Privacy Policy
Last updated: March 13, 2026
1. Information We Collect
When you create an account, we collect your email address and authentication credentials. When you use our tarot reading service, we store your reading history including cards drawn, spread type, and AI-generated interpretations. Card draws use client-side cryptographic randomness and are not influenced by any server-side data.
2. How We Use Your Information
We use your information to provide and improve our tarot reading service, manage your subscription, and communicate service updates. Your readings are private and never shared with third parties. We do not sell your personal data.
3. Data Storage & Security
Your data is stored securely on Supabase (PostgreSQL) with row-level security policies. Authentication is handled through Supabase Auth. Payment information is processed and stored by Stripe — we never see or store your full card details.
4. Third-Party Services
We use the following third-party services: Supabase (database and authentication), Stripe (payment processing), Anthropic (AI interpretation), Vercel (hosting and analytics), and PostHog (product analytics). Each service has its own privacy policy governing their handling of data.
5. Your Rights
You can access, update, or delete your account and reading history at any time through your settings page. To request complete data deletion, contact us at privacy@tarotveil.com.
6. Cookies
We use essential cookies for authentication and session management. Analytics cookies (Vercel Analytics, PostHog) help us understand how our service is used. You can disable non-essential cookies in your browser settings.
7. Contact
For privacy-related questions, contact us at privacy@tarotveil.com.