Privacy Policy | LifeGoals

Introduction

LifeGoals ("we," "our," or "us") respects your privacy and is committed to protecting your personal data. This privacy policy explains how we collect, use, and safeguard your information when you use our life goals assessment service at lifegoalsapp.com (the "Service").

Data Controller

The data controller responsible for your personal data is:

Cuon AB

Organization number: 559459-3526

VAT number: SE559459352601

Sweden

For any questions about this privacy policy or our data practices, you can contact us at:

Email: privacy@lifegoalsapp.com

Information We Collect

Assessment Responses: When you take our assessment, we collect your ratings for each life goal (current state and desired state). This data is stored locally in your browser for free assessments and in our database for paid assessments.

Email Address: If you choose to email your results or create an account, we collect your email address. We use this to send your results and, for account holders, to enable login via magic link.

Payment Information: When you purchase the full assessment, payment is processed securely by Stripe. We do not store your credit card details. Stripe may collect information necessary to process your payment in accordance with their privacy policy.

Usage Data: We collect usage data through PostHog analytics, including pages visited, features used, assessment progress, and interactions with our service. This helps us understand how users engage with our product and improve the experience.

AI-Generated Insights: For full assessment users, we offer AI-powered personalized insights. When you choose to generate these insights, your assessment results (including category scores, top gaps, and strengths) are sent to Anthropic's Claude AI service to generate a personalized summary. This data is processed in accordance with Anthropic's Privacy Policy. The generated insights are stored in our database and associated with your assessment for future reference.

Legal Basis for Processing (GDPR)

We process your personal data under the following legal bases:

Contract Performance: Processing necessary to provide you with the Service you purchased (assessment delivery, account management).
Consent: Analytics tracking and marketing communications require your explicit consent, which you can withdraw at any time.
Legitimate Interest: Security monitoring, fraud prevention, and service improvement where our interests do not override your rights.
Legal Obligation: Where required by law, such as tax and accounting requirements.

How We Use Your Information

To provide and improve our life goals assessment service
To send you your assessment results via email (when requested)
To process payments for the full assessment
To enable account features for paid users
To send transactional emails related to your purchase or account
To send quarterly re-assessment reminders (if you opt in)
To analyze usage patterns and improve user experience (with consent)
To detect, prevent, and address technical issues and security threats

Data Storage and Security

Free Assessments: Your assessment data is stored locally in your browser's localStorage. This data remains on your device and is not transmitted to our servers unless you choose to email your results.

Paid Assessments: Your assessment data is stored securely in our database hosted on Neon (PostgreSQL) with servers in the EU. We use industry-standard encryption (TLS 1.3) and security practices to protect your data.

Security Measures: We implement appropriate technical and organizational measures including encryption in transit and at rest, access controls, regular security audits, and secure authentication mechanisms.

Data Retention

We retain your data for the following periods:

Account Data: Retained while your account is active and for 30 days after deletion request to allow for recovery if needed.
Assessment Data: Retained while your account is active. Deleted within 30 days of account deletion.
Payment Records: Retained for 7 years as required by tax and accounting regulations.
Analytics Data: Aggregated and anonymized analytics may be retained indefinitely. Individual session data is deleted after 90 days.
Email Communications: Transactional email logs retained for 1 year for troubleshooting purposes.

International Data Transfers

Some of our third-party service providers are located outside the European Economic Area (EEA). When we transfer your data internationally, we ensure appropriate safeguards are in place:

Stripe (US): EU-US Data Privacy Framework certified
Vercel (US): Standard Contractual Clauses (SCCs)
Resend (US): Standard Contractual Clauses (SCCs)
Sentry (US): Standard Contractual Clauses (SCCs)
PostHog (EU): Data stored in EU data centers
Neon (EU): Data stored in EU data centers
Anthropic (US): Standard Contractual Clauses (SCCs)

Third-Party Services

We use the following third-party services:

