Privacy Policy — GMGN: Decision Planner

Effective date: April 27, 2026 | Last updated: April 27, 2026

Contact: support@gmgndecisionplanner.com

# Privacy Policy — GMGN: Decision Planner

**Effective date:** April 27, 2026
**Last updated:** April 27, 2026

This Privacy Policy describes how the **GMGN: Decision Planner** mobile application for Apple iOS (the **“App”**) handles information when you install and use it. It applies to the App only (not to third-party websites you may open from links inside the App, unless stated).

**Operator / contact:** For questions about this Policy or your information, contact **support@gmgndecisionplanner.com**.

**Important:** The App provides **decision-structuring and reflection tools** and optional **AI-assisted text**. It is **not** a medical, mental-health, legal, financial, or other professional service. Outputs are **informational** only.

---

## 1. Quick summary

| Topic | What you should know |
|--------|----------------------|
| **Account** | The App does **not** require you to create an in-app user account. |
| **Default data location** | Your decision content and preferences are stored **on your device** (see Section 4). |
| **Cloud AI** | **Off by default.** If you turn it **on** in Settings, **text you enter** may be sent over **HTTPS** to a configured AI API endpoint to generate narrative content (see Sections 5–6). |
| **Advertising & sale of data** | We do **not** use your content for **cross-app tracking** or to **sell** your personal information as defined under U.S. state privacy laws. The App does not show third-party advertising. |
| **Children** | The App is **not directed** to children under **13** (or the minimum age required in your jurisdiction). |

---

## 2. Scope and definitions

- **“We,” “us,” “our”** refers to the operator of the App (the party responsible for the App in your territory), reachable at the contact email above.
- **“You”** means the person using the App.
- **“Personal information” / “personal data”** means information that identifies or can reasonably be linked to you. Much of what you type in the App is **sensitive in nature** (your thoughts, decisions, worries) even if we do not know your real name inside the App.

---

## 3. Categories of information we process

### 3.1 Information you enter in the App (on-device by default)

Depending on how you use the App, this may include:

**A. Decision planner & analysis**

- **Problem / decision description** (free text).
- **Options** you list (titles and identifiers stored as part of your session).
- **Journey notes** (if you use them): e.g. what success looks like, what matters most, biggest worry, core assumption — as implemented in the App.
- **Sliders / numeric inputs** used for context (e.g. perceived risk, confidence, and derived scores such as radar dimensions and option scores calculated **on your device**).
- **Commitment notes** and **post-decision check-in** text or choices you save with a session.

**B. Guidance (“coach”) reflection**

- **Answers** you provide to built-in reflection prompts (stored as prompt ID → text pairs).
- **Generated summary text** produced on-device or, if Cloud AI is enabled, returned from the cloud (see Section 5).

**C. Settings & app state**

- **Appearance mode** (light / dark / system).
- Whether you have **completed onboarding**.
- The **Cloud AI enabled** flag (whether you opted in to cloud processing).

All of the above is stored **locally** on the device using Apple’s standard app storage mechanisms (**UserDefaults** and encoded JSON for sessions), unless and until you enable Cloud AI (Section 5) or your device syncs data through **Apple’s own backup** systems (Section 8).

### 3.2 Information processed in the cloud (only if you enable Cloud AI)

When **Cloud AI** is **on** and available in your build, the App may send **HTTPS POST** requests to an **AI chat completions** endpoint. Payloads are designed to include **only what is needed** for the feature, for example:

- For **decision analysis:** your problem text, option titles, journey notes (if any), and numeric context (risk/confidence estimates) as described in the App’s prompts.
- For **Guidance → Generate insights:** your **reflection answers** paired with the **prompt questions** in a single text block.

The model identifier used in requests is typically **`deepseek-chat`** (DeepSeek-compatible API). Responses are **plain text** or **structured JSON** interpreted **on-device** and stored in your session or summary fields.

**Configured endpoint:** Production builds may set a custom base URL (for example **`https://llms.dotpoin.com/v1`** in the app configuration) or use the default DeepSeek API host. The effective host is determined by your installed build. That endpoint **may forward** requests to an upstream AI provider.

**API keys:** Some builds may include an API key in the app bundle or environment for development; release practices should follow platform guidance to minimize exposure.

### 3.3 Information we do **not** intentionally collect through the App

Based on the App’s design, we do **not** intentionally collect through the App:

- Precise **location**, **contacts**, **photos**, **camera**, **microphone**, or **Health** data.
- Your **Apple ID**, **phone number**, or **email address** — unless **you** choose to email us via a `mailto:` link.

If future versions add sensors or sign-in, we will update this Policy before or at the time of collection.

### 3.4 Optional App Store review prompt

The App may use Apple’s **StoreKit** API to request an **App Store rating**. Apple handles that flow under **Apple’s privacy policy**, not ours.

