Inkling by Divine Karma

Privacy Policy

Inkling is designed to collect the minimum data needed to make the practice useful — and to be honest about every byte we touch.

Last updated: April 26, 2026 Effective: April 26, 2026

At a glance

We do not sell your data.
We do not use third-party advertising networks.
We do not track you across other apps or websites.
We do not collect contacts, calendar, or location.
We do collect your trial scores so you can see your own progress.
Your journal entries are encrypted at rest with a per-account key.
Partner-session content is end-to-end protected; the server stores hashes, not plaintext.

Inkling ("the App," "we," "us") is a perception-training application published by Divine Karma ("the Publisher"). This Privacy Policy explains what data we collect, why we collect it, how we use it, and your rights.

Information we collect

Account information

When you create an account through our authentication provider (Clerk), we receive your email address, display name, and a unique user identifier. We use these to identify your account and contact you about important service changes. We do not market to your email address.

Practice data

Each perception trial you complete generates a row in our database with:

The modality (symbol, color, number, image, emotion)
The target the server selected
Your guess
Your stated confidence (0–100%)
Your response time
Whether the guess matched
The chance baseline at the time of the trial

This data powers your Insights screen. It is associated with your account and is never shared with third parties or other users.

Journal entries

Free-text reflections you write in the app are encrypted at rest using AES-256-GCM with a key derived per-user. We cannot read your journal entries from the database without your account-specific decryption material. Plaintext exists only in transit (over TLS) and in your local device memory while you are reading or writing.

The Decision Lockout filter scans entries for high-stakes phrases (medical, financial, legal, safety) and shows a soft warning, but the entry is always saved and the warning is for your benefit, not ours. We log only the category triggered (e.g., "financial") for service-quality monitoring; we do not log entry text.

Partner sessions

The server generates the target and delivers it privately to the sender's WebSocket connection.
Your guess is recorded against your account (same as a solo trial).
Comparison data shown in the reveal is computed from both participants' confidence and the target.
We do not store the real-time WebSocket frames after the session ends; only the resulting trial rows persist.

Community submissions

If you submit an impression to the weekly community challenge and opt in to "share to community," your text and matched words may appear (anonymously, with your initials) on the next week's reveal page. The opt-in is asked at submit time, not buried in settings; the default is private.

Diagnostic data

We collect anonymized crash reports and performance telemetry (no entry content, no journal, no PII beyond user ID) to fix bugs and improve performance. You can disable diagnostic collection in Settings.

What we do NOT collect

Contacts
Photos library (we only access the camera if you grant permission for the optional heart-rate prep mode, and the video is processed on-device only)
Calendar
Location (unless you opt in to a future Geographic-modality round, and even then only the target coordinate, never your real location)
Microphone audio (we use the microphone in partner sessions only to detect chatter, never to record or transmit audio)
Browsing history, IDFA, advertising identifiers

How we use your information

To provide the service: render your sessions, store your trial history, sync partner sessions in real time.
To compute insights: your accuracy charts, calibration plots, modality breakdowns are derived from your trial rows.
To match you with partners: when you accept a partner-session invite, we route the WebSocket between the two of you.
To debug: anonymized error reports help us find and fix bugs.

We do not use your data to train machine learning models for any purpose other than serving your own session, to personalize advertising, to sell to data brokers, or to profile you for credit, insurance, or employment purposes.

Sharing and disclosure

We share data only with the service providers required to operate Inkling:

Provider	Purpose	Data shared
Clerk	Authentication	Email, display name, login events
Replicate	CLIP image scoring	Text and target image URL during an image trial
RevenueCat	Subscription management	Subscription status, purchase events
Fly.io / hosting provider	Service hosting	All data, encrypted at rest
Apple / Google	App distribution	Subscription receipts, device info per platform requirements

Each provider is contractually obligated to handle data only on our behalf. None of them are permitted to use your data for their own purposes. We do not share data with advertisers, data brokers, or analytics providers that build cross-app profiles.

Data retention and deletion

Active accounts: we retain your data for as long as your account is active.
Inactive accounts: after 24 months of inactivity, we delete account data.
Account deletion: you can delete your account from Settings. Your data is irreversibly purged within 30 days of the deletion request. Anonymized aggregate statistics may be retained.
Journal entries: deleted along with your account.
Partner sessions: trial rows persist as part of your trial history; partner identifiers are anonymized after 90 days unless the pair remains active.

Your rights

Depending on your location, you may have the following rights:

Access: request a copy of your data. Use the "Export your data" button in Settings, or email privacy@divine-karma.com.
Correction: edit your display name and preferences in Settings.
Deletion: delete your account in Settings (irreversible after 30 days).
Portability: the export is a multi-section CSV you can move anywhere.
Opt out: turn off diagnostic collection in Settings; opt out of community sharing in Settings.
Withdraw consent: revoke notification permission, camera/microphone access, etc., from your device's system settings.

For users in California (CCPA), the EU/UK (GDPR), or other jurisdictions with specific privacy rights, additional procedures may apply. Contact privacy@divine-karma.com to exercise jurisdiction-specific rights.

Children

Inkling is not directed to children under 13 (or under 16 in certain jurisdictions). We do not knowingly collect data from children. If you believe we have collected data from a child, please contact us and we will delete it.

Security

All data in transit is encrypted with TLS 1.2 or higher.
Journal entries are encrypted at rest with AES-256-GCM.
Database backups are encrypted.
Access to production systems is limited to a small team with multi-factor authentication.
We perform regular security reviews.

No system is perfectly secure. If you discover a vulnerability, please email security@divine-karma.com — we maintain a coordinated disclosure process.

Changes to this policy

We will notify you of material changes via in-app notification and email at least 30 days before they take effect. Continued use after the effective date constitutes acceptance.

Contact

Divine Karma
Email: privacy@divine-karma.com
Web: divine-karma.com/inkling/privacy

For data protection inquiries in the EU/UK, please use the same email and mark "GDPR" in the subject line.