Privacy Policy

Last updated: May 15, 2026 · Effective: May 15, 2026

This Privacy Policy explains how Oriia collects, uses, stores, shares, and protects your personal information when you use the Oriia mobile application ("the App") or visit oriia.app ("the Site"). Together we refer to the App and the Site as "the Service".

Oriia is operated by Fiorella Fonseca, an individual sole proprietor based in Italy ("we", "us", "our"). By using the Service, you acknowledge that you have read and understood this Privacy Policy.

Quick Summary

1. Information We Collect

1.1 Information you provide directly

When you sign up and use the App you may provide:

• Birth date, birth time, and birth city/country: Required to calculate your astrological birth chart. The city/country is geocoded into latitude/longitude through OpenStreetMap's Nominatim service to look up the correct timezone.
• Chronotype selection: Your natural energy pattern (First Light, Sunriser, Daybreaker, Golden Hour, Nightfall, Stargazer).
• Sleep needs and preferred focus window: Optional onboarding inputs that shape the daily rhythm.
• Focus areas: Optional categories you want your rituals to address (e.g., creativity, rest, connection).
• Name or display name: Optional. If you sign in with Apple or Google, the OAuth provider may share your display name and email with us; you can choose to share only a relay address with Apple Sign In.
• Email address: Required only if you create a linked account (anonymous accounts do not require email).
• Connections (optional feature): When you add a person to your Connections list, you provide their name, sun sign, and chronotype. You are responsible for having permission to enter another person's information.
• Chat messages with Align: The text you send to the Align AI guide. These messages are stored as conversation history so the assistant can maintain context across the same conversation.
• Ritual feedback: Whether a ritual felt helpful, including optional tags (e.g., "drain", "seed").
• Customer support correspondence: If you email us, we keep that correspondence to respond and follow up.

If you submit your email or birth details through the Blueprint or Waitlist forms on the Site, those forms are presentational only at the time of this policy's effective date and do not transmit data. This policy will be updated before any backend submission is enabled.

1.2 Information collected automatically

• Device information: Device model, operating system, OS version, app version, language, screen size, timezone.
• Anonymous user identifier: Firebase Authentication issues a unique anonymous identifier when you first open the App. This identifier is required for the Service to function.
• Usage events: Through Mixpanel (EU server) we record which screens you visit, which features you use, when you complete onboarding steps, when you mark rituals helpful or unhelpful, when you open paywalls, and when you make a purchase. See Section 6.5 for the full list.
• App Check tokens: Firebase App Check issues a short-lived token attesting that the request is coming from a legitimate copy of our app. This token contains no personal information.
• Purchase metadata: When you buy a subscription or a pack of Align credits, Apple provides a transaction identifier, product identifier, and purchase date. We do not see your payment instrument.
• Cloudflare edge metadata (Site only): When you visit oriia.app, Cloudflare records aggregate pageview metadata (IP address, user agent, referrer, country) at the network edge. Cloudflare Web Analytics is server-side and does not require a JavaScript beacon or analytics cookies.

1.3 Information we do not collect

• We do not collect your precise real-time location.
• We do not access your contacts, photos, microphone, or camera.
• We do not track you across other apps or websites.
• We do not sell or rent your personal data to third parties.
• We do not use third-party advertising SDKs or ad networks.

1.4 Device permissions we request

• Calendar (optional): If you opt in, Oriia can add ritual blocks to a calendar you select. We use the device_calendar plugin to read your list of calendars (so you can pick one) and to write individual ritual events to the calendar you choose. We do not read your existing calendar events, we do not upload anything from your calendar to our servers, and you can revoke calendar access at any time in iOS Settings.
• Notifications (optional): If you opt in, we send transactional reminders for the day's rhythm via Firebase Cloud Messaging. Decline is fully supported and does not affect the rest of the App.

1.5 Sensitive data

Birth date, sleep needs, and chronotype are not "special categories of personal data" under Article 9 GDPR. We treat this data with the same care we would give to health-adjacent information, even though it is not strictly a special category.

We do not knowingly process biometric, genetic, racial, ethnic, religious, philosophical, political, sexual orientation, or trade-union data.

