Privacy Policy
AuraMap — Human Design App
Last Updated: February 7, 2026
AuraMap (“we,” “our,” or “the App”) is a Human Design charting and social platform. This Privacy Policy explains how we collect, use, and protect your information when you use our mobile application.
By using AuraMap, you agree to the practices described in this policy. If you do not agree, please do not use the App.
- Email address (required for account creation)
- Name (optional)
- Profile photo (optional)
- Bio (optional)
If you sign in with Apple or Google, we receive basic profile information from those services (email and name). We do not access your Apple or Google password.
1.2 Birth Data
To generate your Human Design chart, we collect:
- Date and time of birth
- Place of birth (city, country, coordinates)
- Timezone
This information is necessary for calculating your unique bodygraph chart and is stored securely on our servers.
1.3 User-Generated Content
When you use social features, we store:
- Posts and comments
- Direct messages
- Stories (automatically deleted after 24 hours)
- Reactions
- Shared charts
1.4 Social Connections
- Follower and following relationships
- Group memberships
- Blocked users
1.5 App Activity
- Gamification data (points, badges, streaks, challenge progress)
- Quiz responses and scores
- Subscription status and tier
- App preferences (theme, language, notification settings)
- Push notification tokens (for delivering notifications)
- Device preferences stored locally on your device
- We do not use advertising trackers or ad networks
- We do not use third-party analytics platforms
- We do not sell your data to data brokers
- We do not use cookies (the App is a native mobile application)
We use your information to:
- Create and manage your account
- Calculate and display your Human Design chart
- Enable social features (posts, messages, stories, discovery)
- Deliver push notifications you have opted into
- Process subscriptions and purchases
- Track gamification progress (points, badges, challenges)
- Personalize your experience (language, theme, content)
- Enforce content and sharing limits
- Maintain the security and integrity of the App
3. Third-Party Services
We use the following third-party services to operate the App:
| Service |
Purpose |
Data Shared |
| Supabase |
Backend infrastructure, authentication, database, file storage |
Account data, birth data, user content, social connections |
| RevenueCat |
Subscription and purchase management |
User ID, purchase receipts, subscription status |
| Firebase Cloud Messaging (Google) |
Push notification delivery |
Device push tokens |
| OpenStreetMap Nominatim |
Birth location search |
City/location search queries (no personal identifiers) |
We do not share your personal data with advertising networks, analytics companies, or data brokers.
4. Data Storage and Security
- Your data is stored on Supabase’s cloud infrastructure with encryption at rest and in transit.
- Passwords are hashed and never stored in plain text.
- Share links use cryptographically secure random tokens.
- OAuth sign-in uses CSRF protection and state parameter validation.
- Sensitive configuration keys are stored securely and never hardcoded in the application.
5. Data Retention
- Account data is retained for as long as your account is active.
- Stories are automatically deleted after 24 hours.
- Messages are retained while your account is active.
- Deleted account data is permanently removed via an atomic cascade process that removes all associated content, profile information, and authentication records.
6. Your Rights
Depending on your location, you may have the following rights:
6.1 Access and Portability
You can export all of your data in JSON format at any time through the App. This includes your profile, charts, posts, messages, gamification data, and quiz history.
6.2 Deletion
You can delete your account at any time through the App. Account deletion permanently removes all of your data, including:
- Profile and authentication records
- Charts and birth data
- Posts, comments, and reactions
- Messages
- Stories
- Social connections
- Gamification and quiz data
6.3 Correction
You can update your profile information, birth data, and preferences at any time within the App.
6.4 Notification Preferences
You can opt in or out of push notification categories (transits, affirmations, challenges) at any time in the App settings.
7. International Data Transfers
AuraMap is available worldwide. Your data may be processed in countries other than your own. Our service providers (Supabase, RevenueCat, Firebase) maintain appropriate safeguards for international data transfers in compliance with applicable data protection laws.
8. Children’s Privacy
AuraMap is not intended for children under the age of 13 (or the applicable minimum age in your jurisdiction). We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us and we will delete it.
9. GDPR (European Economic Area)
If you are located in the EEA, UK, or Switzerland:
- Legal basis: We process your data based on your consent (account creation), contractual necessity (providing the service), and legitimate interests (security, fraud prevention).
- Data Protection Officer: Contact us at the email below for data protection inquiries.
- Supervisory Authority: You have the right to lodge a complaint with your local data protection authority.
10. California Privacy Rights (CCPA)
If you are a California resident:
- We do not sell your personal information.
- We do not share your personal information for cross-context behavioral advertising.
- You have the right to know, delete, and opt out. Use the data export and account deletion features in the App, or contact us directly.
11. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes through the App or by other appropriate means. The “Last Updated” date at the top reflects the most recent revision.
If you have questions or concerns about this Privacy Policy or your data, please contact us at:
Email: jasonbrailowbizop@mail.com