Privacy Policy

Last updated: 1 July 2026

Olorin ("Olorin", "we", "us") is a contemplative inner-work app for journaling, dreamwork, and reflective practice. This policy explains what we collect, how it is protected, and the choices you have. Please read it alongside our Terms of Use.

The short version

What we collect

Account information. When you create an account we store your email address (or Apple/Google sign-in identifier) and an internal account ID. This identity is never shown to other users.

Your private entries (encrypted). Journal entries, dream entries, dream conversations, interpretations, tags, images, and inner-dialogue sessions are encrypted on your device with a key held only on your device (in the iOS Keychain). Our servers store only ciphertext. Limited metadata is stored in readable form so the app can function: timestamps, mood selections, song choices, and the names you give inner figures.

Commons (public) content. If you create a public presence and publish a dream or comment, that content — including any text, images, and your chosen public handle and display name — is stored in readable form and shown to others according to the audience you select (everyone, close friends, or followers).

Technical data. Basic operational data needed to run the service (e.g. authentication tokens and error logs).

How your private content is protected

Your encryption key is generated on your device and stored in the iOS Keychain. It is never transmitted to our servers. It travels only inside your device's own encrypted backup, and you may export it as a recovery code that you keep. If you lose your device and your backup and your recovery code, your encrypted entries cannot be recovered by anyone, including us. This is the deliberate trade that end-to-end encryption makes.

AI features

When you request an AI action — such as a dream interpretation, a generated image, tags, or a dialogue reply — the specific content you are acting on is transmitted, encrypted in transit, to our AI processing providers (currently Anthropic and OpenAI) to generate the result. The result is returned and stored encrypted. These providers process the content to produce your result and do not use it to train their models under our configuration. Features you do not use send nothing.

Data storage and processors

We use Supabase (database, authentication, storage) as our backend infrastructure provider, and the AI providers named above. These processors act on our behalf and are bound to protect the data they handle.

Your choices and rights

Children

Olorin is not directed to children. You must be at least 17 years old to use it.

Health data

Olorin does not currently read from or write to Apple Health or any other health data source.

Changes

We may update this policy; material changes will be reflected by the "last updated" date above.

Contact

Questions about this policy: support@olorin.health.