2. How We Use Your Information

We use the information we collect to:

• Calculate your birth chart server-side using the open-source Kerykeion library; no third-party astrology API is involved.
• Generate your daily rhythm: a sequence of timed rituals tuned to your chronotype and today's planetary transits against your natal chart.
• Power the Align AI guide: your questions and relevant context about your chart and chronotype are sent to Google Gemini to generate responses.
• Compute Connections sync: your astrological data and the connection's name/sign/chronotype are sent to Google Gemini.
• Produce your weekly Synthesis: a recap of the past week's rituals, the transits that shaped them, and pattern feedback. Generated server-side using your stored data and Gemini.
• Process subscription and pack purchases through Apple's StoreKit. We verify transaction receipts with Apple's App Store Server API to grant subscription access or Align credits.
• Send you notifications: only if you grant notification permission, via Firebase Cloud Messaging.
• Improve and personalize the Service by analyzing aggregate usage patterns through Mixpanel.
• Diagnose technical issues: short-lived logs of failed requests, errors, and crashes for debugging.
• Detect and prevent abuse through Firebase App Check, per-user rate limits (100 Align messages/day, 30 daily-rhythm generations/day, 10 weekly-synthesis generations/day), and Firebase Security Rules.
• Comply with legal obligations: including responding to lawful requests from authorities, tax and accounting requirements applicable in Italy, and Apple's platform requirements.

We do not use your personal information for behavioral advertising, profiling for credit, automated decisions with legal effects, or sale to third parties.

3. Legal Basis for Processing (GDPR)

If you are in the European Economic Area, the United Kingdom, or Switzerland, our processing is justified under Article 6 GDPR as follows:

You have the right to object to processing based on legitimate interest. See Section 7.

4. How We Store and Protect Your Information

4.1 Where data is stored

• Firebase Firestore: your birth data, chart, daily rhythms, conversations, connections, feedback, and account record are stored in Google Firebase's Firestore service (US region).
• Mixpanel (EU region): usage events are stored on Mixpanel's api-eu.mixpanel.com servers.
• Apple StoreKit: purchase records are issued and stored by Apple; we receive only transaction identifiers and product identifiers.
• Cloud Run / Cloud Functions logs: short-lived debugging logs are stored within our Google Cloud project (US region) and auto-rotated.

4.2 Security measures

• All data in transit is encrypted with HTTPS / TLS 1.2+.
• Firebase data is encrypted at rest using AES-256.
• Firebase Security Rules enforce that each user can only read and write their own records.
• Firebase App Check issues per-request tokens that verify the request originates from a legitimate copy of our App.
• Per-user rate limits prevent automated abuse of the AI features.
• Server-side processing for sensitive calculations (your birth chart, rituals, Align responses) runs in our Google Cloud project; no raw chart is exposed to the client.
• API keys for third-party services are stored as Firebase Secrets and never exposed to the client.
• Subscription receipts are verified against Apple's App Store Server API before granting access.

No security measure is perfect; we cannot guarantee absolute security, but we follow current industry practice.

5. International Data Transfers

Oriia is operated from Italy (European Union). Our service providers are located in the European Union (Mixpanel) and the United States (Google / Firebase, Apple, Google Gemini, Cloudflare).

When personal data is transferred from the EEA to the United States, we rely on the safeguards provided by each processor, which include the EU–US Data Privacy Framework (Google LLC and Apple Inc. are self-certified participants) and Standard Contractual Clauses as a fallback.

6. Third Parties and Service Providers

We share personal data only with the following processors. Each processes data on our behalf under the terms of its standard Data Processing Agreement.

6.1 Google Firebase (Google LLC)

Google's privacy policy: policies.google.com/privacy

6.2 Google Gemini API (Google LLC)

The Align AI guide, daily-rhythm interpretation, weekly synthesis, insights, and Connections sync are powered by Google's Gemini 2.5 Flash model. The data we send to Gemini includes your astrological placements, today's planetary transits, your chronotype and focus preferences, your chat messages (for Align), and aggregated feedback patterns (for Synthesis).

Google's API terms govern what Google may do with content sent through the Gemini API. Refer to Google's Generative AI policies for the current terms.

