Privacy Policy

AI Tarot Service

Last updated: 2026-05-07

This Privacy Policy explains how AI Tarot Service (“the Service”, “we”, “us”) collects, uses, retains, and protects your information when you use our application.

1. Information We Collect

We collect minimal information necessary to operate, secure, personalize, and improve the Service.

1.1 Information You Provide

Depending on how you use the Service, we may collect:

  • Optional text input related to tarot readings, such as questions, themes, prompts, or reflections
  • Account-related information, if applicable, such as email address, username, user ID, or login method
  • Reading records, journal entries, feedback, or support messages

We do not require users to provide real names or unnecessary personally identifying details to use core features.

1.2 Automatically Collected Information

We may collect limited technical and usage information, including:

  • Device type
  • Operating system
  • App version
  • Language or region
  • General usage data, such as session duration, feature usage, card draws, and app interactions
  • Crash logs, diagnostic data, and security logs

This information is used to improve performance, stability, security, and user experience.

2. Tarot Content & User Inputs

Any questions, prompts, or contextual inputs provided for tarot readings are used to generate and personalize the requested interpretation.

Tarot-related inputs are expressive and reflective content. They are not treated as factual claims, verified records, or professional information.

We do not use tarot inputs to make legal, medical, financial, employment, credit, housing, insurance, or similarly significant decisions about you.

3. Payment Information

Payments made through the Service may be processed by third-party payment providers, app stores, or billing platforms, such as Apple App Store, Google Play, Stripe, or other supported providers.

We do not directly collect or store:

  • Credit or debit card numbers
  • Bank account details
  • Payment authentication data

Payment information is handled by the relevant payment provider according to their own privacy and security policies.

We may receive limited transaction metadata, such as:

  • Confirmation of payment
  • Subscription status
  • Product type
  • Transaction ID
  • Billing country or region, if applicable
  • Refund or cancellation status

This information is used for account access management, subscription verification, customer support, fraud prevention, accounting, and compliance.

4. Digital Purchases & Subscriptions

If you purchase memberships, digital card skins, AI reader appearances, or other digital content:

  • Purchase records may be linked to your account
  • Digital items are virtual and exist only within the Service
  • Subscription status may be used to manage access to paid features
  • Transaction records may be retained for accounting, compliance, dispute resolution, and fraud prevention

We do not associate purchases with real-world identity unless necessary for billing, support, compliance, or security purposes.

5. How We Use Your Information

We use collected information to:

  • Provide tarot readings and app functionality
  • Generate AI interpretations and reflective content
  • Save reading records and account preferences
  • Operate memberships, subscriptions, and paid features
  • Verify purchase and subscription status
  • Improve the Service and user experience
  • Respond to support inquiries
  • Prevent fraud, abuse, duplicate promotional rewards, and unauthorized use
  • Maintain security, stability, and compliance

We do not sell user data or use tarot reading inputs for advertising profiling.

6. Data Sharing

We do not share personal data with third parties except where necessary to operate the Service, process payments, provide infrastructure, improve stability, prevent fraud, or comply with legal obligations.

This may include:

  • Payment processors and app stores
  • Cloud hosting and infrastructure providers
  • AI processing providers
  • Analytics, crash reporting, and diagnostics providers
  • Customer support and security providers
  • Legal authorities when required by law

Third-party service providers are expected to process data in accordance with applicable data protection requirements.

7. Data Retention

We retain user data only for as long as reasonably necessary to provide the Service, maintain security, meet legal or accounting requirements, resolve disputes, enforce our terms, and prevent fraud or abuse.

Some records may be retained after account deletion where required or permitted by law, including transaction records, subscription records, reading records, usage logs, fraud-prevention records, support records, and compliance-related records.

8. Account Deletion & Data Deletion

Users may initiate account deletion at any time through the account deletion option in the MysticX app.

We offer two deletion options:

  • Soft Delete: Soft Delete is the standard in-app deletion process. Your personal information will be anonymized or de-identified where reasonably possible, and your account will be disabled. Account history, including transactions, subscription records, reading records, usage logs, and fraud-prevention records, may be retained for compliance, accounting, security, dispute resolution, and fraud prevention purposes. You may re-register with the same email, but you will not receive the welcome bonus again.
  • Hard Delete: For verified GDPR or other privacy-related requests, your account and all personal data that is not legally required or permitted to be retained may be permanently deleted by administrators after identity verification. This cannot be undone.

Deleting your account does not automatically cancel subscriptions purchased through Apple App Store, Google Play, or other third-party platforms. You must cancel subscriptions through the platform where you purchased them.

For Hard Delete requests or privacy questions, contact us at:

[email protected]

9. Data Security

We implement reasonable technical and organizational measures to protect your data.

However, no system can be guaranteed 100% secure.

You use the Service at your own discretion and risk.

10. Children’s Privacy

The Service is not intended for users under 18 years of age, or under the age of legal majority in their jurisdiction.

We do not knowingly collect personal data from children.

11. International Users

If you access the Service from outside our operating country or region, you understand that your data may be processed in jurisdictions with different data protection laws.

12. Changes to This Policy

We may update this Privacy Policy from time to time.

Continued use of the Service after updates indicates acceptance of the updated policy.

13. Contact Us

If you have questions about this Privacy Policy, your data, account deletion, or privacy requests, contact us at:

[email protected]