account data; it remains separate unless you specifically identify yourself to us through support channels.
1.4 Categories of Personal Data (Summary for Specific Laws): The personal information we have collected in the past 12 months generally falls into the following categories (as defined by laws like the California Consumer Privacy Act or similar regulations):
Identifiers: e.g., real name, email address, account username/ID, and device identifiers.
Customer Account Details: e.g., contact information (email), and for physical product orders, shipping address.
Protected Class Information: We do not request or require any protected characteristics (such as race, gender, date of birth) for use of our App. If you voluntarily mention such information in a journal entry, it stays private to you and is not used by us in any discriminatory way.
Commercial Information: Records of products or services purchased or considered, such as your subscription status (e.g., whether you are a free or Premium subscriber and the dates of your subscriptions) and any physical journal book orders you have placed.
Internet/Electronic Activity: e.g., usage data, device information, IP address, and interaction logs with our App or website.
Audio, Video or Similar Data: Audio recordings of your voice notes that you create in the App. These recordings are used to transcribe your journal entries and are stored for your access. (We do not make video recordings in the App, nor do we access your device’s camera unless a feature specifically requires it and you grant permission.)
Geolocation Data: Not actively collected (we do not ask for GPS location), but IP addresses may indicate a general location (country/region). We do not store precise location data about you.
Inference Data: We do not profile our users for marketing. The App’s AI features may analyze your journal content to provide you with insights (for example, summarizing your mood or recurring themes in your entries), but these inferences are only used within the App for your benefit. We do not create marketing profiles or sell inference data about you.
We collect all of the above categories of information from you (the user) directly or through your interactions with the App, and from service providers as described. We do not obtain personal data about you from data brokers or unrelated third parties.
2. How We Use Your Information
We use the information we collect for various purposes in operating our App and providing the Services to you. Specifically, we may use your information for the following purposes:
2.1 To Provide and Personalize the Service: We use your personal information to create and maintain your account, to authenticate you when you log in, and to enable you to record and save journal entries. For example, we use your voice recording to generate a text transcription and to craft a written journal entry for you. The content you input (audio or text) is processed by our AI systems to produce personalized outputs (like summaries or writing suggestions) that are then shown only to you. We also use your information to provide any features you request – such as generating a PDF of your journal or facilitating a book print order.
2.2 To Process Transactions: If you subscribe to Writn Premium or make purchases through the App, we use your information to process these transactions. This includes validating your app store subscription (via receipts and our subscription management service) and enabling Premium features for you. If you order a physical product (like a printed book), we use your provided information (such as your address and payment confirmation) to fulfill and ship your order. Payment information is handled securely as described in Section 4.1, and we use your contact details to send you order confirmations and status updates.
2.3 To Communicate with You: We may use your email address or in-app notifications to send you service-related communications. These include confirmations of account actions (like email verification or password reset), subscription or billing receipts, and important updates about the App (for example, changes to this Privacy Policy or Terms, security alerts, or support responses). If you are a subscriber or have opted in, we might also send occasional product news, feature updates, tips for journaling, or promotional offers. You can opt out of promotional emails at any time by clicking the unsubscribe link in those emails or contacting support. (Note: even if you opt out of marketing messages, we will still send essential transactional or account communications.)
2.4 To Improve and Develop the Services: We continually work to enhance Writn. We use usage data, feedback, and aggregate, de-identified information (including how users interact with the App) to understand trends, troubleshoot issues, and improve the functionality and user experience. For instance, we might analyze which features are most used or where users encounter errors, so we can optimize those parts of the App. We may also use some of your data in an aggregated or anonymized form to train or fine-tune our internal algorithms that help with transcription or text generation, but not in a way that would identify you or disclose your personal journal content to others. (For clarity: your individual journal entries are not used to train the general AI model that powers the service—OpenAI does not use your API data to improve its models by default, and we do not allow them to start doing so. See Section 4.1 below on AI processing.)
