Privacy Policy

Last updated: July 9, 2026

witchlog ("we", "us", accessible at witchlog.com) is an AI-powered emotional wellness companion. Your trust matters deeply to us — especially because the content you share here is personal. This policy explains what we collect, why, and the choices you have.

1. Data we collect

2. How your sensitive content is protected

Conversation messages and diary summaries are encrypted at rest with AES-256-GCM before being written to our database. All traffic is encrypted in transit with TLS. Access to production systems is limited to the operators of this service.

3. How we use your data

4. What we never do

5. Your rights (GDPR & equivalent laws)

You may request access to, correction of, export of, or deletion of your personal data at any time by emailing support@witchlog.com. Account deletion permanently removes your conversations, diary entries, and personal data within 30 days.

6. Data retention

Your content is retained while your account is active so your diary and history remain available to you. Order records are retained as required by tax law. Security logs are retained for up to 90 days.

7. Not a medical service

witchlog is a self-reflection and wellness tool. It is not a medical device, does not provide medical or psychological diagnosis or treatment, and is not a substitute for professional care. If you are in crisis, please contact your local emergency number or a crisis hotline immediately.

8. Children

witchlog is not directed at children under 16, and we do not knowingly collect their data.

9. Changes

We will post any material changes to this policy on this page and update the date above. Continued use after changes constitutes acceptance.

10. Contact

Data controller: witchlog.com. Questions and privacy requests: support@witchlog.com.