Wishing Well: Reflections (the "App") is a product of Embera Systems, LLC ("Company," "we," "us," or "our"). This Privacy Policy explains how Embera Systems, LLC collects, uses, stores, and protects your personal information when you use the App. By creating an account or using the App, you consent to the practices described in this policy.
The App is intended for users aged 18 and older. We do not knowingly collect personal information from individuals under 18 years of age. If we become aware that a user is under 18, we will promptly delete their account and all associated data. If you believe a minor has provided us with personal information, please contact us at the address below.
When you create an account, we collect your email address and a password (stored in hashed form). During onboarding, you may optionally provide your first name, date of birth, and responses to self-assessment questions related to personality, values, and current life chapter. These responses are used solely to personalize your experience within the App.
When you use the App, we collect the text content you submit during memory sessions ("Memories") and the generated reflection text and images produced for you ("Generated Content"). To power the App's features, we store derived signals computed from your Memories — including short summaries, detected emotional categories, inferred life-period placements, recurring themes, named people and places, and silent quality scores. These signals remain in your private account and are used only to personalise the App for you.
We collect basic usage data necessary for the operation of the App, including authentication tokens and session information. We do not collect device identifiers, IP addresses for tracking purposes, or location data.
We use your information to operate and personalize the App, generate reflections based on your submitted content, store and retrieve your data across sessions, and communicate with you about your account. We do not use your information for advertising, marketing to third parties, or behavioral profiling. We do not sell, rent, or share your personal information with third parties for their marketing purposes.
We use the following third-party services to operate the App:
Supabase, Inc. provides our database hosting, user authentication, and file storage infrastructure. Your account data, Memories, Reflections, and generated images are stored on Supabase-managed servers. Supabase processes data in accordance with their privacy policy and applicable data processing agreements. You can view at supabase.com/privacy.
Anthropic, PBC provides the artificial intelligence service used to generate Reflections. When you initiate a reflection, relevant Memory content from your current cycle is transmitted to Anthropic's API for processing. Anthropic's data use policies, including whether API inputs may be used for model improvement, are governed by Anthropic's privacy policy and API terms. We encourage you to review Anthropic's policies at anthropic.com/privacy.
OpenAI, Inc. provides the image generation service used to create visual elements accompanying Reflections. Descriptive visual prompts derived from your Reflection content are transmitted to OpenAI's API. No raw Memory text is sent to OpenAI. OpenAI's data use policies are governed by their privacy policy at openai.com/policies/privacy-policy.
Stripe, Inc. provides our payment processing infrastructure for paid subscription tiers. When you initiate a checkout or manage your subscription, billing information (name, email, payment method details) is collected and processed directly by Stripe — we do not store payment card details on our servers. Stripe receives only the minimum information necessary to process the transaction. Stripe's data use policies are governed by their privacy policy at stripe.com/privacy.
We do not use any analytics, advertising, or tracking services.
Your data is stored on secure, access-controlled servers provided by Supabase. All data is transmitted using industry-standard encryption (TLS/SSL). Database access is restricted through row-level security policies that ensure you can only access your own data. Generated images are stored in private storage buckets accessible only through authenticated, time-limited signed URLs.
While we implement commercially reasonable security measures, no method of electronic storage or transmission is completely secure. We cannot guarantee absolute security of your data.
We retain your data for as long as your account is active. If you delete your account, we will delete all associated data, including Memories, Reflections, generated images, and profile information. Some data may persist in encrypted backups for a limited period consistent with our backup retention schedule, after which it is permanently deleted.
You have the right to access, correct, or delete your personal information at any time through the App's Settings screen. You may export your data through the App when that feature becomes available. You may delete your account at any time, which will result in the permanent deletion of all your data.
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information we collect, the right to request deletion, and the right to opt out of the sale of personal information. We do not sell personal information.
If you are located in the European Economic Area (EEA) or United Kingdom, you have rights under the General Data Protection Regulation (GDPR), including the right of access, rectification, erasure, restriction of processing, data portability, and the right to object to processing. Our legal basis for processing your data is your consent (provided at account creation) and the performance of our contract with you (the Terms of Service).
To exercise any of these rights, contact us at the address provided below.
The App does not use cookies for tracking or advertising. We use browser local storage to maintain your authentication session and store user preferences (such as interface settings). This data remains on your device and is not transmitted to third parties. For more information, see our Cookie and Local Storage Notice.
We may update this Privacy Policy from time to time. If we make material changes, we will notify you through the App or by other appropriate means before the changes take effect. Your continued use of the App after changes are posted constitutes your acceptance of the revised policy.
If you have questions about this Privacy Policy or wish to exercise your data rights, please contact us at:
Email: privacy@emberasystems.com
*Copyright 2026 Embera Systems, LLC. All rights reserved.*