Privacy Policy
Last updated: 2026-07-13
Vincendio is a personal journal. You write private things here — reflections, moods, progress. We take that seriously, so below is exactly what we store, why, and who we trust it to. Plain language wherever plain language will do.
The short version: only you can see your journal. We do not sell your data, we show no ads, and we run no advertising or tracking analytics.
1. Who the data controller is
The controller of your personal data is the operator of Vincendio. For anything concerning your data, write to contact@vincendio.com. We answer every request.
2. What we collect
Only what the app needs to work:
- Account data: your email address, an optional name, and a password hash — never the password itself, only an irreversible hash of it.
- Journal content: morning intentions, priorities, todos, notes, evening reflections, day rating and energy level.
- Progress: completed milestones together with your notes and proof photos, workout entries (distance, duration), habits and their check-offs, favourite activities and quotes.
- Forum posts: the text, an optional photo and link, and your votes. This is the only part of the app other signed-in users can see.
- Integration tokens: a Google token (if you connect Calendar) and a Notion token (if you connect Notion). You connect these yourself and can disconnect them at any time.
- IP address: on sign-in, sign-up and password-reset attempts, solely to limit the number of attempts and protect accounts from attack. Details in section 5.
- Preferences: your interface theme and language.
3. Why, and on what legal basis
- Performance of a contract (GDPR Art. 6(1)(b)) — to provide the service at all: run your account, store your journal, compute progress, and show the forum.
- Legitimate interest (GDPR Art. 6(1)(f)) — security: limiting sign-in attempts and protecting against attacks and forum abuse.
- Consent (GDPR Art. 6(1)(a)) — optional integrations: Google Calendar and Notion. You connect them deliberately and can withdraw consent by disconnecting them in Settings.
4. Who we share data with
We do not sell your data and we do not share it with advertisers. We do rely on technical providers, without which the app could not run:
- Vercel — application hosting and photo storage (Vercel Blob).
- Neon — the PostgreSQL database holding your journal.
- Upstash — sign-in attempt counters (these hold an IP address for the life of the limit window).
- Resend — transactional email: address confirmation and password resets.
- Google — only if you sign in with Google or connect Calendar.
- Notion — only if you connect your own Notion workspace.
5. IP addresses and sign-in limits
When you sign in, sign up, or reset a password, we store your IP address as part of an attempt counter (in Upstash). This is what stops someone guessing passwords after a handful of tries. The counter expires by itself — after 15 minutes for sign-in, after an hour for sign-up and password reset — and the address goes with it. We do not build a profile from it and we never join it to your journal content.
Separately, our hosting provider (Vercel) keeps its own server logs, which also contain IP addresses, under its own policy.
6. Transfers outside the EEA
Your journal does not leave the European Union. The database is in Frankfurt (eu-central-1), the servers handling application requests are in Frankfurt (fra1), and so are your proof photos (Vercel Blob) and the sign-in attempt counters (Upstash). Everything you write and upload — entries, reflections, habits, progress, photos — is stored and processed inside the EU.
Only two things go outside the EEA, and we name them plainly:
- Transactional email (address confirmation, password reset) is sent through Resend, whose infrastructure is US-based. Your email address and the link itself go there — never your journal content. This is the one transfer that affects every user.
- Optional integrations — Google Calendar and Notion — run on those companies' infrastructure. This affects you only if you connect them, and stops affecting you when you disconnect them.
6a. The basis for those transfers
These providers base such transfers on Standard Contractual Clauses (SCCs) or on the Data Privacy Framework.
Vercel and Neon are US companies, even though the processing regions we have chosen are in the EU — any theoretical parent-company access rests on those same legal bases.
7. How long we keep data, and how to delete it
We keep your data for as long as your account exists. Nothing is deleted automatically — last year's journal is meant to remain last year's journal. The exceptions are email-verification and password-reset tokens, which expire on their own.
You can delete your account yourself, in Settings. Deletion is immediate and permanent: all of your data goes — journal, habits, workouts, progress, photos, and your forum posts and replies. We also hand back the access you granted us in Google. There is no grace period, and we keep no copy to give back to you.
Replies other people wrote under your forum posts stay. They are their words, not yours, and we have no right to delete them.
The app does not have a data export yet. We say so openly rather than promise a feature that does not exist: write to contact@vincendio.com and we will send you a copy of your data by hand. You can also write to that address about deleting your account, if for some reason you cannot do it yourself.
After deletion from the database, data may persist for a while in our providers' backups, which rotate on their own schedules.
8. Your rights
Under the GDPR you have the right to access your data, to have it corrected or erased, to restrict processing, to data portability, and to object to processing based on legitimate interest.
To exercise any of these, write to contact@vincendio.com. You also have the right to lodge a complaint with the Polish supervisory authority (Prezes Urzędu Ochrony Danych Osobowych, PUODO) if you believe we are handling your data unlawfully.
9. Cookies
We use only the cookies the site needs to function:
- Session cookies (Auth.js) — keep you signed in and protect against CSRF.
- A "locale" cookie — remembers your chosen interface language.
9a. What we do NOT use
We use no analytics or marketing cookies. There is no Google Analytics, no advertising pixel, and no tracking tool of any kind in the application's code. That is why you will not see a cookie-consent banner here — there is nothing to consent to.
Your colour theme is stored in your browser's local storage. That never leaves your device.
10. The forum
The forum is the only part of Vincendio that others can see. The posts, photos and links you publish there are visible to other signed-in users, along with the name on your account. Everything outside the forum — journal, habits, workouts, progress — is visible only to you.
You can delete your own posts at any time.
11. Changes to this policy
If we change how we handle data, we will update this document and change the date at the top of the page. For significant changes, we will tell you by email.