joinlifecycle.app

Legal

Privacy Policy

How Lifecycle collects, uses, shares, and protects information across the app and public website.

Last updated March 2026

Overview

This Privacy Policy applies to the Lifecycle mobile app and the public website at joinlifecycle.app. Lifecycle is intended for adults only in v1. By using the service, you acknowledge the data practices described here.

Information we collect

  • Account and identity data such as your email address, authentication identifiers, and basic profile details.
  • Journal entries, habits, mood or reflection inputs, goals, reminders, and other profile or onboarding answers you choose to provide.
  • AI-related content such as chat messages, stored memories, rolling context, and derived insights generated from your activity.
  • Voice and transcription data when you use voice-to-text features, including raw audio processed for transcription and any transcript text you keep in the app.
  • Subscription and entitlement status used to determine trial, premium, and restore-purchase access.
  • Avatar and media information when you choose to upload a profile image.
  • Support communications and technical request data when you contact us or visit the website.

How we use information

  • Provide account access, authentication, and app functionality.
  • Store and display your journals, habits, reminders, profile details, and progress.
  • Generate AI-powered insights, chat responses, and polished transcription output.
  • Operate subscriptions, entitlement checks, purchase restoration, and support workflows.
  • Improve reliability, investigate abuse, enforce limits, and protect the service.

Authentication and sign-in

Lifecycle supports email/password authentication through Supabase Auth and Google sign-in through a browser-based OAuth flow. Google sign-in uses the system browser and redirects back into the app after authentication completes.

AI and transcription services

Lifecycle uses third-party providers to power AI features. OpenAI is used for features such as insights, chat, and text-polishing workflows. AssemblyAI is used for speech transcription. In the current implementation, the app obtains a token from the Lifecycle backend and transcription processing is then initiated from the client with AssemblyAI.

Because these features rely on third-party processing, you should avoid submitting information you would not want handled by those providers. We do not state broader retention or model-training promises here unless and until they are separately confirmed.

Notifications and reminders

Lifecycle can request notification permission so the app can schedule local reminder notifications. In the current implementation, reminder scheduling is local to your device rather than a remote marketing push system.

Avatars and media

If you upload an avatar, the image is stored in Supabase Storage and served through a public avatar URL so it can load inside the app. Do not upload images you do not want associated with your account.

How we share information

We share information only as needed to operate the service, including with:

  • Supabase for authentication, database, and storage services.
  • OpenAI for AI-powered processing.
  • AssemblyAI for speech transcription.
  • RevenueCat for subscription and entitlement support.
  • Apple and Google for in-app billing and store-managed subscriptions.
  • Google when you choose Google sign-in.
  • Other parties if required by law, to enforce rights, or to protect users and the service.

Website analytics and cookies

The public website is primarily a marketing, legal, and support surface. Lifecycle does not currently describe any advertising tracker or marketing-cookie program for this site. Standard infrastructure providers may still process basic technical logs needed to deliver the site.

Security

Lifecycle uses a range of pre-production security controls, including request validation, rate limiting, security headers, generic server error responses, and reduced sensitive logging. No system can promise absolute security, so you use the service at your own risk.

Retention and your choices

We retain information for as long as needed to provide the service, comply with legal obligations, resolve disputes, prevent abuse, and maintain billing or operational records. Some information may remain in backups or store-managed records for a limited period after account changes.

You can update some account information in the app. For deletion requests, email brenden@joinlifecycle.app or review the public account deletion page. Data export is not part of v1.

Children

Lifecycle is not intended for children and is shipped as an 18+ only product for v1. Do not use the service if you are under 18.

Changes and contact

We may update this Privacy Policy as the product evolves. When we do, we will post the revised version on this page. Questions can be sent to brenden@joinlifecycle.app.

Related pages

Quick access to the public legal, support, and account-help pages.

Privacy PolicyTerms of ServiceSupportAccount Deletion