2.5 To Ensure Security and Prevent Misuse: We use information (including automated systems) to monitor for suspicious or fraudulent activity and to enforce our Terms of Use. For example, we may use IP addresses and other signals to detect potential misuse of the App (such as spamming the voice transcription service, or attempts to breach our systems). If we have reason to believe your account is being used in violation of the Terms or law (for instance, engaging in harassing or illegal behavior via the App), we may analyze the relevant data to confirm this and take action (such as warning, suspending or terminating your access). We also may use your data to debug and repair errors or technical problems.
2.6 To Comply with Legal Obligations: In certain cases, we may need to use your information to comply with applicable laws or regulations, or to respond to lawful requests or orders (for example, to fulfill tax and accounting requirements for purchases, or to respond to a court order to disclose content). We also use your data to exercise or defend our legal rights, and cooperate with law enforcement as needed (such as investigating fraud or threats).
2.7 With Your Consent or at Your Direction: If we ever want to use your information for a purpose that is not covered by the categories above, we will ask for your consent. For instance, if in the future we introduce a feature where you can share parts of your journal with other users or publicly, we will only use and disclose your content in that context with your permission and at your direction. Similarly, if we ever wanted to feature any user’s journal excerpt in marketing, we would only do so with explicit, written consent from that user (and we have no plan to do this with private entries – this is just a hypothetical example).
Legal Bases for Processing (for Users in the EU/UK): If you are in a jurisdiction that requires a lawful basis for processing personal data, our legal bases include: (a) Contract – we process data to provide the Service you asked for (fulfilling our Terms of Use contract with you); (b) Legitimate Interests – for uses necessary to our business, like improving the service, ensuring security, and communicating with you about updates (we consider and balance any potential impact on your rights); (c) Legal Obligation – when we need to comply with laws; and (d) Consent – where applicable, for example if you opt in to marketing emails or certain optional features (you have the right to withdraw consent at any time).
3. How We Share or Disclose Information
We understand that your personal information and journal content are sensitive, and we treat them with care. We do not sell your personal data to third parties. We only share information in the following circumstances:
3.1 Service Providers and Partners: We use trusted third-party companies to help us operate and improve Writn. These service providers perform services on our behalf and need access to certain data to do their work, but they are contractually obligated to protect your information and only use it for the purposes we specify. Key categories of service providers we use (and what data they handle) include:
Cloud Hosting and Storage: We use Supabase (a secure cloud database and authentication service) to host our databases and store user data (including your account info and journal entries). Supabase stores data on encrypted servers and provides user authentication and access control (so that only you can access your entries). We also use Railway as our application hosting platform – our server code runs on Railway’s infrastructure. This means that your requests to our service and the processing of your data (e.g., generating a PDF of your journal) occur on servers hosted by Railway. These providers may process your data (store, transmit, or temporarily cache it) as needed for us to provide the Service to you. They do not have any independent right to use your data beyond what is necessary to run Writn’s backend securely.
AI Processing (Third-Party AI Providers): A core feature of Writn is transforming your voice notes into written journal entries and providing AI-enhanced writing. To accomplish this, we integrate with third-party artificial intelligence APIs, notably OpenAI. When you use the voice transcription feature, the audio recording of your voice is sent securely to OpenAI’s Whisper API, which returns a text transcription. Similarly, when the app refines or expands your journal text, it may send the text (and context necessary for a good result) to OpenAI’s GPT API, which returns the generated suggestions or narrative. These AI APIs are used solely to process your inputs and produce the outputs you see in the app. OpenAI’s systems will receive the content of your audio or text query in order to provide this functionality, but they do not use your data to train their public models by default, and they have policies in place to delete API data after a short retention period (approximately 30 days) for abuse monitoring. We have ensured via OpenAI’s terms that your data and content remain confidential and are not used for their own purposes. In plain terms: if you record a private thought, OpenAI’s machine will convert it to text for us, but OpenAI isn’t keeping that thought to train AI or publishing it anywhere. We require this processing to deliver the voice-to-text and AI writing features of Writn. The processing is automated; neither OpenAI nor Writn employees are reading or listening to your entries during this workflow (unless there's an exceptional reason like a manual investigation for misuse as per our Terms). By using these AI features, you consent to your content being shared with these AI service providers for the purpose of providing the functionality. We may switch or add additional AI providers in the future to improve our services (for example, using a different transcription service), but we will ensure any such providers are held to high standards of privacy and security similar to OpenAI, and we will update this Policy if we make a significant change.
