Privacy Policy
Felek turns a photo of your coffee cup into a short, for-entertainment reading. We built it to collect as little about you as possible. This policy explains what we handle, why, who helps us, and the choices you have. If anything here is unclear, email support@felek.app and we will explain it in plain words.
Who we are
Felek is operated by CVPK Digital Studio LLC, a New York limited liability company. For anything about your data, or to use any of the rights below, write to support@felek.app. For privacy purposes, we are the controller of your data.
What we collect
| Cup photo | The photo you take of your cup. Sent to our AI providers to generate your reading, then deleted within 30 days. Please photograph the cup, not people. |
| Your email | Only if you create an optional account so readings sync across devices. We use a magic-link sign-in, so there is no password. |
| Name and question | Only if you choose a personalized reading. Used once to write that reading, then not reused. |
| Saved readings | If you save a reading, the text (and the cup photo for a short window) is stored in your journal until you delete it. |
| Device and diagnostic info | Basic app and device identifiers, app version, and crash data, used for fixing bugs, rate limiting, and security. No advertising identifier. |
| Purchase info | When you buy a reading, Apple or Google process the payment and tell us a purchase happened. We never see your card details. |
What we do not do
We do not sell your data. We do not share it for cross-context behavioral advertising. We do not run third-party ads, and we do not build advertising profiles. We do not use facial recognition, and we do not collect biometric identifiers. A coffee-ground pattern is not a fingerprint or a faceprint, and we do not treat it as one. You do not need an account to get the core reading.
How we use your data, and our legal bases
If you are in the UK or EU, the GDPR asks us to name a legal basis for each use. Here they are:
| Generate your reading and run the app | To perform the service you asked for (contract). |
| Optional account and journal sync | To provide the account feature you chose (contract). |
| Fix crashes, prevent abuse, rate limit, keep the app secure | Our legitimate interest in a working, safe app. |
| Push notifications | Your consent, given through the system prompt. You can turn them off any time. |
AI processing
To create a reading, your cup photo and any details you add are sent to our AI providers, currently Google (Gemini), OpenAI, and Anthropic. They process your content only to generate your reading, on our behalf, under contracts that do not permit them to use your content for their own purposes, including training their models. The reading itself is written by AI, and we say so plainly in the app.
Who we share with
We use a small set of providers who process data on our behalf so the app can work:
| Google, OpenAI, Anthropic | Read your cup photo and inputs to generate the reading. |
| Supabase | Hosts our database and stored readings (servers in the EU, Paris). |
| Sentry | Crash and error diagnostics so we can fix problems. |
| PostHog | Privacy-friendly product analytics (how features are used, not who you are). |
| Expo | Delivers push notifications if you turn them on. |
| Apple, Google | Process in-app purchases as the seller of record. |
We may also disclose data if the law requires it, or to protect the rights and safety of our users or the public.
Data retention
Cup photos are deleted within 30 days. Readings you save stay in your journal until you delete them or close your account. Your account and email stay until you delete your account. Diagnostic data is kept briefly and in aggregate. Records of purchases may be kept as long as needed for tax and accounting, though Apple and Google hold the bulk of that.
International transfers
We are based in the United States. Our database sits in the EU (Paris), and some of our providers are in the United States. When data about people in the UK or EU moves across borders, we rely on the safeguards our providers offer, such as the European Commission's Standard Contractual Clauses and, where it applies, the EU-US Data Privacy Framework. If you use Felek from outside the United States, you understand your data may be processed in the United States and other countries.
Your rights and choices
Wherever you live, you can:
- See what we hold about you.
- Correct it.
- Delete a saved reading, or your whole account and data, from Settings in the app or by emailing us. See Delete account.
- Ask for a copy of your data to take elsewhere.
- Object to a particular use, or withdraw consent (for example, turn off notifications).
To make a request, email support@felek.app. We respond within the time the law allows (usually about 30 to 45 days), at no charge for reasonable requests, and we will not treat you differently for asking.
California privacy (CCPA and CPRA)
If you are a California resident, you have the rights above, plus the right to opt out of the sale or sharing of your personal information and to limit the use of sensitive personal information. We do not sell or share your personal information, and we have not in the past twelve months, so there is nothing for you to opt out of. We do not use sensitive personal information to infer characteristics about you. The categories we collect are: identifiers (such as email and device identifiers), visual information (your cup photo), internet activity (basic app usage), the content you submit (a name or question for a personalized reading), and commercial information (your purchases). We collect these to run the app and deliver your reading. We honor Global Privacy Control signals where they apply, and you may use an authorized agent to make a request.
Europe and the UK (GDPR)
The controller is CVPK Digital Studio LLC, reachable at support@felek.app. Our legal bases are listed above. You have the rights to access, rectification, erasure, restriction, portability, and objection, and you can withdraw consent at any time. Providing your data is needed to deliver the reading you ask for; the account is optional. If you think we have handled your data badly, you can complain to your local data protection authority (in the UK, the Information Commissioner's Office).
Children
Felek is not directed at children under 13, and you must be at least 13 to use it. We do not knowingly collect data from children under 13. If we learn that we have, we delete it. If you are a parent and believe your child has used Felek, email us and we will help.
Security
We keep data in transit encrypted, limit who can reach it, and collect as little as we can in the first place. No app or service can promise perfect security, but we work to keep yours safe and to fix problems quickly.
Changes
We may update this policy. When we do, we post the new version here with a fresh date. If a change is significant, we will try to flag it in the app.
Contact
Questions about your data? Email support@felek.app.
CVPK Digital Studio LLC · felek.app