Privacy Policy

1. Introduction

BeSeen (“we,” “our,” or “the App”) is a mood journaling app built by MBOA, Inc. We are committed to protecting your privacy. This Privacy Policy explains what information we collect, how we use it, and your rights regarding your data.

BeSeen is designed as an offline-first, privacy-first application. Your journal entries are stored locally on your device and are never uploaded to our servers unless you explicitly choose to share them with a partner.

2. Information We Collect

2.1 Information Stored on Your Device

The following data is created and stored entirely on your device. We never see or have access to it unless you explicitly choose to share it with a partner (see Section 2.2).

• Check-In Data — Mood level, mood label, emotion tags, activities, people, locations, body map sensations, and optional text notes. Stored in a local SQLite database.
• Media Attachments — Photos and voice recordings you attach to check-ins, stored on your device filesystem.
• Onboarding Survey Responses — Your reasons for using the app and how you heard about it.
• Display Name — The name you enter during onboarding. If you use partner features, it is also stored on our servers so your partner can identify you.
• Profile Photo — An optional avatar image. If you use partner features, your avatar is also stored on our servers so your partner can identify you.

2.2 Information Collected When You Use Partner Features (Optional)

Partner features require you to create an account. If you choose to sign in:

• Authentication Information — If you sign in with Apple, we receive your Apple-provided identity token (and optionally your name and email, as controlled by Apple's privacy settings). If you sign in with email, we collect your email address to send a one-time verification code.
• Shared Check-In Data — When you choose to share a check-in with your partner, the data you select to share (mood, summary, or full entry including media) is uploaded to our servers hosted on Supabase.
• Partner Messages — Quick replies, buzz notifications, and Invisible Ink messages sent between partners. Encryption varies by message type:

  Type	Encryption	Notes
  Invisible Ink messages	End-to-end (X25519 + XSalsa20-Poly1305)	Deleted after read or after 24 hours, whichever comes first. We cannot decrypt.
  Daily prompt responses	End-to-end (X25519 + XSalsa20-Poly1305)	We cannot decrypt.
  Shared check-in notes	End-to-end (X25519 + XSalsa20-Poly1305)	We cannot decrypt.
  Quick replies (text)	End-to-end (X25519 + XSalsa20-Poly1305)	We cannot decrypt.
  Quick reply emoji	None	Selected from a preset list; stored in plain text.
  Buzz / Miss You	n/a	No content; counter increment only.

• Push Notification Token — If you enable notifications, your device's push token is stored on our server to deliver partner notifications and reminders.

2.3 Information Collected Automatically

• Analytics Events — We use PostHog (routed through f.beseen.love, hosted on PostHog's US servers) to collect pseudonymous usage events (e.g., “check-in created,” “reminder set up,” “partner tab viewed”). Events are linked to your account UUID — not your name or email directly, but linkable to your account. They include metadata such as mood level and tag count but never include journal text, audio content, image content, or message bodies. Analytics are disabled in development builds.
• Device Information — Standard device metadata collected by PostHog (device type, OS version, app version).
• Crash Reports — We use Sentry to collect crash reports and error diagnostics in production. These include stack traces, device type, OS version, and app state at the time of the error. Crash reports do not include journal content, media, or personal messages.

2.4 Information We Do NOT Collect

• We do not collect your GPS location or precise location data.
• We do not read or access your contacts, calendar, or other personal data on your device.
• We do not sell, rent, or trade your personal information to third parties.
• We do not use your data for advertising or ad targeting.
• We do not perform user fingerprinting (NSPrivacyTracking is set to false).

3. How We Use Your Information

4. Data Storage and Security

4.1 Local Storage (Default)

Your check-in data, preferences, and media are stored locally on your device using SQLite and the device filesystem. This data never leaves your device unless you explicitly share it.

Authentication tokens are stored in your device's secure enclave (iOS Keychain) via expo-secure-store.

