Privacy Policy

Last Updated: April 29, 2026

Who We Are

Data Controller: Euphora Labs, TOO

Registered Address: Krylova 44, Karaganda, Kazakhstan

UK Representative (Article 27 UK GDPR): Ilya Tsymbal, Room 1603F, Block A, White Rose View, 16 Merrion Way, Leeds LS2 8PT

EU Representative (Article 27 EU GDPR): In the process of being appointed. This policy will be updated with their details.

What Data We Collect

Data Stored on Your Device

Your personal content is encrypted on your device using AES-256-GCM. The encryption key is held in the iOS Keychain, and may sync through iCloud Keychain if you have it enabled, so your data can be restored on a new device. We cannot access or read this data.

Encrypted on your device:

Thoughts (cards)
Tasks, goals, and missions
AI Chapters (your weekly written chapters generated from your data)
Your 3D island and the history of its changes
Big Five personality assessment scores
Customizable reminders
Widget and Live Activity data (kept on your device only, never transmitted over the network)

Stored in your iOS app settings on your device:

Pronouns
App preferences (reminder times, color theme, week start day)

Read from iOS, not stored by the app or on our servers:

Apple Health, Apple Calendar, and Apple Reminders data. Accessed only with your permission, and only while your weekly chapter is being generated. See "Data Processed When Your Weekly Chapter Is Generated" below for details.

Data Processed When Your Weekly Chapter Is Generated

Each week, when your chapter is generated, the following data is sent from your device through our backend to Anthropic for AI processing:

Thoughts: your written entries
Task data: your tasks, goals, and missions
Big Five personality scores: your scores from the assessment
Pronouns: your pronoun preference
Previous chapters: recent weekly chapters, included as context
Current 3D island variant: the present state of your island, included as context
Apple Health: sleep, steps, heart rate, HRV, workouts
Apple Calendar: event titles, times, and durations
Apple Reminders: counts only (completed, pending, overdue)

This data transits our backend servers but is not stored on them. It is forwarded to Anthropic for processing and discarded from our servers immediately after the response is returned.

Subscription Data

When you subscribe, Apple processes your payment. RevenueCat manages your subscription status on our behalf. Data processed includes:

Purchase receipts and transaction history
Subscription status and renewal dates
Anonymous subscriber identifier

We do not receive or store your payment card details, billing address, or Apple ID.

Technical Data

IP address: held in server memory for rate limiting. Deleted after 5 minutes. Not stored in any database. Not linked to your identity or content.
Device identifier (UUID): used for request deduplication. Cached for up to 6 days. Not linked to your identity or content.

Anonymous Analytics

We use PostHog (EU hosting) to collect anonymous usage signals (e.g., "app opened", "card created"). Each device is identified by an anonymous identifier generated locally; we do not create user profiles. IP addresses are processed by PostHog only to derive approximate region and are not stored with analytics events. No personal content or identifiable information is collected.

Referral Source

When you complete onboarding, the app sends the source you came from (e.g., TikTok, Reddit, friend) to our backend, which increments an aggregate counter on Upstash Redis. Only a counter per source category is stored. No device identifier, IP address, or any other identifying information is associated with this signal.

Big Five Test on the Website

The website at nightmare.app/test hosts an optional personality test. Your answers to the 20 questions are processed entirely in your browser and never leave your device.

What we store on Upstash Redis (EU):

The random code: to transfer your scores to the iOS app without retaking the test.

The 5 Big Five scores (integers 0-100): openness, conscientiousness, extraversion, agreeableness, neuroticism
A randomly generated 8-character code used to retrieve them
Auto-deletes after 3 days

Anonymous usage counters: to understand how the test is used.

Aggregate counts only
No device identifier, IP address, email, cookie, or any other identifying information

The random code cannot be used to identify you and is not linked to any other data we hold. Using the code in the app is optional: you can always skip it and take the identical test directly in the app instead.

Why We Process Your Data

Weekly chapter generation. Performance of contract. Chapters are generated automatically each week as part of your subscription.
Subscription management. Performance of contract. Necessary to provide the paid service.
Rate limiting and abuse prevention. Legitimate interests. Protecting service availability and ensuring fair access for all users.
Anonymous analytics. Legitimate interests. Understanding how the app is used so we can improve it. Anonymous device identifiers only, no user profiles, IP addresses not stored with events.

