Privacy Policy for Moonifest: Your Daily Dashboard

Last Updated: November 25, 2024

Introduction

Moonifest ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Chrome extension.

Information We Collect

Personal Information

When you use Moonifest, we collect:

• Google Account Information: Email address, name, and profile picture (when you sign in with Google)
• Authentication Data: OAuth tokens for secure account access

User-Generated Content

We store the following data you create:

• Tasks and To-Do Items: Task titles, descriptions, priorities, due dates, reminders, and completion status
• Gratitude Journal Entries: Your daily gratitude reflections
• Manifestation Journal Entries: Your 369 manifestation practice entries
• Habit Tracking Data: Habit names, tracking history, and completion records
• User Preferences: Dashboard settings, theme preferences, and app configurations

Automatically Collected Information

• Device Information: Browser type and version
• Usage Data: Feature usage patterns to improve our service
• Local Storage Data: Settings and preferences stored locally in your browser

How We Use Your Information

We use your information to:

1. Provide the Service: Enable core functionality of the productivity dashboard
2. Sync Across Devices: Keep your data synchronized across browsers where you're signed in
3. Send Notifications: Deliver task reminders and notifications you've set up
4. Improve Our Service: Analyze usage patterns to enhance features
5. Process Payments: Handle Pro subscription payments (processed securely by Stripe)
6. Provide Support: Respond to your questions and support requests

Data Storage and Security

Where Your Data is Stored

• Supabase Database: All user-generated content is stored on Supabase (a third-party database provider)
• Local Browser Storage: Preferences and settings are stored locally in your browser
• Chrome Storage: Task reminders and app settings use Chrome's storage API

How We Protect Your Data

• Encryption in Transit: All data transmission uses HTTPS/SSL encryption
• Database Security: Supabase provides enterprise-grade security with Row Level Security (RLS) policies
• Authentication: Secure OAuth 2.0 authentication via Google
• Access Control: Only you can access your data when authenticated

Data Sharing and Third Parties

We work with the following third-party services:

Supabase (Database Hosting)

• Purpose: Store and sync your data
• Data Shared: All user-generated content
• Privacy Policy: Supabase Privacy Policy

Google (Authentication)

• Purpose: Secure sign-in via Google OAuth
• Data Shared: Email, name, profile picture
• Privacy Policy: Google Privacy Policy

Stripe (Payment Processing)

• Purpose: Process Pro subscription payments
• Data Shared: Payment information (we never store credit card details)
• Privacy Policy: Stripe Privacy Policy

We do not sell, rent, or share your personal data with any other third parties for marketing purposes.

Chrome Extension Permissions

Moonifest requests the following permissions:

Identity Permission

• Why: To authenticate you via Google OAuth
• What we access: Your email, name, and profile picture

Storage Permission

• Why: To save your tasks, journals, and preferences
• What we store: Tasks, journal entries, habits, settings

Alarms Permission

• Why: To send task reminder notifications
• What we do: Schedule notifications for tasks with reminders

Notifications Permission

• Why: To display task reminder alerts
• What we do: Show browser notifications at scheduled times

Host Permissions

• supabase.co: Database operations
• accounts.google.com: Google OAuth authentication
• googleusercontent.com: Display your Google profile picture

Your Data Rights

You have the right to:

Access Your Data

• View all your data within the Moonifest dashboard
• Export your data upon request

Modify Your Data

• Edit or delete any tasks, journal entries, or habits at any time
• Update your preferences and settings

Delete Your Account

• Request complete account deletion
• All your data will be permanently removed from our systems
• To delete your account, contact us at: moonifestapp@gmail.com

Opt-Out

• Uninstall the extension at any time
• Stop syncing by logging out

Data Retention

• Active Accounts: We retain your data as long as your account is active
• Deleted Data: When you delete items or your account, data is permanently removed within 30 days
• Inactive Accounts: Accounts inactive for 2+ years may be deleted after email notification

Children's Privacy

Moonifest is not intended for children under 13 years of age. We do not knowingly collect information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of changes by:

• Updating the "Last Updated" date at the top
• Posting the new policy on our website
• Notifying you via email for significant changes

California Privacy Rights (CCPA)

If you are a California resident, you have additional rights:

• Right to know what personal data is collected
• Right to delete personal data
• Right to opt-out of data sales (we don't sell data)
• Right to non-discrimination

European Privacy Rights (GDPR)

If you are in the European Economic Area, you have rights under GDPR:

• Right to access your data
• Right to rectification
• Right to erasure ("right to be forgotten")
• Right to data portability
• Right to object to processing

Contact Us

If you have questions about this Privacy Policy or our privacy practices:

• Email: moonifestapp@gmail.com
• Developer: Blake Scott
• Extension ID: fhbkcdngopdnsidenoglnmndpknahamb

Consent

By using Moonifest, you consent to this Privacy Policy and agree to its terms.