4.2 Cloud Storage (Optional Partner Features)

If you use partner features, shared data is stored on Supabase (hosted infrastructure). Data is protected by:

• Row-level security policies ensuring you can only access your own data.
• Encrypted connections (HTTPS/TLS) for all data in transit.
• Supabase's infrastructure security practices.

Partner messages are encrypted as detailed in Section 2.2. Push notifications for partner messages contain generic text only; however, replies from a partner on an older app version may include a short text preview.

We analyze partnership activity patterns on our servers to send re-engagement nudges (e.g. if neither partner has shared in 7 days). You can disable these at any time via Partner Notifications and Gentle Nudges in the app's Settings.

4.3 Analytics

PostHog analytics data is sent to PostHog's US servers (us.i.posthog.com). No personally identifiable journal content is included in analytics events.

5. Data Sharing

We do not sell your data. We share data only in the following limited circumstances:

• With Your Partner — When you explicitly choose to share a check-in, the data you select is visible to your connected partner.
• Service Providers — We use the following third-party services to operate the App:
  • Supabase — Database, authentication, file storage, and real-time features for partner functionality.
  • PostHog — Pseudonymous product analytics.
  • Sentry — Crash reporting and error diagnostics.
  • Expo Push Notification Service — Delivery of push notifications.
  • Apple Sign-In — Authentication (if you choose this method).
  • Resend — Email delivery for verification codes, trial reminders, and other transactional emails.
• Legal Requirements — We may disclose information if required by law, regulation, or legal process.

6. Your Rights and Choices

6.1 Data Control

• Local Data — You can delete individual check-ins within the app at any time. Uninstalling the app removes all local data.
• Shared Data — You can stop sharing check-ins with your partner at any time.
• Account Deletion — You can delete your account from within the app. This permanently removes your authentication record, profile, all partnerships, shared check-ins, partner messages, and uploaded media from our servers.

6.2 Permissions

All device permissions (camera, microphone, photo library) are requested only when needed and can be revoked at any time in your device's Settings.

6.3 Notifications

You can disable push notifications at any time through your device's Settings or within the app.

6.4 Analytics Opt-Out

You can opt out of analytics data collection at any time in the app's Settings under Usage Analytics.

6.5 Rights Under GDPR / CCPA

If applicable, you have the right to:

• Access the personal data we hold about you.
• Request correction of inaccurate data.
• Request deletion of your data.
• Object to or restrict processing of your data.
• Data portability.
• Lodge a complaint with your local Data Protection Authority (for EU/EEA residents).

To exercise these rights, contact us at the email below.

7. Children's Privacy

BeSeen is not directed at children under 13. We do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided us with personal information, please contact us and we will delete it.

8. Data Retention

• Local Data — Retained on your device until you delete it or uninstall the app.
• Shared Data — Retained on our servers until you delete your account or dissolve your partnership.
• Invisible Ink Messages — Automatically deleted from our servers after they are read by the recipient, or after 24 hours, whichever comes first.
• Analytics Data — Retained for up to 1 year, then automatically deleted.
• Crash Reports — Retained for 90 days, then automatically deleted.

9. International Data Transfers

BeSeen is operated by MBOA, Inc. in the United States. If you are located outside the US (including in the EU/EEA), your data may be transferred to and processed in the United States through the following service providers:

• Supabase (US) — database, authentication, file storage
• PostHog (US) — pseudonymous product analytics
• Sentry (US) — crash reporting
• Resend (US) — email delivery
• Expo (US) — push notification delivery and over-the-air updates

These providers maintain Standard Contractual Clauses (SCCs) or equivalent safeguards approved by the European Commission to ensure an adequate level of data protection for international transfers.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by updating the “Last Updated” date and, where appropriate, through in-app notification. Continued use of the App after changes constitutes acceptance of the updated policy. Where applicable law requires active consent for material changes to data processing, we will seek it before the changes take effect.

11. Contact Us

If you have questions about this Privacy Policy or wish to exercise your data rights, contact us at: help@beseen.love

MBOA, Inc.
131 Continental Dr, Suite 305
Newark, DE 19713, United States