Legal
Privacy Policy
Last updated: May 2026
This Privacy Policy explains how Brian Murray ("I", "me", "the developer") collects, uses, and protects your personal data when you use the DÁN mobile application ("the App"). I am committed to handling your data with care and transparency. DÁN is a personal daily practice app, and your reflections and journal entries are your own.
1. Who is responsible for your data?
Data Controller: Brian Murray
Email: i0041974@gmail.com
2. What data I collect and why
2.1 Account data
Email address — collected when you create an account, used to authenticate you and to allow account recovery. I do not use your email for marketing.
Password — stored as a secure hash. I never have access to your plaintext password.
2.2 Profile data
Display name — optional, used to personalise the app.
Date of birth — used to calculate your Celtic archetype and associated Ogham tree. This calculation happens inside the app. Your birth date is stored securely and is never shared.
App preferences — your chosen theme, notification settings, and Irish-language tooltip preference.
2.3 Practice data
Daily draws — the Ogham stave drawn each day, its orientation (upright or reversed), and the date. This data powers your journal and is visible only to you.
Reflections — the text you write in response to your daily draw. These are your private journal entries, stored securely and visible only to you.
2.4 Device data
Notification token — if you enable daily draw reminders, a notification token is stored to deliver those reminders. Notifications are scheduled locally on your device; no third-party push notification service is used.
2.5 Data I do not collect
I do not collect:
- Location data
- Browsing or tracking data
- Data from contacts, camera, or microphone
- Any data for advertising purposes
- Any data sold to or shared with third parties for commercial purposes
3. Legal basis for processing (GDPR)
If you are located in the European Economic Area (EEA) or United Kingdom, I process your data on the following legal bases:
- Contract — processing necessary to provide the App to you (account creation, authentication, storing your draws and reflections).
- Legitimate interests — storing your app preferences so the App works as you expect.
- Consent — sending you daily draw notifications (you may withdraw this consent at any time in the App's settings or your device settings).
4. How your data is stored
Your data is stored using Supabase, a secure backend-as-a-service platform. Data is stored on servers hosted by Amazon Web Services (AWS). Supabase applies industry-standard encryption in transit (TLS) and at rest.
Supabase's privacy policy is available at: supabase.com/privacy
I have taken reasonable technical steps to protect your data, but no system is completely immune to risk. If you become aware of any security concern, please contact me immediately.
5. How long I keep your data
Your account and practice data (draws, reflections) are retained for as long as your account is active.
If you delete your account, all associated data is permanently deleted within 30 days.
You may request deletion of your data at any time by contacting me at i0041974@gmail.com.
6. Your rights
Under the GDPR and applicable data protection laws, you have the right to:
- Access — request a copy of the personal data I hold about you.
- Rectification — ask me to correct inaccurate data.
- Erasure — ask me to delete your data ("right to be forgotten").
- Portability — request your data in a machine-readable format.
- Restriction — ask me to limit how I process your data in certain circumstances.
- Objection — object to processing based on legitimate interests.
- Withdraw consent — for any processing based on consent (e.g. notifications), withdraw at any time without affecting prior processing.
To exercise any of these rights, contact me at i0041974@gmail.com. I will respond within 30 days.
If you are unsatisfied with my response, you have the right to lodge a complaint with your national data protection authority. In Ireland, this is the Data Protection Commission. In the UK, this is the Information Commissioner's Office.
7. Children's privacy
DÁN is not directed at children under the age of 13. I do not knowingly collect personal data from children under 13. If you believe a child under 13 has provided me with personal data, please contact me and I will delete it promptly.
8. Changes to this policy
I may update this Privacy Policy from time to time. When I do, I will update the "Last updated" date at the top of this page. For significant changes, I will notify you within the App. Continued use of the App after changes constitutes acceptance of the updated policy.
9. Contact
For any questions, requests, or concerns about your privacy or this policy:
Brian Murray
Email: i0041974@gmail.com
This Privacy Policy was written for the DÁN app and reflects its actual data practices as of the date above.