Legal

Privacy Policy

Last updated: 20 May 2026 · Effective: 20 May 2026

This Privacy Policy explains what information Sednara collects, why we collect it, who processes it on our behalf, and what rights you have. It applies to the Sednara mobile application and the website at sednara.com.

Sednara is operated by Vellum Studio (the “Studio”, “we”, “us”). You can reach us at support@sednara.com.

Short version. We collect the minimum needed to build your chart and write your readings: your account email, your birth details, and the questions you ask the Oracle. Your readings are generated by Anthropic’s Claude API — we send your transits and your question, but never your name, email, or account identifiers. We don’t sell your data and we don’t use it to train AI.

1. What we collect

Account information

Email and password. Used to create and sign in to your account. Your password is hashed by Supabase; we never see it.

Birth profile

Full name, birth date, birth time, and birth location (city and coordinates). This is the source data for your natal chart. Birth time may be marked as unknown — if so, ascendant and house data are flagged as uncertain in the app.

Derived astrological data

Natal chart snapshot — planet placements, houses, and aspects calculated from your birth profile.
Transit calculations — current planetary positions relative to your chart, recomputed on demand.

Oracle activity

Questions you submit to the Oracle and the category you choose.
Generated readings returned by the AI service. Readings are stored in your account so you can return to them.
Oracle credit balance and consent state (whether you have agreed to AI processing).

Subscription and purchase information

Apple subscription / purchase tokens, transaction identifiers, and entitlement state. Apple processes the payment; we receive a token confirming your entitlement.
When integrated, RevenueCat will mediate this entitlement state on our behalf.

Device and diagnostic data

App version, operating system version, device model class, and locale.
Crash reports and error logs, used to fix bugs. We do not link diagnostic data to your account or identity.

We do not collect: precise location (GPS), contacts, photos, microphone, advertising identifiers, or third-party analytics fingerprints.

2. How we use your data

To calculate your natal chart and current transits.
To generate personalized Oracle readings using the Anthropic Claude API.
To cache your daily reading so the app opens quickly and works on slow networks.
To maintain your saved readings archive and your Oracle credit balance.
To authenticate you and keep your account secure.
To process subscription entitlements and grant access to premium features.
To respond to support requests, fix bugs, and protect against abuse.

3. AI processing — what is shared with Anthropic

When you tap “I understand · continue” on the AI consent screen, you authorize Sednara to send the following to Anthropic, PBC, the operator of the Claude API:

Your calculated transit and natal placements (planetary positions, aspects, orbs).
The Oracle category you selected.
The question you typed.

We do not send your name, email, account ID, birth location string, or any other identifying information to Anthropic.

Anthropic returns the reading text, which we store in your account. Per Anthropic’s commercial terms for API customers, your inputs and the outputs are not used to train Anthropic’s models. Anthropic retains data only as needed to provide the service and for trust-and-safety review, in accordance with their published policies.

You can revoke AI consent at any time in the app’s settings. After revocation, the Oracle will be unavailable to you until you reconsent.

4. Who processes your data

We share data only with the service providers below, each acting as a data processor under our instructions:

Supabase, Inc. — database, authentication, and edge function hosting. Stores your account, birth profile, chart snapshot, saved readings, and Oracle credit state. Servers located in the United States and the European Union.
Anthropic, PBC — Claude AI API. Generates Oracle reading text from the chart data and question described in Section 3. Servers located in the United States.
Apple Inc. — App Store distribution, in-app purchase processing, and push notification delivery (if enabled). Apple’s use of your data is governed by the Apple Privacy Policy.
RevenueCat, Inc. — subscription entitlement and receipt validation, when this feature is integrated. Servers located in the United States.
Cloudflare, Inc. — DNS, edge proxy, and static site hosting for sednara.com. Cloudflare may process limited request metadata for security and performance.

We do not sell, rent, or share your data with advertisers, data brokers, or analytics networks.

5. International transfers

Some of our processors are located outside the European Economic Area (primarily in the United States). When personal data is transferred, we rely on the relevant safeguards — Standard Contractual Clauses, the EU-US Data Privacy Framework where the processor is certified, and the providers’ own published security commitments.

6. Data retention

Account data — retained for as long as your account is active.
Birth profile and chart snapshot — retained while your account is active.
Saved readings — retained until you delete them or your account.
Reading cache — short-lived; oldest entries are purged on a rolling basis.
Diagnostic logs — retained for up to 90 days.

If you delete your account, we remove your personal data from active systems within 30 days. Backups roll over within 90 days.

7. Your rights

If you are in the European Union, United Kingdom, California, or another jurisdiction with a privacy law, you have rights that include:

Access — request a copy of the data we hold about you.
Correction — fix anything inaccurate.
Deletion — ask us to erase your data.
Portability — receive your data in a machine-readable format.
Objection and restriction — limit how we process your data.
Withdraw consent — for processing based on consent (such as AI processing), at any time.
Lodge a complaint — with your local data protection authority.

You can exercise most of these directly in the app: edit your birth profile, delete saved readings, revoke AI consent, or delete your account from the You tab. For anything else, write to support@sednara.com and we will respond within 30 days.

8. Children

Sednara is rated 17+ and is not directed at children under 13. We do not knowingly collect personal data from anyone under 13. If you believe a child has provided us with personal data, write to support@sednara.com and we will delete it.

9. Security

We use industry-standard safeguards: TLS in transit, encryption at rest on the database, row-level security in Supabase so each user can only access their own data, and server-side handling of all third-party API keys. No system is perfectly secure, but we treat your birth data and Oracle history as sensitive and design accordingly.

10. Changes to this policy

If we make material changes, we will notify you in the app and update the “Last updated” date above before the changes take effect. Continued use of Sednara after a change means you accept the revised policy.

11. Contact

Questions, requests, or concerns: support@sednara.com

Vellum Studio · Republic of Lithuania