Payment Processors: For in-app subscriptions on iOS and Android, payments are processed by Apple or Google respectively, through your App Store or Google Play account. Writn itself does not collect or see your credit card number or billing information for these purchases; that information is handled by Apple or Google. We receive from Apple/Google only basic details like confirmation that you purchased a subscription, the type of subscription, and its expiration date. We also use RevenueCat as an intermediary service that works with Apple’s and Google’s systems to verify purchase receipts and manage subscription status. RevenueCat will process data such as the purchase receipt, an app-specific user identifier, and subscription status. This allows you to unlock Premium features across your devices and allows us to enforce subscription access. RevenueCat does not receive your personal journal content or your credit card info. In cases where you make a purchase outside the app (for example, a physical book through a web link), we may use Stripe or a similar payment processor. If you provide payment details (like credit card) through such a processor, that information goes directly to them; we do not store your full payment details on our servers. We will receive your name, contact info, and confirmation of payment from Stripe to fulfill the order. These payment providers are PCI-DSS compliant and have their own privacy and security assurances.
Printing and Shipping Partner: If you request a printed journal book (an optional feature), we partner with Lulu (a print-on-demand service) to fulfill that order. This means we will send the necessary data to Lulu, which includes the PDF of your journal content that you chose to print, along with your name and shipping address, and any specific instructions for printing. This data transfer is done over secure (encrypted) channels. Lulu will use this information only to print your book and deliver it to you. They may share your shipping address with the shipping carrier (e.g., UPS/USPS or other) to deliver the product. Lulu does not use your journal content for any other purpose and will not retain your data longer than necessary to complete the printing and delivery (per their policies). We do not share any more of your personal information with the printing service than is needed – typically just what goes on the book and the mailing label. Payment for the book printing is handled either via the app stores or our payment processor as described above.
Authentication Providers: As noted, if you choose to sign in via Apple or Google, we interface with those services. In doing so, those providers will confirm your identity to us and share your basic profile info (name/email). Apple’s “Hide My Email” feature may provide an anonymized email; if so, we use that for your account. These authentication processes are secured by the providers. We recommend you review Apple’s Privacy Policy or Google’s Privacy Policy to understand how they handle your credentials and data; but in general, they do not share any information with us beyond what is necessary to create/login to your account. We do not share your Writn account credentials with them either (except the token necessary for sign-in).
Other Vendors: In the course of operating Writn, we may also use other types of service providers such as email service providers (for sending support or verification emails), analytics or error-tracking services (to help us fix bugs), or marketing tools (to manage mailing lists, if you’ve subscribed). For example, if we use an email sending service to distribute newsletters or updates, that service will have access to your email address and the content of the message we send you. We will ensure any such vendor is bound by confidentiality and security obligations. We will update this Privacy Policy or our website to keep an up-to-date list of key subprocessors if required.
3.2 Internally within Writn: Within our company, your personal data is accessible only to those who need it to perform their job duties (on a “need-to-know” basis). For example, if you reach out for support, a support engineer may access your account info and relevant data to assist you. Our team is small and we do not routinely access users’ private journal entries. In fact, we respect your privacy and generally will not review your content except in specific cases: if you request a specific data recovery or troubleshooting that requires developer intervention, or if we have strong reason to believe a Terms of Use violation has occurred that requires investigation (such as reports of abusive or illegal content). In any such case, only authorized personnel would access the minimum amount of content necessary, and all staff are bound by strict confidentiality. We never share your personal content with other users or the public, unless you explicitly direct us to (for instance, if you ask us to share a testimonial).
