Privacy Policy

Last Updated: October 28, 2025

1. Introduction

Welcome to Haiku ("we," "our," or "us"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application that provides AI-powered Bible study insights.

By using our app, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Account Information

• Email address: Required for account creation and communication
• Password: Encrypted and securely stored
• Name (optional): For personalization
• Subscription status: Free, Scholar, or Pro tier

2.2 Usage Data

• Bible verses you view: To provide personalized insights and improve recommendations
• Translation preferences: Your preferred Bible translation
• AI insight requests: Verses you request AI insights for (not your custom questions)
• Notes and highlights: Stored securely in your account
• Reading history: To enable features like "recently viewed"
• App usage analytics: How you interact with features (anonymized)

2.3 Payment Information

• Processed by Stripe: We never see or store your full credit card number
• We store: Subscription status, transaction IDs, and billing email
• Stripe stores: Payment methods, billing addresses, purchase history

2.4 AI Interaction Data

• Custom AI questions (Pro tier only): Questions you ask our AI about verses
• Purpose: To improve AI responses and prevent abuse
• Note: Pre-computed insights for standard verses are not tracked individually

2.5 Technical Information

• Device type and operating system (iOS/Android)
• App version
• IP address (for security and rate limiting)
• Device identifiers (for push notifications)

3. How We Use Your Information

We use the collected data to:

• Provide AI insights: Generate personalized biblical commentary and context
• Sync your data: Notes, highlights, and preferences across devices
• Manage subscriptions: Process payments and provide tier-appropriate features
• Improve the app: Understand which features are most valuable
• Communicate with you: Account updates, new features, and support
• Prevent abuse: Rate limiting and detecting suspicious activity
• Comply with legal obligations: As required by law

4. Third-Party Services

We use trusted third-party services to operate our app:

4.1 Supabase (Database & Authentication)

• What they process: User accounts, notes, highlights, preferences
• Location: Data stored in secure cloud infrastructure
• Privacy Policy: supabase.com/privacy

4.2 Scripture API (bible.api.bible)

• What they provide: Bible text in multiple translations
• Data shared: Which verses you request (minimal tracking)
• Privacy Policy: scripture.api.bible/privacy

4.3 Anthropic Claude / OpenAI GPT (AI Insights)

• What they process: Bible verses and your custom questions (Pro tier)
• Data retention: Anthropic/OpenAI may temporarily log requests for abuse prevention
• Note: We don't send personally identifiable information with AI requests
• Privacy Policies:
  • Anthropic: anthropic.com/privacy
  • OpenAI: openai.com/privacy

4.4 Stripe (Payment Processing)

• What they process: Payment information, billing details
• Security: PCI-DSS compliant, industry-leading encryption
• Privacy Policy: stripe.com/privacy

4.5 Analytics (If Applicable)

• Service: Firebase Analytics
• Purpose: Understand app usage patterns (anonymized)
• Opt-out: You can disable analytics in app settings

5. Data Sharing and Disclosure

We do NOT sell your personal information.

We may share your information only in these limited circumstances:

• With your consent: When you explicitly agree
• Service providers: Third parties listed above who help operate our app
• Legal requirements: If required by law, court order, or government request
• Protecting rights: To enforce our terms or protect against fraud/abuse
• Business transfer: If we're acquired or merged with another company

6. Data Security

We implement security measures to protect your information:

• Encryption: Data encrypted in transit (HTTPS/TLS) and at rest
• Password security: Passwords hashed using industry-standard algorithms
• Access controls: Limited employee access to personal data
• Regular audits: Security reviews and updates
• Secure infrastructure: Hosted on trusted, compliant platforms

Note: While we strive to protect your data, no internet transmission is 100% secure. Use strong passwords and enable two-factor authentication when available.

7. Your Privacy Rights

7.1 Access and Portability

• View your data: Access account settings to see your information
• Export your data: Request a copy of your notes, highlights, and preferences
• How to request: Contact us at support@haikubible.app

7.2 Correction and Deletion

• Update information: Edit your profile in app settings
• Delete your account: Option available in Settings > Account > Delete Account
• What happens: All personal data permanently deleted within 30 days
• Exceptions: We may retain transaction records for legal/tax purposes (7 years)

7.3 Marketing Communications

• Unsubscribe: Click "unsubscribe" in any email or adjust settings in the app
• Essential emails: Account security and billing notices still sent

7.4 Region-Specific Rights

For EU/UK Users (GDPR):

• Right to access, rectification, erasure, and data portability
• Right to restrict processing or object to processing
• Right to withdraw consent
• Right to lodge a complaint with your local data protection authority

For California Users (CCPA):

• Right to know what personal information is collected
• Right to delete personal information
• Right to opt-out of sale (we don't sell data)
• Right to non-discrimination for exercising your rights

To exercise these rights: Email us at support@haikubible.app

8. Children's Privacy

Our app is designed to be family-friendly and appropriate for all ages, including children. We are committed to protecting children's privacy:

• Parental consent: Users under 13 require parental consent to create an account
• Minimal data collection: We collect only what's necessary for app functionality
• No advertising: We don't show ads or collect data for advertising purposes
• COPPA compliance: We comply with the Children's Online Privacy Protection Act

Parents: Contact us at support@haikubible.app to review, update, or delete your child's information.

9. Data Retention

• Active accounts: Data retained as long as your account is active
• Inactive accounts: Accounts inactive for 2+ years may be deleted after notice
• Deleted accounts: Data permanently deleted within 30 days
• Legal obligations: Some data (transactions) retained for 7 years as required by law
• Cached AI insights: Pre-computed insights stored indefinitely (not linked to users)

10. International Data Transfers

Our services are hosted in the US. If you access our app from outside this region, your data may be transferred internationally. We ensure adequate protection through:

• Standard contractual clauses approved by EU authorities
• Hosting with providers that comply with GDPR and international privacy frameworks
• Encryption of all data in transit and at rest

11. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect:

• Changes in our practices
• New features or services
• Legal or regulatory requirements

We will notify you of significant changes via:

• Email to your registered address
• In-app notification
• Updated "Last Updated" date at the top of this policy

Continued use of the app after changes constitutes acceptance of the updated policy.

12. Do Not Track Signals

Our app does not respond to "Do Not Track" browser signals, as we collect minimal analytics data essential for app functionality. You can disable optional analytics in app settings.

13. California Shine the Light Law

California residents can request information about personal information shared with third parties for direct marketing purposes. As stated earlier, we do not share personal information for third-party marketing.

© 2025 Haiku Word LLC. All rights reserved.
This Privacy Policy is effective as of October 28, 2025