← Back to home

Privacy Policy · VibeKin

Last updated: 2026-05-16

1. Who we are

VibeKin is a self-discovery and relationships app: it helps you understand yourself and stay close to the people who matter — family, friends, and partners. Astrology is the lens it uses to spark those conversations, not the point of the app. It is built and operated by a solo founder. If you have any questions about this policy, reach us at support@vibekin.app.

We do not sell your personal data.

2. Data we collect

  • Account data: email address, display name, birth date / time / place of birth.
  • Sign-in with Apple / Google: we support Sign in with Apple and Google Sign-In. When you use these services, they share your email address with us (and, only on your first Apple sign-in, your full name). We never receive or store your Apple/Google password.
  • Family and Kin data: profile information shared with family members or Kin contacts — only shared after the invited contact accepts the invite.
  • Chat data: messages you send to Lumi (our AI companion) are private to you; messages in family chat are visible to the family members you have connected with.
  • Device data: push notification token, operating system, platform, and locale — used to send you notifications and display the app correctly.
  • Purchase data: subscription entitlement status and product ID via RevenueCat. We never see your card number or full payment details — those stay with Apple or Google.

3. How we use your data

We use your data to:

  • Provide the service — compute natal charts, daily transits, and compatibility readings.
  • Generate astrology readings and power Lumi’s responses.
  • Deliver push notifications you have opted into.
  • Send transactional email (OTP codes, account-related messages).
  • Debug crashes and improve the product.

Some of these features are AI-powered. When you chat with Lumi or generate a reading, the text and birth-chart details needed to produce a response are sent to the third-party AI providers listed in Section 4 to generate it. VibeKin does not train AI models on your data.

4. Third-party processors

  • Apple (Sign in with Apple) — verifies your Apple ID when you choose to sign in with Apple; shares your email (and full name on first sign-in only).
  • Google (Google Sign-In) — verifies your Google account when you choose to sign in with Google; shares your email.
  • OpenRouter (Delaware, USA) — AI gateway that routes Lumi chat, compatibility readings, and daily insights to one of the LLM sub-processors listed below. The active model may change over time among these sub-processors.
  • Anthropic (USA) — large language model sub-processor (via OpenRouter).
  • OpenAI (USA) — large language model sub-processor (via OpenRouter).
  • Google (USA) — large language model sub-processor (Gemini family, via OpenRouter).
  • DeepSeek (China) — large language model sub-processor (via OpenRouter).
  • Voyage AI — generates text embeddings used for Lumi’s memory recall.
  • RevenueCat — manages subscription billing and entitlement.
  • Resend — delivers transactional email (OTP, account notifications).
  • Sentry — captures error and crash data for debugging.
  • PostHog — aggregate product analytics (usage patterns, no ad targeting).
  • Expo Push Notifications — routes push notifications to your device.
  • Fly.io — hosts our backend API and astrology service.
  • Neon — managed Postgres database where your account and chart data is stored.
  • Upstash — managed Redis cache used for real-time features.

5. Children’s data

VibeKin requires users to be at least 13 years old. Users aged 13–17 have restricted access: when an adult invites a minor (or a minor invites an adult), the connection defaults to view-only until both parties confirm. We do not target advertising to users under 18.

If you believe a child under 13 has created an account, contact us at support@vibekin.app and we will delete the account promptly.

We process your data under the following legal frameworks:

  • Brazil’s LGPD — our primary framework as a LatAm-first product. Legal bases: contract performance and legitimate interest.
  • EU GDPR — for users in the European Economic Area. Legal bases: contract performance, consent (push notifications), and legitimate interest (security, analytics).
  • California CCPA-adjacent rights — California residents may exercise the rights described below.

7. Your rights

You have the right to access, export, correct, or delete your personal data. To exercise any of these rights, email support@vibekin.app. We will respond within 30 days.

To delete your account directly, use the in-app option (Profile → Legal & data → Delete my account).

8. Data retention

Chat messages and memory embeddings are kept until you delete your account. Once deletion is requested, your data is permanently removed within 30 days. Aggregated, anonymized analytics data is retained for up to 24 months.

9. Changes to this policy

If we make material changes to this policy, we will notify you by email before those changes take effect.

10. Contact

Email: support@vibekin.app

Terms · vibekin.app