3.3 Business Transfers: If Writn (the company) is involved in a merger, acquisition, sale of assets, or reorganization (we hope to grow, but in any such future scenario), your information may be transferred to the successor entity or acquiring party as part of the transaction. If that happens, we will ensure that the new owner honors the commitments we’ve made in this Privacy Policy regarding your personal data. We would also notify you (for example, via email or a prominent notice in the App) of any such change in ownership or control of your personal information, and outline any choices you may have at that time.
3.4 Legal Compliance and Protection: We may disclose your information if required to do so by law, or if we have a good-faith belief that such action is necessary to (a) comply with a legal obligation (for example, a subpoena, court order, or government demand); (b) protect and defend the rights, property, or safety of Writn, our users, or others; (c) investigate or assist in preventing any violation of law or our Terms of Use, including potential fraud or security issues. We will attempt to let you know if we are compelled to provide access to your data (for instance, via a notice to your email) unless legally prohibited or the request is an emergency.
3.5 With Your Consent: Apart from the cases above, if we ever need to share your information for any other purpose, we will describe it to you at the time and obtain your consent. For example, if we introduce a feature to integrate your journal with another app or service (like saving entries to your personal cloud storage), we would do so only with your authorization and would clearly explain what information would be shared or transferred.
3.6 De-Identified or Aggregated Data: We may share information that has been aggregated (combined with other users’ data) or de-identified (stripped of personal identifiers) in a way that it can no longer be linked to you. For example, we might publish aggregated statistics about overall user behavior (like “X% of Writn users journal at least once a week”) or trends, or share anonymized usage data with a research partner or in marketing materials. Such information does not identify you and is not considered personal data.
4. Third-Party Services and Links
The Services may contain links to other websites or integrate third-party services that we do not own or control. For example, our website might link to our social media pages, or in the future the App might allow sharing an entry via another app on your device. Also, as described, we rely on partners like Apple, Google, OpenAI, Stripe, etc. This Privacy Policy applies only to Writn’s own collection and handling of your data. We are not responsible for the privacy practices of third parties that are not operating as our service providers.
For instance, if you click a link to an external site (like an article in our blog, or a social media page), any data you provide to those sites is governed by their policies, not ours. Similarly, if you use third-party voice dictation outside our app or back up data to a third-party cloud (outside our provided features), those actions are outside our Service. We encourage you to review the privacy policies of any third-party websites or services you visit or use.
Notably, if you use Apple App Store or Google Play Store, those platforms collect certain information (like device information, app usage, crash reports, and purchase history) under their own terms. And if you use Sign in with Apple/Google, those logins are covered by Apple/Google’s privacy terms as well. We reiterate that we only receive limited info from them as described in this Policy.
We aim to limit the amount of personal data shared with third parties and only work with reputable companies that have strong privacy and security track records. If you have questions about whether a particular third-party service is used or about our integrations, feel free to contact us.
5. International Data Transfers
Writn is based in the United States, and our Services are primarily operated from the U.S. If you are located outside of the United States, please be aware that information we collect (including personal data) will be transferred to and processed in the United States and possibly other countries. These countries may have data protection laws that are different from those of your country of residence, and in some cases may not be deemed “adequate” by certain regulators (for example, the EU).
However, we take steps to ensure that your personal information receives an adequate level of protection wherever it is processed. We have implemented appropriate safeguards for international transfers, such as entering into Standard Contractual Clauses (SCCs) where applicable with our service providers, and by relying on service providers certified under relevant data protection frameworks or otherwise legally permitted to transfer data. For example, OpenAI, Supabase, and other U.S.-based vendors we use commit to protecting personal data in line with GDPR requirements (OpenAI, for instance, has stated it does not use API data for its own purposes and has a short retention). When we transfer data to our printing partner or others, we ensure the transfer is lawful and secure (e.g., using encryption and contractual protections).
