Thank you for using Lost Post. This policy explains what we collect, why, and how you can manage your data. We keep things simple.

1. About Lost Post

Lost Post lets users anonymously share stories, prompts, and memories with people around the world.

2. What data we collect

We collect only the information needed for the app to work:

3. Why we collect data

We use data to create and manage accounts, provide core features, personalize your experience, and improve the app.

4. Storage & security

Your data is stored on your device and on third-party services (we use Supabase). We rely on industry-standard security measures provided by those services, including encrypted transfers and access controls.

5. Legal basis (EU/GDPR)

For EU users we rely on consent, legitimate interests (to operate and improve the app), and performance of a contract (use of the app).

6. Your rights

You can:

To make a request, email: hello@daydrift.design.

7. Age

Lost Post is not intended for children under 16. We do not knowingly collect information from children under 16 — if we learn we have, we will delete it.

8. Sharing & selling data

We do not currently sell or share personal data with third parties. We may do so in the future; if that changes we will update this policy and provide opt-out options where required by law.

9. Third-party services

We use Supabase for authentication, storage, and analytics. Supabase's privacy and security practices apply to data stored through their services.

We use TelemetryDeck for in-app analytics.

10. Data retention

We keep personal data only as long as needed to operate the app. If you request deletion, we will remove your data within a reasonable time.

11. Contact

If you have questions or requests about your data, contact us at hello@daydrift.design.

12. Changes to this policy

We may update this policy occasionally. We will post the effective date at the top and notify users of significant changes.