Privacy Policy

Grimoire is operated by a UK-based sole trader. Our website is getgrimoire.app. You can contact us at grimoireapp@protonmail.com. For data protection matters specifically, please email the same address with the subject line “Privacy — [your query]”.

Waitlist email address. When you join the waitlist on this website, we collect your email address. That is all we collect at the point of sign-up.

Analytics data. This website uses Vercel Analytics, which collects anonymised, aggregate data including page views, referrer, and country-level location. No cookies are set. No personal identifiers are stored.

Email correspondence. If you contact us by email, we collect the information you include in that message in order to respond to you.

Your Grimoire journal. The private journal inside the app — your rituals, reflections, dreams, and workings — is stored locally on your device only. It is never uploaded to our servers.

Waitlist email. We use your email address to notify you when the Grimoire Android app launches. Our lawful basis is consent — you opted in by submitting the waitlist form.

Analytics. We use anonymised analytics to understand how visitors use the site and to improve it. Our lawful basis is legitimate interests. Because Vercel Analytics is cookieless and collects no personal data, this processing has minimal privacy impact.

Email correspondence. We process email correspondence in order to respond to your enquiry. Our lawful basis is legitimate interests.

If you join the waitlist, we will send you a single notification email when the Grimoire app launches on Android. We will not send you marketing emails without your separate consent. You can ask us to remove your email address from the waitlist at any time by emailing grimoireapp@protonmail.com.

Resend. We use Resend to send transactional emails, including the launch notification. Your email address is stored in Resend's system solely for this purpose. Resend's privacy policy is available at resend.com/privacy.

Vercel. This website is hosted on Vercel, which provides both hosting and anonymised analytics. Vercel is GDPR-compliant. Their privacy policy is at vercel.com/legal/privacy-policy.

We do not sell your data. We do not share it with advertisers. We do not share it with any third party beyond what is described above.

Waitlist email addresses. We retain these until the Android launch notification has been sent, after which they will be deleted within 30 days. If you ask us to remove you before then, we will do so promptly.

Email correspondence. We retain emails for up to 12 months from the date of the last exchange, unless there is a reason to keep them longer (such as an ongoing dispute).

Analytics data. Anonymised and aggregated. No personal data is retained.

Journal data stored locally on your device is under your full control and can be deleted by uninstalling the app or clearing its data.

You have the right to:

• ✦Access the personal data we hold about you
• ✦Correct inaccurate data
• ✦Ask us to delete your data (the right to erasure)
• ✦Withdraw consent at any time, where consent is the lawful basis
• ✦Lodge a complaint with the ICO if you believe we have mishandled your data

To exercise any of these rights, email us at grimoireapp@protonmail.com. The Information Commissioner's Office (ICO) is the UK supervisory authority for data protection. You can find out more at ico.org.uk.

This website does not use tracking or advertising cookies. Vercel Analytics, our website analytics tool, operates without cookies and does not collect personally identifiable information. No cookie consent banner is therefore required. If this changes, this policy will be updated and a cookie notice will be added to the site.

If you have a complaint about how we have handled your personal data, please email grimoireapp@protonmail.com with the subject line “Data Protection Complaint”. We will acknowledge your complaint within 5 working days and aim to resolve it within 30 days. If you are not satisfied with our response, you have the right to escalate your complaint to the Information Commissioner's Office at ico.org.uk/make-a-complaint.

Grimoire is not directed at children under 13. We do not knowingly collect personal data from children. If you believe a child has provided us with their data, please contact us and we will delete it promptly.

We may update this policy from time to time. The date at the top of this page shows when it was last updated. We will notify waitlist subscribers of any material changes.

Questions about this policy or your data? Email us at grimoireapp@protonmail.com.