Privacy First

Your journal.
Your business.

Dandelion Reflect is built on a simple belief: a journal should be the most private space in your digital life. Here's how we make that real.

Secure Authentication

Sign in with email and password, a passwordless magic link, or Google OAuth. Your account is protected by industry-standard authentication through Supabase Auth with bcrypt password hashing and secure session tokens.

No Content Analytics

We don't analyze, read, mine, or process the content of your journal entries. No keyword tracking, no sentiment analysis, no behavioral profiling. Your words exist for you alone.

No AI Training

Your journal entries are never used to train AI models — ours or anyone else's. The breathing exercises and mood tracking features work entirely on your device without sending your personal data anywhere.

Row-Level Security

Every database query is enforced with Supabase Row-Level Security (RLS) policies. Even if someone accessed the database directly, they could only see their own entries. Your data is isolated at the infrastructure level.

What we deliberately don't do

  • No ads — ever
  • No data selling or sharing
  • No AI training on your entries
  • No third-party trackers
  • No social features or public profiles
  • No streak counters or guilt mechanics
  • No content analysis or sentiment mining
  • No email marketing about your journal habits

Frequently Asked Questions

Can anyone else see my journal entries?+

No. There are no social features, no sharing buttons, no public profiles. Dandelion Reflect is a purely personal journal. Your entries are only accessible when you're logged into your account.

Do you sell my data?+

No. We don't sell, share, or monetize your data in any way. We don't run ads. We don't have data partnerships. Your journal exists for one person: you.

What happens if I delete my account?+

All your journal entries, mood data, and account information are permanently deleted. We don't keep backups of deleted accounts or retain your data after deletion.

Is my data encrypted?+

Data is encrypted in transit (TLS/HTTPS) and at rest on Supabase's infrastructure. Your connection to Dandelion Reflect is always secured.

Do you use cookies or trackers?+

We use only essential cookies for authentication (keeping you logged in). No advertising cookies, no third-party trackers, no analytics scripts that follow you across the web.

Ready for a journal that respects you?

Start writing in a space where your privacy isn't a feature — it's the foundation.

Start Your Private Journal