Stripe: For secure payment processing. See Stripe's Privacy Policy.
Resend: For sending transactional emails. See Resend's Privacy Policy.
Vercel: For hosting our application. See Vercel's Privacy Policy.
PostHog: For product analytics to understand how users interact with our service. PostHog data is stored in the EU. See PostHog's Privacy Policy.
Sentry: For error monitoring and application performance. Sentry helps us identify and fix issues to improve your experience. See Sentry's Privacy Policy.
Neon: For secure database hosting (PostgreSQL). See Neon's Privacy Policy.
Anthropic: For AI-powered personalized insights generation using Claude. When you request AI insights, your assessment results are processed by Anthropic to generate personalized recommendations. See Anthropic's Privacy Policy.

Your Rights (GDPR)

Under the General Data Protection Regulation (GDPR) and similar privacy laws, you have the following rights:

Right to Access: Request a copy of your personal data
Right to Rectification: Request correction of inaccurate data
Right to Erasure: Request deletion of your data ("right to be forgotten")
Right to Data Portability: Export your data in a machine-readable format (JSON)
Right to Restrict Processing: Limit how we use your data
Right to Object: Opt out of marketing and non-essential communications
Right to Withdraw Consent: Withdraw consent for data processing at any time
Right to Lodge a Complaint: File a complaint with your local data protection authority

Self-Service Options: Account holders can manage their data directly from their account settings, including:

Export all your data (assessment history, account information) in JSON format
Delete your account and all associated data permanently
Manage email preferences (marketing, reminders)
Unsubscribe from communications with one click

For any other requests or assistance, contact us at privacy@lifegoalsapp.com. We will respond to your request within 30 days.

Cookies and Local Storage

We use the following technologies to store data in your browser:

Essential Cookies: Session cookies to maintain your login session. These are strictly necessary for the application to function and do not require consent.
LocalStorage (Essential): Used to save your assessment progress so you can resume later. Required for core functionality.
Analytics Cookies (Consent Required): PostHog uses localStorage to maintain a consistent user identifier for analytics. These are only set after you accept cookies in our consent banner.

Cookie Consent: When you first visit our site, you will see a cookie consent banner. Analytics tracking only activates after you click "Accept." You can change your preferences at any time from your dashboard settings.

We do not use advertising cookies or sell your data to third parties.

Age Restrictions

Our Service is not intended for children under 16 years of age. We do not knowingly collect personal data from children under 16. If you are a parent or guardian and believe your child has provided us with personal data, please contact us at privacy@lifegoalsapp.com and we will delete such information.

Changes to This Policy

We may update this privacy policy from time to time. We will notify you of any material changes by email (if you have an account) and by posting the new policy on this page with an updated "Last updated" date. We encourage you to review this policy periodically. Your continued use of the Service after changes constitutes acceptance of the updated policy.

Contact Us

If you have any questions about this privacy policy, our data practices, or wish to exercise your rights, please contact us:

Email: privacy@lifegoalsapp.com

Response Time: We aim to respond to all privacy-related inquiries within 30 days.

Introduction

Data Controller

The data controller responsible for your personal data is:

Cuon AB

Organization number: 559459-3526

VAT number: SE559459352601

Sweden

For any questions about this privacy policy or our data practices, you can contact us at:

Email: privacy@lifegoalsapp.com

Information We Collect

Email Address: If you choose to email your results or create an account, we collect your email address. We use this to send your results and, for account holders, to enable login via magic link.

Legal Basis for Processing (GDPR)

We process your personal data under the following legal bases:

Contract Performance: Processing necessary to provide you with the Service you purchased (assessment delivery, account management).
Consent: Analytics tracking and marketing communications require your explicit consent, which you can withdraw at any time.
Legitimate Interest: Security monitoring, fraud prevention, and service improvement where our interests do not override your rights.
Legal Obligation: Where required by law, such as tax and accounting requirements.

