Last Updated: 5/28/2024
The Moments application, operated by Moments Journal, Inc. (the ”Company”, ”Moments”, “we,” “us,” or “our”) provides an app-based application for consumers to capture, store, and unlock insights from life experiences by applying modern AI technology and for therapists to provide their clients with access to our tools (the “Services”). This Privacy Policy outlines how we collect, use, maintain, protect, and disclose your information. Our commitment to your privacy is not just an obligation; it's core to our mission of delivering a secure, private journaling experience. We view protecting your sensitive personal information as our foremost duty, ensuring it remains safe and private while offering you advanced tools for unlocking insights from your life experiences. We aim to provide complete transparency and clear, open communication to you regarding our data practices, so that you can make informed choices about your use of the Moments product.
We aim to collect as little information about you as possible. For consumers using our journaling product, we do not collect your name, email address, phone number in our account creation process. Instead, our account system is based on an anonymized identifier that you can see in the settings section of the app. We do not collect IP addresses, device identifiers, geolocations, or any other data that could be used to identify you. For therapists using our app, you provide us with personally identifiable information, such as your name, phone number, and email address, when you register for an account or in your use of our Services. For both consumers using our journaling product and therapists, we collect data on the actions taken by your account that help us understand your interactions with our Services, such as screens viewed and links clicked.
Moments unwaveringly upholds the strictest standards in safeguarding your sensitive journal data. Our entire reason for existing is to create a safe place for you to capture, store and benefit from your data. Under no circumstances will we compromise our integrity by sharing, selling, or distributing your information to third parties. We will never release data unless absolutely required to do so by law.
Ensuring the security of your data is our utmost priority, and we employ a variety of measures to safeguard your information:
Data Encryption: All data transmitted between you and our Services is secured using strong encryption protocols. This includes the use of Secure Socket Layer (SSL) technology, which ensures that your data remains private and integral. Additionally, we use MongoDB Atlas for data storage. MongoDB Atlas automatically encrypts all data in transit and at rest, providing an added layer of security for your data.
Access Control: We implement robust access control measures at the account level. We do not have access to your unencrypted data. Since all the encryption is on the user level, the only way to access data is using a master key, which we do not have access to.
Training: Our team is trained and updated on the latest security practices and data protection measures. This ensures that everyone who works on Moments understands the importance of data security and knows how to handle user information responsibly.
Third-Party Audits: We work with independent third-party experts to audit our security infrastructure and practices. This helps us identify and fix potential vulnerabilities, ensuring we maintain industry best practices.
Our mission is to provide a safe place for you to capture, store and extract insights from your life experiences. In every aspect, we adhere to the most stringent data management practices when it comes to your information. We aim to collect the minimal amount of information required to provide and develop the Moments Services including:
Service Access: We use your account information to grant you access to Moments, display your journal entries, and run reports and other text transformations and summarizations. For therapists, we use your account information to generate promotional codes and other services.
Personalized Experience: Your data aids in customizing your Moments experience, including presentation of your private journal entries and running customized reports on your behalf. We also use data to remember your settings and present relevant features and content.
Security and Protection: We use certain data for security purposes, safeguarding our app and users. This includes verifying accounts, preventing fraud, enforcing our Terms of Service, and complying with legal mandates.
Service Maintenance: We utilize information to maintain seamless service functionality. This includes addressing issues using technical data from your devices and interactions, ensuring compatibility, and keeping our Services operational.
Service Enhancement: By analyzing aggregated, anonymized data, we track trends and user behavior to understand interactions with Moments. This analysis helps us pinpoint areas for enhancement, create new features, and refine the overall user experience.
We use the following third-party services to provide the Moments Services:
Amplitude, Segment, and Sentry: These tools are used for analytics and user behavior monitoring to help us understand how our users use our app, to improve our services, and to fix bugs. All sensitive data, such as journal entries, are never sent to these services. All the data is anonymized and no IPs are tracked.
Auth0 and Twilio: We use Auth0 to provide authentication and authorization solutions for our therapist service and Twilio for sending text messages.
Azure Cloud Services: We use Azure to host our cloud services.
Azure OpenAI Service: We use OpenAI for advanced computational tasks, including but not limited to, transcription services, artificial intelligence operations and language processing. All sensitive data, such as journal entries, are anonymized before being processed through OpenAI's services. Learn more about OpenAI's usage policies.
MongoDB Atlas: We use MongoDB Atlas as our data storage provider, a widely trusted data storage provider. Your data is encrypted in transit and at rest. Learn more about Privacy and Security in MongoDB.
RevenueCat: We use RevenueCat to manage our in-app subscriptions.
Please note that these third-party service providers have their own privacy policies addressing how they use such information.
If all or substantially all of the ownership of the Company changes, your information may be transferred to the new owner(s) in order for the Services to continue to operate. In any such circumstance, your information would remain subject to any pre-existing Privacy Policy and you could determine, at that time, whether or not to continue using the Services.
We may amend this Privacy Policy at any time by posting the amended terms in the app. All amended terms shall automatically be effective immediately. We will notify you via the app or any communication channels we have that you have authorized us to use to contact you about any changes to the Services. Because we do not collect email addresses or phone numbers, we may have limited ways of contacting you about changes. Therefore, it is your responsibility to check the Site to determine if there have been changes made and to review such changes. Your continued use of the Services after any such changes constitutes your acceptance of the revised Privacy Policy. If you do not agree with a revised Privacy Policy or any future revisions, do not use or access (or continue to use or access) the Services.
Based on the applicable laws of your country, you may have the right to request access to the personal information we collect from you, change that information, or delete it in some circumstances. To request to review, update, or delete your personal information, please e-mail: support@getmoments.app
Laws in some US states, including California, Colorado, Connecticut, Utah, and Virginia, require us to provide residents with additional information about the categories of personal information we collect and share, where we get that personal information, and how and why we use it.
In the last 12 months, we collected the following categories of personal information, depending on the Services used:
You can find more information about what we collect and sources of that information in the Information USe of Information section above.
In some US states you have additional rights, subject to any exemptions provided by your state’s respective law, including the right to:
We do not “sell” or “share” your personal data as those terms are defined under the privacy laws of the relevant US states. We also do not have any knowledge of any “sales” or “sharing” of the personal data of minors under 16 years of age. We do not collect or process your sensitive personal information except where it is strictly necessary to provide you with our service, where the processing is not for the purpose of inferring characteristics about you, or for other purposes that do not require an option to limit under California law.
In some limited circumstances we may deny your request to exercise one of these rights. For example, if we cannot verify that you are the account owner we may deny your request to access information associated with the relevant account. As another example, if we are legally required to maintain a copy of your personal information we may deny your request to delete your information.
In the event that we deny your request, we will communicate this fact to you in writing. You may appeal our decision by responding in writing to our denial email and stating that you would like to appeal. All appeals will be reviewed by an internal expert who was not involved in your original request. In the event that your appeal is also denied this information will be communicated to you in writing.
If your appeal is denied, in some US states (Colorado, Connecticut, and Virginia) you may refer the denied appeal to the state attorney general if you believe the denial is in conflict with your legal rights. The process for how to do this will be communicated to you in writing at the same time we send you our decision about your appeal.
Privacy is our top priority. If you have any questions or concerns regarding this policy or any of our practices with regards to safeguarding your information, you can reach us at support@getmoments.app. You can also send us mail to Moments Journal, Inc., 601 15th Street, Boulder, CO 80302, USA or at support@getmoments.app.