Privacy Policy

Nicola Eberhard
Sole proprietorship (Einzelunternehmen)
St.Andrae 87
9433 St.Andrae
Österreich
Email: nicolaeberhard28@icloud.com

• Account data: email address, display name, language, timezone, workspace preferences
• Content you create: journal entries, goals, weekly reflections, space assignments, voice transcripts
• Usage and billing data: subscription status, AI and voice usage counters, payment metadata from Stripe or Apple (we do not store full card numbers)
• Technical data: session cookies required for authentication; push notification tokens if you enable reminders

• Provide the service (contract): account, sync, AI features you request, subscriptions
• Security and abuse prevention (legitimate interests): protecting accounts and infrastructure
• Tax and accounting (legal obligation): records for paid subscriptions
• Reliability (legitimate interests): bug fixing and service improvement — we do not use your journal content to train third-party AI models

We use trusted processors to operate Satro:

• Google Firebase (EU/US) — authentication and database hosting
• OpenAI (United States) — AI analysis and voice transcription when you use those features
• Stripe (EU/US) — web subscription payments
• Apple — in-app purchases on iOS, when available
• Vercel — application hosting

Where personal data is transferred outside the EEA/UK (for example to the United States), we rely on appropriate safeguards such as the EU/UK Standard Contractual Clauses and provider data processing agreements. Contact us for more information about safeguards relevant to your data.

We keep your data while your account is active. When you delete your account, we remove your journal content and profile from our systems. Limited backup retention by infrastructure providers and statutory retention for tax records (typically up to seven years for invoices) may still apply.

Depending on applicable law, you may have the right to:

• Access your personal data
• Rectify inaccurate data
• Delete your data (Settings → Delete account)
• Export your data (Settings → Download my data)
• Restrict or object to certain processing
• Withdraw consent where processing is consent-based
• Lodge a complaint with a supervisory authority

Supervisory authorities: In Austria, the Austrian Data Protection Authority (dsb.gv.at). In the UK, the Information Commissioner's Office (ico.org.uk). You may also contact your local EU/EEA authority if you live in another member state.

Privacy requests: nicolaeberhard28@icloud.com

Satro is not directed at children under 16. We do not knowingly collect personal data from children. Contact us if you believe a child has provided data and we will delete it.

We use strictly necessary session cookies to keep you signed in. We do not use advertising or third-party tracking cookies. Disabling session cookies may prevent login.

We may update this policy when our practices or legal requirements change. We will post the new version on this page and update the "Last updated" date. Material changes may be notified by email or in-app notice where required.