Privacy Policy

Last updated: June 2026

1. Introduction

TarotMuse (“we”, “us”, “our”) operates the website tarotmuse.app and related services. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.

2. Information We Collect

2.1 Information You Provide

  • Account information: Email address (required for sign-up).
  • Reading input: The question or intention you enter before drawing cards.
  • Journal entries: Personal notes and reflections you choose to save.

2.2 Information Collected Automatically

  • Usage analytics: We use PostHog (self-hosted or cloud) to understand how visitors interact with the site. This may include page views, feature usage, and anonymized device/browser information.
  • Cookies: Essential cookies for authentication (Supabase session) and a guest identifier cookie for anonymous usage limits. See Section 7 for details.

3. AI Processing & Emotional Analysis

Important: Your reading questions, journal notes, and generated interpretations are sent to a third-party AI provider (e.g., OpenAI) for the following purposes:

  • Tarot interpretation: Generating personalised card meanings and reflective summaries based on your question.
  • Emotional analysis:When you save a journal entry, your notes (or the reading content if no notes are provided) may be analysed by AI to suggest mood tags (e.g., “hopeful”, “calm”, “anxious”).

By using TarotMuse, you acknowledge and consent to this processing. AI-generated content is for reflection and entertainment purposes only — it is not professional advice.

Data sent to AI providers is subject to their own privacy policies and data processing terms.

4. How We Use Your Information

  • To provide and improve the tarot reading and journaling service.
  • To authenticate your account and secure your data.
  • To generate AI-powered interpretations and mood analysis.
  • To send occasional reminders to return and reflect (if opted in).
  • To analyse aggregate usage patterns for product improvement.

5. Data Storage & Security

Your data is stored in a Supabase (PostgreSQL) database hosted on AWS. We implement industry-standard security measures including encryption at rest and in transit, Row Level Security (RLS) policies ensuring you can only access your own data, and regular access audits.

6. Data Retention & Deletion

When you delete a journal entry, it is immediately soft-deleted and permanently removed from our systems after 30 days. You may request full account deletion at any time by contacting us. Upon account deletion, all personal data is permanently erased within 30 days.

7. Cookies

We use the following categories of cookies:

  • Essential cookies: Supabase manages authentication session storage. In production, session data is transmitted securely over HTTPS. These are required for login functionality and cannot be disabled.
  • Guest identifier cookie: An HttpOnly cookie assigned to anonymous visitors to enforce daily usage limits. This expires automatically and is not used for tracking.
  • Analytics cookies: PostHog may set cookies for usage analytics. You may opt out via the cookie consent banner or directly in your browser settings.

8. Third-Party Services

  • Supabase: Authentication and database hosting.
  • AI Provider (OpenAI or similar): Generating tarot interpretations and emotional analysis.
  • PostHog: Product analytics.

Each third-party provider operates under their own privacy policy. We share only the minimum data necessary to provide the service.

9. Children’s Privacy

TarotMuse is not intended for children under 13. We do not knowingly collect personal data from children. If we become aware that a child under 13 has provided us with personal information, we will delete it promptly.

10. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal data we hold about you.
  • Request correction or deletion of your data.
  • Object to or restrict certain processing.
  • Data portability (receive your data in a structured format).

11. Contact Us

If you have questions about this Privacy Policy or your data, please contact us at privacy@tarotmuse.app.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the “Last updated” date.

← Back to TarotMuse