Google's Gemini API terms: ai.google.dev/gemini-api/terms

6.3 Apple In-App Purchase and App Store Server API

Subscriptions and Align credit packs are sold through Apple's In-App Purchase. Apple processes all payment details; we never see your card, billing name, or billing address. We receive only the transaction identifier and product identifier, which we verify against Apple's App Store Server API.

Apple's privacy policy: apple.com/legal/privacy

6.4 OpenStreetMap / Nominatim (OpenStreetMap Foundation)

The birth city / country you enter is sent to OpenStreetMap's Nominatim geocoding service to convert the city name to latitude and longitude (needed for timezone-accurate astrological calculations). The geocoding request does not include your name, email, or any other identifier.

Nominatim usage policy: operations.osmfoundation.org/policies/nominatim

6.5 Mixpanel (Mixpanel, Inc.)

We use Mixpanel for product analytics on the EU server (api-eu.mixpanel.com) so usage events stay in the EU. Mixpanel receives:

• The Firebase Authentication UID (pseudonymous identifier).
• Event names (for example, Onboarding Completed, Daily Rhythm Viewed, Ritual Marked Helpful, Question Asked, Paywall Viewed, Subscription Started).
• User properties (chronotype, sun/moon/rising signs, focus areas, subscription state, Align credits balance).
• Super properties (app: oriia, platform: ios, app version).
• Standard event metadata (timestamp, device type, OS version).

We do not send your name, birth date, birth city, birth time, email, chat messages, or birth chart placements to Mixpanel.

Mixpanel's privacy policy: mixpanel.com/legal/privacy-policy

6.6 Cloudflare (Cloudflare, Inc.): Site only

oriia.app is hosted on Cloudflare Pages. Cloudflare provides edge content delivery, DDoS protection, and Cloudflare Web Analytics (server-side, no JavaScript beacon, no analytics cookies). Cloudflare may set a small number of operational cookies (e.g. __cf_bm) for bot detection, which expire within 30 minutes.

Cloudflare's privacy policy: cloudflare.com/privacypolicy

6.7 Apple Sign In and Google Sign In

You can sign into Oriia using Sign in with Apple or Sign in with Google. The chosen provider authenticates you and may share your email and display name with us. With Apple Sign In you may choose "Hide my email"; in that case we receive only the Apple-relay address (@privaterelay.appleid.com) and emails we send pass through Apple's relay.

We use the provider only for sign-in. We do not request any additional scopes (contacts, calendar, photos, etc.) from Apple or Google.

7. Your Rights

Depending on where you live, you may have some or all of the following rights:

• Access: request a copy of the personal data we hold about you.
• Correction: ask us to update inaccurate or incomplete data.
• Deletion: ask us to erase your data. See Section 8 for the in-app shortcut.
• Portability: receive your data in a portable, machine-readable format.
• Restriction: ask us to pause processing while a dispute is resolved.
• Objection: object to processing based on legitimate interest.
• Withdraw consent: withdraw any consent you previously gave (this does not affect lawfulness of past processing).
• Opt out of notifications: at any time, in your device settings.
• Complaint: lodge a complaint with a supervisory authority. In Italy this is the Garante per la protezione dei dati personali (garanteprivacy.it).

To exercise any of these rights, email [email protected] with the subject line "Privacy Rights Request". We will respond within 30 days (with a possible extension of up to two further months for complex requests, as permitted by GDPR).

We will not discriminate against you for exercising any of these rights.

8. Account Deletion

You can delete your account and all associated personal data directly inside the App:

• Open Oriia
• Go to You → Settings
• Scroll to the bottom and tap Delete Account
• Confirm the action in the dialog

This invokes a server-side Cloud Function that immediately deletes every Firestore document keyed to your user ID and deletes your Firebase Authentication record. The deletion is irreversible and signs you out automatically.

Alternatively, email [email protected] with the subject "Delete My Account". We process the email request within 30 days.

When you delete your account:

• Your account record, birth chart, daily rhythms, connections, conversations, insights, weekly syntheses, ritual feedback, Align credits balance, IAP redemption ledger, and per-day usage counters are deleted from Firestore.
• Your Firebase Authentication account is deleted, which invalidates every active session immediately.
• Mixpanel user records associated with your UID are deleted (subject to a short asynchronous delay on Mixpanel's side).
• Apple StoreKit retains the purchase history independently of us; you can manage active subscriptions in your Apple ID → Subscriptions settings, including from inside Oriia via You → Settings → Manage Subscription.
• Short-lived diagnostic logs (already auto-rotated) expire on their normal schedule.
• We retain a minimal anonymised audit entry (SHA-256 hash of your former UID, deletion timestamp, and per-collection delete counts) in a deletions collection for legal and accounting compliance under Italian law. This entry contains no personal identifier.