---

## 4. Purposes and legal bases (where GDPR applies)

We process information to:

1. **Provide the App’s features** (structure decisions, show scores and charts, save history) — **performance of the “contract”** with you as an end user and **legitimate interests** in operating a useful product.
2. **Optional Cloud AI** — based on your **consent** (you must enable the feature and confirm the in-app prompt). You may withdraw consent by turning Cloud AI **off** in Settings; this stops **new** cloud requests.
3. **Support** — when you contact us, **legitimate interests** / **contract** in responding to you.

---

## 5. Sharing, processors, and third parties

**On-device processing:** Analytical scoring and most narrative text when Cloud AI is **off** are computed **without** sending your decision text to our servers (there is no separate “our server” for core features in the default architecture).

**Cloud AI processors:** When Cloud AI is enabled, your content is transmitted to:

- The **HTTPS endpoint** configured in the App (e.g. a proxy such as **`llms.dotpoin.com`** or **`api.deepseek.com`** depending on configuration), and
- Any **subprocessor** that endpoint uses to run the model (e.g. **DeepSeek** or another provider exposing a compatible API).

We **do not control** those parties’ logging, retention, training use, or regional processing. You should read **their** privacy policies for how they handle prompts and completions.

**Apple:** App distribution, device OS, and optional **iCloud Backup** / device backup are governed by **Apple’s** terms and policies.

**Fonts:** The App bundles **Source Sans 3** font files (open-font licensing). Fonts do not transmit personal data by themselves.

---

## 6. Retention

- **On your device:** Data remains until you delete it or remove the App. You can delete saved sessions and related local content using **Settings → Clear all data** (and equivalent clearing of Guidance data where implemented).
- **In the cloud:** Retention depends entirely on the **configured AI endpoint operator** and upstream model provider. We cannot guarantee deletion of prompts already received by a third party; contact us and, where feasible, we will assist with **operator-level** questions.

---

## 7. Security

We use **HTTPS (TLS)** for any Cloud AI traffic. Local data relies on **Apple’s iOS app sandbox** protections. No method of storage or transmission is 100% secure; you should avoid entering highly sensitive secrets into any cloud-connected field when Cloud AI is on.

---

## 8. Device backup and transfer

If you use **iCloud Backup**, **iTunes/Finder backup**, or migrate to a new device, your **local** App data may be included in your backup at **Apple’s** discretion and under **Apple’s** policies. Cloud AI providers may be located **outside your country**; enabling Cloud AI may involve **international transfers** of the text you submit.

For **EEA/UK/Switzerland**, such transfers rely on appropriate safeguards where required (e.g. Standard Contractual Clauses implemented by processors such as DeepSeek or your infrastructure provider). Details depend on the processor you use.

---

## 9. Your rights

Depending on where you live, you may have rights to **access**, **correct**, **delete**, **restrict**, or **object** to certain processing, and rights related to **automated decisions** (the App does not make legally significant solely automated decisions about you; AI output is advisory text).

To exercise rights against **us** (the App operator), email **support@gmgndecisionplanner.com**. We may need to verify your request. For rights against **cloud processors**, you may also need to contact those providers directly.

**Do Not Sell or Share (California and similar):** We do not **sell** personal information or **share** it for cross-context behavioral advertising as defined in the CCPA/CPRA in the way those terms apply to our App. If our practices change, we will update this Policy and applicable notices.

---

## 10. Children’s privacy

The App is **not intended** for children under **13** (or higher age if required by local law). We do not knowingly collect personal information from children. If you believe a child has provided us information, contact us and we will take appropriate steps to delete it where required.

---

## 11. Automated processing and AI limitations

Cloud and on-device templates may produce **probabilistic** language. Outputs may be **inaccurate** or **incomplete**. They are **not** professional advice and are **not** tailored legal, medical, or financial recommendations. For emergencies, contact **local emergency services** or a qualified professional.

---

## 12. Changes to this Policy

We may update this Policy when we change the App or legal requirements. We will post the new **Effective date** at the top. If changes are material and legally required, we will provide additional notice (for example an in-app message or updated consent for Cloud AI).

---

## 13. In-app copy vs this web document

The App may display an **in-app summary** of this Policy for convenience. If there is a conflict, the **newer dated** document should prevail unless applicable law requires otherwise. For App Store submission, use the **public URL** of this Policy (or an equivalent hosted page with the same substance).

---

## 14. Contact

**Email:** support@gmgndecisionplanner.com

---

*This document was drafted to reflect the GMGN: Decision Planner iOS application structure (local UserDefaults storage, optional HTTPS AI, Guidance flow, StoreKit review prompt, and bundled fonts) as of the effective date above. Hostnames and API paths in your live build should match what you declare in App Store Connect and in your public policy.*