← Back
Privacy

Privacy Policy.

Effective May 16, 2026

Plain language, no surprises. This explains what Aspects May Vary collects, why, and the choices you have.

Who runs this

Aspects May Vary (the “app”) is operated by Aspects May Vary (the “operator,” “we,” “us”). Reach us about anything in this policy at hello@aspectsmayvary.com.

What we collect

To give you a personalized daily reading, we collect:

  • Birth data — your name (first only), date of birth, time of birth (if you know it), and birthplace (city/region, plus latitude and longitude derived from it). Used to compute your natal chart.
  • Account info — your email address, which you enter to sign in. Sign-in works by a single-use “magic link” we email to you; we never set, ask for, or store a password.
  • App preferences — your tone setting (Snarky or Unhinged), notification preference, and reading streak counters.
  • Generated content — your daily reading content (cached so the same day doesn’t regenerate), and any reports you submit on a reading.
  • Push notification tokens — only if you opt in to daily reminders.

We do not collect: precise location, contacts, photos, payment information, browsing history outside our app, biometrics, or any health information.

How we use it

  • Compute your natal chart from your birth data.
  • Generate your daily personalized reading using a third-party AI model (see below).
  • Sign you in and keep your session active.
  • Send you daily reminders, only if you opted in.
  • Improve the app — we may review aggregated usage patterns and submitted reports.

Who else touches your data

We use a small set of third-party services to run the app. Each only sees the data it needs:

  • Supabase — stores your profile, chart, readings, and reports. Hosted in the United States.
  • Vercel — hosts the app and processes requests. May log standard server metadata (IP address, user agent, timestamps) for security and performance.
  • Anthropic — generates your daily reading text from your chart data. Per Anthropic’s policy, inputs and outputs are not used to train their models for our usage tier.
  • Resend — sends the single-use magic-link sign-in emails. Sees your email address and the link token, nothing else.

We do not sell your data, share it with advertisers, or use it for any purpose unrelated to running the app.

How long we keep it

Your data lives in our database for as long as you have an account. When you delete your account (Settings → Delete account), every row tied to your account is permanently removed at the time of the request — profile, chart, cached readings, push subscriptions, and reports — through cascading database deletion. There is no recovery period; deletion is immediate and permanent.

Server logs (request metadata at Vercel and Supabase) may persist for up to 30 days for security and operational purposes, then are automatically expired by those providers.

Your rights

You can, at any time:

  • Access your data — visible in the app at /chart and /settings.
  • Correct your birth data — Settings → Recompute chart.
  • Delete your account and all associated data — Settings → Delete account.
  • Opt out of notifications — Settings → toggle off.
  • Request a copy of your stored data — email us at hello@aspectsmayvary.com and we’ll send it within 30 days.
  • Ask any question about how we handle your data — same email.

If you’re in California, the EU, the UK, or another jurisdiction with specific privacy rights, those rights apply to you here too. Contact us if you want to exercise them and we’ll comply.

Children

Aspects May Vary is not directed at children under 13, and we do not knowingly collect data from anyone under 13. If you believe a child has created an account, email us and we’ll delete it. The Unhinged tone setting is gated to users 18 and over because it contains occasional profanity.

Security

We use Supabase’s row-level security to ensure each user can only access their own data. Sign-in uses a single-use magic link emailed to you — no password is ever set, transmitted, or stored. All connections to and from the app use HTTPS. No security scheme is perfect; if we discover a breach affecting your data, we’ll notify you within 72 hours.

Cookies and tracking

We set a single authentication cookie so you stay signed in between visits. We do not use advertising cookies, third-party analytics that track you across sites, or any cross-site tracking technology.

Changes to this policy

If we change what data the app collects or how we use it, we’ll update this policy and change the effective date at the top. For substantive changes, we’ll also notify users in-app or by email before the changes take effect.

Contact

Questions, requests, or anything privacy-related: hello@aspectsmayvary.com.