9. Data Retention

10. Cookies and Local Storage

10.1 In the App

The App does not use web cookies. It uses local device storage (SharedPreferences on iOS) to remember a small number of preferences, such as your selected calendar ID and language. None of this contains personal data shared with us.

10.2 On the Site (oriia.app)

The Site is a static React application with no analytics JavaScript beacon. The cookies that may be set are operational cookies issued by Cloudflare for content delivery, bot protection, and security (e.g., __cf_bm, typical lifetime 30 minutes). These are strictly necessary for the Site to function and are not used for advertising or cross-site tracking.

If we add any non-essential cookies in the future, we will present a consent banner before they are set, in compliance with the ePrivacy Directive and the Italian Cookie Guidelines.

11. Children's Privacy

The Service is not directed to children under 14.

• Under Italian law (Article 2-quinquies of the Codice in materia di protezione dei dati personali), the minimum age for valid consent to information society services is 14 years. Users under 14 cannot validly consent to the processing required to use Oriia.
• In the United States, the Service is not directed to children under 13 under COPPA.

We do not knowingly collect personal data from children below the applicable age. If you believe a child has provided us with personal data, contact us at [email protected] and we will delete it.

12. Data of Other People (Connections)

The Connections feature lets you save a person's name, sign, and chronotype to generate a compatibility read. By entering another person's information, you confirm that you have a legitimate basis to do so (for example, their explicit consent or your prior relationship with them).

If a person whose data you have entered asks us to delete that record, they can email [email protected] and we will remove it.

13. Automated Decision-Making and AI Processing

The Align AI guide, daily rhythm interpretation, and weekly synthesis are generated by Google Gemini, a large language model. The output is suggestive, not prescriptive: it does not produce decisions with legal or similarly significant effect on you, and does not constitute medical, psychological, financial, or legal advice.

Oriia does not perform automated profiling for credit, employment, insurance, or any decision with legal effect. Article 22 GDPR (rights related to automated decision-making producing legal effects) does not apply to the Service.

14. Security Incident Notification

If we become aware of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the Italian Garante within 72 hours, and notify affected users without undue delay, as required by Articles 33 and 34 GDPR.

15. California-Specific Disclosures (CCPA / CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act / California Privacy Rights Act:

• Right to know what personal information we collect, use, disclose, and sell or share.
• Right to delete the personal information we have collected from you.
• Right to correct inaccurate personal information.
• Right to opt out of "sale" or "sharing" of personal information. We do not sell or share your personal information, including for cross-context behavioral advertising.
• Right to limit use of sensitive personal information.
• Right to non-discrimination for exercising your rights.

In the previous 12 months we have collected the categories of personal information described in Section 1, including identifiers, internet activity, geolocation (city level), inferences drawn from the foregoing, and content of communications (your Align messages). We have not sold or shared this information.

To exercise these rights, email [email protected] with the subject "California Privacy Request". You may designate an authorized agent to make a request on your behalf with appropriate proof.

16. Data Protection Officer

We have not appointed a Data Protection Officer. The Service is operated by an individual sole proprietor at a scale of processing that does not require a DPO under Article 37 GDPR. For any data-protection question, contact [email protected] directly.

17. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes:

• We update the Last updated date at the top.
• We notify you in-App and, where reasonable, by email if you have a linked account.
• For changes that materially expand how we use your data, we give you at least 30 days' notice before the change takes effect.

Continued use of the Service after the effective date constitutes acceptance of the revised policy. If you do not agree, you can delete your account at any time (Section 8).

18. Contact

For any question about this Privacy Policy, your data, or to exercise any of your rights:

• Email: [email protected]
• Operator: Fiorella Fonseca (sole proprietor)
• Country of establishment: Italy

By using Oriia, you acknowledge that you have read and understood this Privacy Policy.