By using the App or providing information to us, you consent to the transfer of your personal data to the United States and other jurisdictions as described in this Policy. If you do not want your data transferred to the U.S. or other countries, please do not use the Services. For individuals in the European Economic Area (EEA), United Kingdom, or other regions with specific transfer requirements, you have the right to request details of the transfer mechanism we rely on (you can contact us at the address in Section 12).
6. Data Security
We are committed to protecting your personal information. We employ a combination of administrative, technical, and physical security measures designed to safeguard your data against unauthorized access or loss. Here are some key security practices we implement:
Encryption in Transit and At Rest: All communications between your app and our servers (and between our servers and third-party services like OpenAI and Stripe) are encrypted using TLS (HTTPS). This means that data (including your audio recordings, journal text, and any personal details) is protected from eavesdropping while it travels over the internet. Additionally, the data stored in our databases (e.g., your journal entries and account info in Supabase) is encrypted at rest using strong encryption (AES-256 or equivalent). This protects your data on our servers from unauthorized access, even if the underlying storage were compromised.
Access Controls and Authentication: Access to user data in our database is restricted on a per-user basis by design. We utilize Row-Level Security (RLS) in our database, meaning each journal entry is tagged to your user account, and our system ensures that when you query your data, you can only retrieve entries associated with your account. No other user can access your entries, and you cannot access others’ entries. Every API request requires a valid authentication token tied to your account. If you log out or your token expires, you must log in again to get a new one. Internally, only a few authorized personnel (engineers or administrators with a legitimate need) can access the database directly, and even then any access to production data is logged and monitored. We also employ secure authentication flows (e.g., password hashing, support for optional multi-factor authentication if enabled) to prevent unauthorized logins. Important: It is also your responsibility to keep your login credentials confidential. Do not share your password or login codes with others. If you believe your account has been compromised, contact us immediately.
Secure Infrastructure: Our application and database run on modern cloud platforms that follow industry best practices for security. As noted, our backend is hosted on Railway, which provides isolated, containerized environments for running our app code. Railway and Supabase both maintain robust security programs and are certified (e.g., SOC 2 compliance) to ensure their infrastructure is secure. We keep our servers and dependencies updated with security patches and continuously monitor for vulnerabilities or suspicious activities. All sensitive secrets (like API keys for our third-party services) are stored securely and encrypted in our environment, not exposed in code or logs.
Third-Party Security: We choose third-party providers that have strong security measures. For instance, OpenAI’s systems undergo security audits and use encryption; Supabase provides daily backups and secure authentication; Stripe is a certified PCI Service Provider (for payment security); and Lulu uses secure protocols to handle print files and order info. We review their documentation and commitments to ensure they meet our standards. Where appropriate, we have data processing agreements in place with these vendors to protect your data.
Anonymization & Limited Retention for AI: As discussed, OpenAI does not store your API-submitted data long-term. They retain it briefly (for abuse monitoring) and then delete it. They also do not link it back to your identity. This reduces risk that your raw content remains on their servers indefinitely. Within our own system, if we ever store AI-generated insights or analysis related to your entries, that data is treated with the same care as your entries themselves and stored under your account.
No Unnecessary Data: We aim to collect the minimum data we need to provide the service (see Section 1). By limiting what we store, we reduce the potential impact of any security issue. For example, we do not collect things like your social security number, or personal photos (unless you choose to store a photo in a future feature). We also do not store plain-text passwords – those are hashed (converted to a secure representation) such that even we cannot read them.
User Controls: You have the ability to export (to PDF) or delete your data (entries) and account at any time (see Section 8 on Your Rights). If you delete something, it’s removed from our production database promptly, which means it’s no longer accessible through the App. We believe giving you control helps ensure your privacy – nothing remains longer than you want it to.
Monitoring and Testing: We monitor our systems for potential vulnerabilities and attacks. We may conduct periodic security testing and code reviews. If we discover any security issue, we will act quickly to fix it. We also have protocols for incident response, including notifying users and authorities as required by law in the event of certain data breaches.
