Privacy Policy

Last updated: April 14, 2026

Grateful Journal is built on a simple promise: your journal entries are yours alone. We designed the app so that we cannot read your entries even if we wanted to.

What we collect

Account info — your name and email address via Google Sign-In, used solely to identify your account.
Journal entries — stored encrypted in our database. We do not have access to the content of your entries.
App preferences — your display name, profile photo, background images, and theme are stored unencrypted as account settings.
Usage data — no analytics, no tracking pixels, no third-party advertising SDKs.

Encryption

Journal entries — end-to-end encrypted. Entries are encrypted on your device using XSalsa20-Poly1305 before being sent to our servers. We store only ciphertext. We cannot read your entries.
App preferences — not encrypted. Your display name, profile photo, background images, and theme setting are stored as plain data.

Data sharing

We do not sell, share, or rent your personal data to any third party. We use Firebase (Google) for authentication only.

Data deletion

You can delete your account and all associated data at any time from the Settings page. Deletion is permanent and irreversible.

Cookies

We use a single session cookie to keep you signed in. No advertising or tracking cookies are used.