Planami — Privacy Policy

Effective date: November 11, 2025

This Privacy Policy explains how Planami ("Planami", "we", "our", "us") collects, uses, and protects your information when you use our website, applications, and services (the "Service"). We are committed to privacy by design, minimizing data collection, and strong client-side encryption.

1. Summary

  • Minimal data: We collect only what is necessary to provide the Service (account information, encrypted content, preferences, and subscription data).
  • No tracking cookies: We do not use third‑party advertising cookies or invasive tracking.
  • Encryption at rest: Your data is encrypted at rest using industry-standard database encryption.
  • Row-level security: Database-level security ensures only you can access your data through your authenticated account.
  • TLS/HTTPS: All data transmission is encrypted in transit.
  • EU hosting: Data is hosted in the EU

2. Data we collect

  • Account data: Email address (required) for login; display name (optional) for a more personal in‑app greeting. If you choose to sign in with Google, Google provides us with your email address, name, and profile picture (if available) for account creation and authentication purposes only.
  • Planner content: Your planner entries and related data (daily, weekly, monthly, yearly views; wishes; travel plans; life goals; date nights; financial goals; moodboard items; books and movies; etc.) are stored in our database. Data is encrypted at rest using industry-standard encryption and protected by Row Level Security (RLS) policies that ensure only you can access your data.
  • User preferences: Display preferences such as color palette and selected template (not encrypted, as they are not sensitive).
  • Subscription data: Plan name, subscription status, billing period information, and Stripe customer/subscription identifiers (for payment processing).
  • Notification preferences: Your email notification settings (updates, reminders, retrospectives) and reminder frequency preferences.
  • Technical data: Basic, privacy‑preserving logs and diagnostic events required to operate and secure the Service (e.g., request timestamps, error codes). We avoid collecting IP addresses unless required for security or legal compliance, and we do not attempt to link technical data to your planner content.

3. What we do not collect or do

  • No advertising IDs, no third‑party ad trackers.
  • No cross‑site tracking.
  • No sale of personal information.
  • No analytics that identifies you or reads your content. If we use analytics, it is limited, first‑party, aggregated, and content‑blind.

4. Encryption and security

  • Encryption at rest: Your data is encrypted at rest using industry-standard database encryption provided by our hosting provider (Supabase). This means your data is encrypted when stored on disk, protecting it from unauthorized access even if the physical storage is compromised.
  • Row-level security (RLS): We use database-level Row Level Security policies that ensure only authenticated users can access their own data. Each user can only read, write, update, or delete their own records. This provides an additional layer of access control beyond application-level security.
  • Transport security: All data in transit is protected with HTTPS/TLS encryption. This ensures that data transmitted between your device and our servers cannot be intercepted or read by third parties.
  • Authentication: Access to your account requires secure authentication. We use industry-standard authentication mechanisms (Supabase Auth) with secure password hashing and optional OAuth providers (Google).
  • Service access: Our service can technically access your data for support, maintenance, and security purposes. We commit to only accessing your data when necessary for these purposes and in accordance with our Privacy Policy. We never sell your data to third parties.
  • Backups: Your data is included in our regular encrypted backups. Backups are stored securely and are subject to the same security measures as live data.

5. Lawful bases for processing (GDPR/EEA)

We process your personal data on these legal bases:

  • Contract performance: To provide and maintain your account and the Service.
  • Legitimate interests: To secure the Service, prevent abuse, and improve reliability in a privacy‑preserving way.
  • Consent: For optional integrations (e.g., Google Calendar), where you can grant and revoke access.
  • Legal obligations: To comply with applicable laws and requests from competent authorities.

6. How we use data

  • Provide and maintain the Service, including authentication and storage.
  • Process payments if you choose a paid plan (via Stripe). We do not store full payment card details.
  • Communicate about critical service updates or security notices.
  • Improve reliability and security using aggregated, content‑blind telemetry.

7. Data sharing and processors

  • Supabase (hosting, database, authentication): Data is hosted in the EU (typically Frankfurt region). Supabase acts as our processor under a data processing agreement and appropriate safeguards.
  • Stripe (payments, if applicable): Processes payment information. We receive limited billing metadata (e.g., subscription status) and do not store full card details.
  • Google (authentication, if you choose Google Sign-In): If you choose to sign in with Google, Google provides your email address, name, and profile picture for authentication purposes only. This is an optional authentication method; you can also use email/password. Google's use of your information is governed by Google's Privacy Policy. You can revoke access at any time through your Google account settings.
  • Optional integrations (e.g., Google Calendar): Used only if you enable them and solely for the requested functionality. You may revoke access at any time.

We do not sell your personal information. We disclose information only as required by law or to protect our rights, users, or the Service.

8. International transfers

We aim to keep data in the EU. If limited transfers occur (e.g., to sub‑processors outside the EU), we rely on lawful transfer mechanisms such as Standard Contractual Clauses and implement appropriate safeguards.

9. Data retention

  • Account data: Retained for as long as you maintain an account. Upon deletion, we will delete or anonymize personal data within a reasonable period, subject to legal retention requirements.
  • Planner content: Deleted upon account deletion or your explicit request. Data is permanently removed from our systems and backups according to our data retention policy.
  • Logs: Retained for a limited time for security and reliability, then deleted or anonymized.

Deleting your data: You can delete your account and all associated data at any time by going to the Security tab in your Profile page. This will permanently remove your account, all planner entries, preferences, subscription information, and any other personal data from our servers. Any active subscriptions will be canceled immediately upon account deletion. This action cannot be undone, so please ensure you have exported or backed up any data you wish to keep before proceeding.

10. Your rights (EU/EEA and similar jurisdictions)

Subject to local law, you may have the right to access, rectify, erase, restrict, object to processing, and data portability. You also have the right to withdraw consent for optional integrations. You have the right to access, export, and delete your data at any time. You can export your data or delete your account through your Profile page settings.

To exercise your right to deletion, you can delete your account and all associated data by navigating to the Security tab in your Profile page. This will permanently remove all your personal data from our systems and cancel any active subscriptions.

11. Children's privacy

The Service is not directed to children under 16 (or the age of digital consent in your country, if higher). We do not knowingly collect personal data from children.

12. Cookies and similar technologies

We do not use third‑party advertising cookies. We may use strictly necessary cookies for authentication and session management. These are essential for the Service to function and are not used for cross‑site tracking. If you choose to sign in with Google, Google may set authentication cookies during the sign-in process, which are necessary for the OAuth authentication flow. These cookies are subject to Google's Privacy Policy and Cookie Policy.

13. Data security

We use industry‑standard security measures, including TLS/HTTPS encryption in transit, database encryption at rest, Row Level Security (RLS) policies, secure authentication, and regular security audits. No method of transmission or storage is 100% secure, but we strive to continuously improve and apply best practices.

14. Data controller and contact

We operate from the European Union. If you have questions or requests about this Privacy Policy or your data, contact us via the email support@planami.app. You also have the right to lodge a complaint with your local data protection authority.

15. Changes to this Policy

We may update this Privacy Policy from time to time. If changes are material, we will provide reasonable notice (e.g., via in‑app notice or email). Continued use after the effective date constitutes acceptance of the updated Policy.