How We Use Your Information

To provide and improve our life goals assessment service
To send you your assessment results via email (when requested)
To process payments for the full assessment
To enable account features for paid users
To send transactional emails related to your purchase or account
To send quarterly re-assessment reminders (if you opt in)
To analyze usage patterns and improve user experience (with consent)
To detect, prevent, and address technical issues and security threats

Data Storage and Security

Data Retention

We retain your data for the following periods:

Account Data: Retained while your account is active and for 30 days after deletion request to allow for recovery if needed.
Assessment Data: Retained while your account is active. Deleted within 30 days of account deletion.
Payment Records: Retained for 7 years as required by tax and accounting regulations.
Analytics Data: Aggregated and anonymized analytics may be retained indefinitely. Individual session data is deleted after 90 days.
Email Communications: Transactional email logs retained for 1 year for troubleshooting purposes.

International Data Transfers

Some of our third-party service providers are located outside the European Economic Area (EEA). When we transfer your data internationally, we ensure appropriate safeguards are in place:

Stripe (US): EU-US Data Privacy Framework certified
Vercel (US): Standard Contractual Clauses (SCCs)
Resend (US): Standard Contractual Clauses (SCCs)
Sentry (US): Standard Contractual Clauses (SCCs)
PostHog (EU): Data stored in EU data centers
Neon (EU): Data stored in EU data centers
Anthropic (US): Standard Contractual Clauses (SCCs)

Third-Party Services

We use the following third-party services:

Stripe: For secure payment processing. See Stripe's Privacy Policy.
Resend: For sending transactional emails. See Resend's Privacy Policy.
Vercel: For hosting our application. See Vercel's Privacy Policy.
PostHog: For product analytics to understand how users interact with our service. PostHog data is stored in the EU. See PostHog's Privacy Policy.
Sentry: For error monitoring and application performance. Sentry helps us identify and fix issues to improve your experience. See Sentry's Privacy Policy.
Neon: For secure database hosting (PostgreSQL). See Neon's Privacy Policy.
Anthropic: For AI-powered personalized insights generation using Claude. When you request AI insights, your assessment results are processed by Anthropic to generate personalized recommendations. See Anthropic's Privacy Policy.

Your Rights (GDPR)

Under the General Data Protection Regulation (GDPR) and similar privacy laws, you have the following rights:

Right to Access: Request a copy of your personal data
Right to Rectification: Request correction of inaccurate data
Right to Erasure: Request deletion of your data ("right to be forgotten")
Right to Data Portability: Export your data in a machine-readable format (JSON)
Right to Restrict Processing: Limit how we use your data
Right to Object: Opt out of marketing and non-essential communications
Right to Withdraw Consent: Withdraw consent for data processing at any time
Right to Lodge a Complaint: File a complaint with your local data protection authority

Self-Service Options: Account holders can manage their data directly from their account settings, including:

Export all your data (assessment history, account information) in JSON format
Delete your account and all associated data permanently
Manage email preferences (marketing, reminders)
Unsubscribe from communications with one click

For any other requests or assistance, contact us at privacy@lifegoalsapp.com. We will respond to your request within 30 days.

Cookies and Local Storage

We use the following technologies to store data in your browser:

Essential Cookies: Session cookies to maintain your login session. These are strictly necessary for the application to function and do not require consent.
LocalStorage (Essential): Used to save your assessment progress so you can resume later. Required for core functionality.
Analytics Cookies (Consent Required): PostHog uses localStorage to maintain a consistent user identifier for analytics. These are only set after you accept cookies in our consent banner.

We do not use advertising cookies or sell your data to third parties.

Age Restrictions

Changes to This Policy

Contact Us

If you have any questions about this privacy policy, our data practices, or wish to exercise your rights, please contact us:

Email: privacy@lifegoalsapp.com

Response Time: We aim to respond to all privacy-related inquiries within 30 days.