Privacy Policy

The short version

SELV collects only what it needs to run the service. We do not sell your data. We do not show ads. We do not share your personal data with third parties except the services listed below that help us operate SELV.

What we collect

• Account data: your email address and authentication provider info (Google OAuth or email/password).
• Usage data: habits you create, completion history, XP earned, and app usage patterns (e.g. which screens you visit inside the app).
• Analytics data (only with your consent): pages visited on the marketing site, session duration, device type, and approximate location (country/city level via IP) — collected via Google Analytics.

We do not collect: your real name (unless you choose to enter it), payment information (SELV has no paid tier yet), or health data beyond what you voluntarily enter as habit names.

How we use your data

• To provide the SELV service: habit tracking, XP calculation, level progression.
• To improve the app: analytics data (where consented) helps us understand what works and what doesn't.
• To communicate with you: account-related emails only (password resets, significant updates). No marketing emails unless you opt in.

Third-party services

We use the following services to operate SELV. Each has its own privacy policy:

• Supabase — database hosting and authentication. Supabase Privacy Policy
• Vercel — hosting and edge network. Vercel Privacy Policy
• Google Analytics (GA4) — website analytics, loaded only with your explicit consent. Google Privacy Policy

Cookies

• Essential cookies: Supabase sets an auth token so you stay logged in. This cookie is required for the app to work and does not require consent under ePrivacy rules.
• Analytics cookies: Google Analytics sets _ga, _gid, and related cookies — but only after you click “Accept” in our cookie banner.

We do not use advertising cookies or tracking pixels.

You can change your cookie preference at any time via Cookie Settings in the footer.

Your rights (GDPR)

If you are in the EU or UK, you have the following rights regarding your personal data:

• Access: request a copy of the data we hold about you.
• Deletion: delete your account and all associated data from your settings page.
• Export: download all your data as JSON or CSV from your settings page.
• Withdraw consent: change cookie preferences any time via Cookie Settings in the footer.
• Object: object to any processing we haven't described here by contacting us.

To exercise any right, email us at privacy@getselv.app.

Data retention

• Account and habit data is kept until you delete your account.
• Analytics data is retained by Google per their policy; we configure GA4 to a maximum of 14 months.
• Deleted tasks are soft-deleted and permanently purged after 30 days.

Children

SELV is not directed at children under 16. If you believe a child has created an account, contact us at privacy@getselv.app and we will delete the account promptly.

Changes to this policy

If we make material changes to this policy, we will notify you via email or an in-app notice before the change takes effect. The “Last updated” date at the top of this page reflects the most recent revision.

Contact

Questions about this policy? privacy@getselv.app