Privacy Policy

Last updated: 11/6/2025

1. Information We Collect

1.1 Information You Provide

  • Account information (email, name, profile details, Day 1 badge status)
  • Personal content (diary entries, intimate stories, photos, videos, OnlyAudio posts)
  • Book projects and publishing information (covers, chapters, metadata)
  • Payment and subscription information (processed by Stripe Connect)
  • Communications with us and other users (comments, replies, audio discussions)
  • E-reader interactions (highlights, margin comments, reading progress)
  • Subscription preferences and creator following/subscription lists
  • Waitlist signups and notification preferences

1.2 Information We Collect Automatically

  • Usage data (pages visited, features used)
  • Device information (browser type, IP address)
  • Cookies and similar technologies
  • Performance and analytics data

2. How We Use Your Information

We use your information to:

  • Provide and improve our services
  • Process payments, subscriptions, and creator earnings
  • Send email notifications (welcome emails, updates)
  • Enable content sharing and subscription features
  • Facilitate invite and referral systems
  • Prevent fraud and ensure security
  • Comply with legal obligations
  • Analyze usage patterns and improve user experience

3. Information Sharing

3.1 We Do Not Sell Your Data

We do not sell, rent, or trade your personal information to third parties.

3.2 We May Share Information With:

  • Service Providers: Stripe (payments), hosting providers, analytics services
  • Legal Requirements: When required by law or to protect rights and safety
  • Business Transfers: In case of merger, acquisition, or sale of assets
  • Public Content: Content you choose to make public is visible to other users

4. Data Security

We implement appropriate security measures to protect your information, including:

  • Encryption of data in transit and at rest
  • Regular security audits and updates
  • Access controls and authentication
  • Secure payment processing through Stripe

5. Your Rights and Choices

5.1 Account Management

  • Update your profile information
  • Control privacy settings for your content
  • Delete your account and associated data

5.2 Communication Preferences

  • Opt out of marketing emails
  • Control push notification settings
  • Manage subscription notifications

5.3 Data Rights (GDPR/CCPA)

If applicable, you have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Delete your data
  • Port your data to another service
  • Object to processing

6. Cookies and Tracking

6.1 Types of Cookies

  • Essential: Required for basic functionality
  • Analytics: Help us understand usage patterns
  • Preferences: Remember your settings

6.2 Managing Cookies

You can control cookies through your browser settings, but some features may not work properly if disabled.

7. Third-Party Services

7.1 Payment Processing

Stripe processes all payments. Their privacy policy governs how they handle payment information.

7.2 Analytics

We may use analytics services to understand how users interact with our platform.

8. Data Retention

We retain your information:

  • As long as your account is active
  • As needed to provide services
  • To comply with legal obligations
  • To resolve disputes and enforce agreements

9. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for such transfers.

10. Personal and Intimate Content

10.1 Content Sensitivity

OnlyDiary is designed for sharing personal stories and intimate thoughts. We understand the sensitive nature of this content and implement additional protections:

  • Content is only visible to subscribers or as specified by privacy settings
  • We do not use personal content for advertising or marketing purposes
  • Content is encrypted and stored securely
  • You maintain full control over who can access your content

10.2 Content Deletion

When you delete content or your account, we permanently remove it from our systems within 30 days, except where retention is required by law.

11. Subscription and Payment Data

For subscription services, we collect and process:

  • Subscription preferences and history
  • Payment information (processed securely by Stripe)
  • Creator earnings and payout information
  • Transaction records for tax and legal compliance

12. Children's Privacy

Our service is not intended for children under 13. We do not knowingly collect personal information from children under 13. If we become aware of such collection, we will delete the information.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or platform notification.

14. Advanced Technology Data Protection

14.1 E-Reader Data

Reading progress, highlights, margin comments, and audio discussion participation are stored securely and only accessible to you and the content creator (where applicable). This data enhances your reading experience and enables social features.

14.2 OnlyAudio Data

Audio posts, reactions, and threaded audio replies are stored using enterprise-grade infrastructure with encryption. Audio data is only accessible to authorized users based on your privacy settings.

14.3 PWA and Offline Data

When using OnlyDiary as a Progressive Web App, some content may be cached locally on your device for offline access. This data is encrypted and automatically managed by your browser.

15. Data Retention and Deletion

We retain your data only as long as necessary to provide services. You may request deletion of your account and associated data at any time. Some data may be retained for legal compliance or legitimate business purposes as outlined in our Terms of Service.

16. Third-Party Integrations

16.1 Stripe Connect

Payment processing is handled by Stripe Connect. Your financial information is subject to Stripe's privacy policy and security measures. We do not store complete payment information.

16.2 Content Delivery Services

We use enterprise-grade content delivery networks and storage infrastructure for media files. Data is encrypted and protected according to industry-leading security standards.

17. Contact Us

For questions about this Privacy Policy or to exercise your rights, contact us at:

18. California Privacy Rights

California residents have additional rights under the CCPA, including the right to know what personal information is collected and how it's used, and the right to delete personal information.

19. European Privacy Rights

EU residents have rights under GDPR, including data portability, the right to be forgotten, and the right to object to processing.