While we strive to protect your information, no security measure is 100% perfect. The Internet by its nature cannot be guaranteed to be completely secure. We therefore cannot warrant or guarantee the absolute security of any information you transmit to us or store in the App. You use the Service at your own risk and you should take steps to keep your own data safe (such as choosing a strong password, keeping your devices secure, and logging out after use on shared devices). In the unlikely event of a security breach that affects your personal information, we will notify you and the appropriate authorities as required by applicable law.
7. Data Retention and Deletion
We will retain your personal information for as long as necessary to fulfill the purposes we collected it for, including providing the Services and as outlined in this Privacy Policy. In general:
Account Data: We keep your account information (like your name, email, and credentials) for as long as your account is active. If you choose to delete your account or if your account is terminated, we will initiate deletion of this information from our live databases. We may retain certain elements of account data for a short period after deletion in backup systems or as needed for legal compliance (see below), but these are retained securely and eventually erased or anonymized.
Journal Entries and User Content: All your journal entries and associated content remain in our storage until you delete them or delete your account. You can delete individual entries at any time within the App. If you delete an entry, it will no longer be accessible in the app and is removed from our active database. It is possible that remnants could remain in transient server logs or encrypted backups for a limited time, but these will be purged in the normal backup rotation cycle. If you delete your entire account, all journal content associated with your account will be queued for deletion from our systems, and we will not retain those entries beyond the time needed to ensure they are removed from all storage, except any copies retained for legal reasons (see below).
Voice Recordings: Voice recordings you make are used to generate text and then stored so that you can play them back (if the App provides that feature). If you delete a journal entry, the associated audio (if any) will also be deleted. If we do not explicitly expose audio playback in the app, we may delete the raw audio after transcription, or keep it only as long as needed for quality assurance and so you could re-transcribe if needed. We will clarify this in the app interface, but generally we aim not to keep large audio files longer than necessary to serve you.
Transactional Records: If you have made purchases or subscriptions, we may retain records of those transactions (e.g., receipts, invoices, shipping records) for the period required by tax and accounting laws. This can be up to several years depending on local regulations (for example, in the US, financial records may be kept for at least 7 years). However, this information is kept separate from your journal content and limited to what’s needed for financial/legal purposes.
Legal Compliance and Protection: We might retain certain information if necessary to comply with legal obligations (such as maintaining records of consents, or data needed for dispute resolution or to enforce our agreements). For example, if we deactivate an account for misuse, we might keep a record of that to prevent the user from re-registering in violation of our Terms. Likewise, if you’ve contacted support, we may retain correspondence for a time to ensure we have a history of communications.
When we have no ongoing legitimate business need to process your personal information, we will either delete it or anonymize it (so it can no longer be associated with you). If deletion (or anonymization) is not immediately feasible (for example, because your data is stored in a backup archive that is not easily accessible), we will securely store your data and isolate it from further active use until deletion is possible.
Important: Deleting the mobile app from your device does not automatically delete your account or data from our servers. If you wish to delete your account entirely, you should use the account deletion option within the App (if available in settings) or contact us at support@writnapp.com with your request. We may ask for some verification to ensure the request is legitimate, then proceed to remove your data. Once your account is deleted, you will no longer be able to log in and any journal entries or personal data will be removed from the app’s view. Note that content you may have shared with others (if that feature exists in the future) or exported will not be erased from those external locations if you delete your account; we cannot pull back data you’ve transmitted to outside services or persons.
8. Your Rights and Choices
You have certain rights and choices regarding your personal information. We strive to provide you with access to your data and ways to update or delete it. These rights may vary depending on your location and applicable law, but we address them generally below:
8.1 Access and Correction: You can access and update much of your account information directly in the App. For instance, you can view your profile details and correct your name or email if needed. Your journal entries are accessible to you anytime when logged in. If any personal information we have about you is inaccurate or outdated, please update it via the App or contact us for assistance. In some jurisdictions, you have the right to request a copy of the personal data we hold about you. We will provide this, subject to verification of your identity, as required by law. We may not be able to provide data that includes another individual’s info or certain sensitive information for legal reasons, but we will explain any such limitations in our response.
8.2 Deletion of Data: As noted in Section 7, you have the ability to delete your content and account. If you request deletion of your account, we will remove your personal data (except for data we are permitted or required to retain). You may also request that we delete specific information (for example, if you emailed support and want that correspondence erased after resolution). We will honor deletion requests in accordance with applicable law. Do note that deleting your account is irreversible – we will not be able to recover your journal entries once the deletion process is completed. If you simply want to stop using the service temporarily, you may log out or uninstall the app without deleting your data.
8.3 Withdraw Consent: In cases where we process your information based on your consent (such as for receiving marketing communications or using certain optional features), you have the right to withdraw your consent at any time. For example, you can unsubscribe from promotional emails by following the instructions in those messages or by contacting us. If we ever ask for consent to use your data in a new way, you can always decline. Withdrawing consent will not affect the lawfulness of any processing we already performed based on consent given before it was withdrawn.
8.4 Opt-Out of Analytics/Tracking: As of now, Writn does not use third-party advertising trackers. If we use basic analytics (like to count app installations or track conversion from our website), these are generally anonymous or aggregated. If you have any specific concerns about tracking, let us know. On our website, we will honor cookie preferences to the extent applicable (for example, if we implement a cookie consent banner, you can choose to disable analytics cookies). Our App does not currently respond to “Do Not Track” signals in the HTTP header, because we do not track users across third-party sites and there is no universal standard for DNT. However, we treat all users’ data with the same high level of respect and we do not provide your data to third-party ad networks.
8.5 Portability: You may have the right (in certain jurisdictions, like the EU) to request a copy of your data in a structured, commonly used, machine-readable format, so you can transfer it to another service. For Writn, the most straightforward way to export your data is to use the PDF export feature to compile your journal entries, or to manually copy entries. If you need a different format or a complete export of all data (including metadata), you can contact us and we will do our best to accommodate, by providing, for example, a JSON or CSV file of your entries and account data.
8.6 Objecting to Processing: In some regions, you can object to our processing of your personal information, particularly if we are processing it based on legitimate interests. You can also object to use of your data for direct marketing. As noted, we do not sell data or use it for third-party marketing. If you have an objection to any specific processing (for example, you don’t want your data to be included in anonymized aggregation for analytic improvement), let us know and we will evaluate your request. Critical service-related processing (like transcribing your entries) is necessary to provide the App, so if you object to that, the result may be that we cannot provide the service without that processing.
8.7 California Privacy Rights: If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA), subject to certain exceptions. These include the right to know what personal information we have collected about you in the past 12 months, the categories of sources of that information, the business purpose for collecting it, and the categories of third parties with whom we shared it. We have provided much of this information in this Privacy Policy. You also have the right to request that we delete your personal information (with some exceptions, such as if we need to keep it for legal reasons), and the right to opt-out of the “sale” or “sharing” of personal information. Important: Writn does not sell your personal information to third parties for money, and we do not share your information for cross-context behavioral advertising. Therefore, the opt-out right is not applicable as we do not engage in those practices. California residents can also request information about any third parties to whom their personal info was disclosed for direct marketing purposes in the preceding year (under the “Shine the Light” law). Writn does not disclose personal info to third parties for their own direct marketing, so in general there is nothing to report there. If you are a California resident and have questions or requests about your rights, you can contact us at support@writnapp.com. We will not discriminate against you for exercising any privacy rights (meaning we won’t deny you service or give you a different level of service just because you made a privacy request).
8.8 European/International Rights: Users in the EEA, UK, and some other jurisdictions have rights to access, rectification, deletion, restriction of processing, and to complain to a supervisory authority. We’ve covered access, correction, deletion above. You may also request that we restrict processing of your data in certain circumstances (for example, while we verify a complaint about accuracy or lawfulness of our processing). You also have the right to lodge a complaint with your country’s data protection authority if you believe we have violated your privacy rights. We encourage you to contact us first, so we can address your concerns directly. We are committed to resolving any issues and honoring your rights to the extent your request is lawful and reasonable.
To exercise any of your rights or choices, please use available tools in the App or contact us via email at support@writnapp.com. For certain requests (like accessing or deleting substantial data), we may need to verify your identity to ensure we’re protecting your account from unauthorized requests. Verification might include confirming control of your email or providing some identifying information. We will respond to your request within the timeframe required by law (for example, within 30 days for many requests, with the possibility of a reasonable extension if needed). There is generally no fee for these requests, though excessive or unfounded requests may incur a fee as permitted by law.
9. Children’s Privacy
Writn is not intended for children under the age of 13. We do not knowingly collect personal information from anyone under 13 years old. If you are under 13, you are not permitted to use this App or submit any personal data to us. If you are between 13 and the age of majority in your jurisdiction (often 18), you should only use the App with the permission and supervision of a parent or legal guardian, and your parent/guardian may need to agree to the Terms of Use on your behalf.
If we become aware that we have inadvertently collected personal information from a child under 13 (or under 16 in certain jurisdictions where that is the applicable age limit) without proper consent, we will take steps to delete that information as soon as possible. If you are a parent or guardian and you believe your child under 13 has created an account or provided personal data to Writn, please contact us at support@writnapp.com so that we can investigate and delete the data if necessary.
We recommend that parents and guardians familiarize themselves with their children’s online activities and employ parental controls or supervise usage where appropriate. While our App is designed as a personal journaling tool and does not contain inappropriate content from our side, the nature of journaling could lead to sensitive reflections. It’s important for minors using the App (with permission) to do so in a safe and guided manner.
10. Changes to This Privacy Policy
We may update or modify this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. When we make changes, we will update the “Last Updated” date at the top of this Policy. If the changes are material (significant) in nature, we will provide a more prominent notice of the update. This might include a notification within the App, an email to the address associated with your account, or a notice on our website – or potentially a combination of these methods.
Your Continued Use Constitutes Acceptance: By continuing to use the Services after those changes become effective, you agree to be bound by the revised Privacy Policy. If you do not agree with the changes, you should delete your account or cease use of the App before the modified Privacy Policy takes effect. For any substantial changes, we will give advance notice when possible so you have time to review the new Policy. We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information.
If we update the Privacy Policy, in some cases we may specifically ask for your consent to the changes if required by law. For example, if a change would materially affect how we handle previously collected data in a way that requires consent, we will obtain such consent.
11. Additional Notices for Certain Jurisdictions
Nevada Residents: Writn does not sell personal information as defined under Nevada law. If you still wish to formally request that we not sell your information, you can contact us and we will record your preference.
EEA/UK Residents: Writn LLC is the controller of your personal data for purposes of EU data protection law. Our contact information is in Section 12 below. As noted, you have the right to lodge a complaint with a supervisory authority, particularly in the EU country where you live or work, or where an alleged infringement of data protection law occurred. We would appreciate the chance to address your concerns first, so please consider reaching out to us. We have not appointed an EU representative at this time; any inquiries can be directed to us in the U.S.
Brazil LGPD: If you are in Brazil, and the Lei Geral de Proteção de Dados (LGPD) applies, you have rights similar to those listed in Section 8 (access, correction, deletion, etc.). You may also oppose or revoke consent as provided by LGPD. You can exercise these rights by contacting us. We will comply with applicable timelines and procedures under LGPD.
Other Regions: If you reside in a jurisdiction not specifically mentioned, we still aim to respect your privacy rights in line with applicable laws. Please contact us if you have any questions or requests regarding your personal information, and we will do our best to accommodate.
12. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:
Writn LLC
Email: support@writnapp.com
Mailing Address: 4759 South 2555 East, Holladay, Utah 84117, USA
We will be happy to answer your questions or address your concerns. You can also reach out to us through our App support section or website for general inquiries.
By using Writn, you acknowledge that you have read and understood this Privacy Policy. We appreciate you entrusting us with your personal journaling and will continue to prioritize your privacy and security.