Providing your thoughts (cards) is necessary to receive weekly chapters. If you do not provide this data, the app continues to function, but weekly chapters cannot be generated.

Who Receives Your Data

Anthropic (USA). AI processing. Retains data for up to 30 days (longer if flagged for safety review). Not used for AI model training.
RevenueCat (USA). Subscription and purchase management. Retains data for the duration of your subscription.
Railway (EU, Netherlands). Backend hosting. Data transits but is not stored.
Upstash (EU). Redis caching. Holds request deduplication flags (up to 6 days), the Big Five test code bridge (maximum 3 days, deleted on claim), and aggregate referral source counters (no identifying information). No personal content is stored.
PostHog (EU). Anonymous analytics only. No personal data stored with events.
Apple. Payment processing (App Store) and automatic encrypted iCloud backup (data is encrypted on your device before upload; runs in the background while you have iCloud enabled).

We do not sell, rent, or share your personal data for advertising or marketing purposes. No third party uses your data for AI model training.

International Data Transfers

Your data may be transferred to and processed in countries outside your country of residence:

United States (Anthropic, RevenueCat). Protected by Standard Contractual Clauses (SCCs) and, where applicable, the EU-US Data Privacy Framework.
European Union (Railway, PostHog, Upstash). Adequate protection under UK and EU data protection law.

Data Retention

Local device data: controlled by you. Delete anytime via Settings > Delete All Data.
IP addresses: 5 minutes (server memory only).
Device identifier cache: up to 6 days.
Big Five test code bridge: maximum 3 days, deleted immediately on claim in the iOS app.
Anthropic: up to 30 days (longer if flagged for safety review).
RevenueCat: duration of subscription, plus as required by applicable law.
PostHog: anonymous events retained per provider's standard retention.

Your Rights

Under UK GDPR, EU GDPR, and applicable data protection laws, you have the right to:

Access your personal data
Rectify inaccurate data
Erase your data
Restrict processing
Data portability: receive your data in a structured, commonly used, machine-readable format
Object to processing based on legitimate interests
Withdraw consent where processing is based on consent

Since your data is stored locally on your device, you can access, edit, export, or delete it directly in the app (Settings > Backup & Export or Settings > Delete All Data).

To exercise any right or ask questions: [email protected]. We respond within one month.

Personality Assessment & AI-Generated Content

Big Five Personality Assessment

The app includes a personality assessment based on the Big Five (OCEAN) model, taken during onboarding. Your scores are stored locally on your device. Each week, when your chapter is generated, your scores are included in the data sent to Anthropic to personalize the tone and framing of your chapter.

AI-Generated Content

Chapters and reflection questions are generated by artificial intelligence (Anthropic Claude). AI output may contain inaccuracies, errors, or inappropriate content. AI output does not constitute professional advice of any kind.

Nightmare is not therapy, medical advice, diagnosis, or mental health treatment. The AI is not a licensed professional. Do not use it for crisis situations, diagnosis, or treatment decisions. If you need support, contact a qualified mental health professional or emergency services: 999 (UK), 988 (US), 112 (EU).

Data Security

AES-256-GCM encryption for your personal content on device
TLS 1.2 or higher for all data in transit (TLS 1.3 for our backend)
Encryption keys stored in iOS Keychain, synced via iCloud Keychain when you have it enabled
No user accounts or passwords to compromise
No server-side storage of personal content

Children's Privacy

Minimum Age

Nightmare is for users aged 13 and older.

If You Are Under 13

We do not knowingly collect personal data from anyone under 13. If you are under 13, please do not use Nightmare. If a parent or guardian informs us that their child under 13 has used the app, we will delete any data we can associate with that child's device. Parents can also remove all local data themselves by using the "Delete All Data" button in the app's Settings.

If You Are Between 13 and 17

You may use Nightmare. Some countries require a parent or guardian's permission for users under a certain age. By using Nightmare, you confirm that you have any parental permission required in your country.

How We Protect Younger Users

The privacy protections described throughout this policy apply equally to users of all ages. This includes on-device encryption, no advertising or data sales, anonymous analytics only, and no required accounts or personal information.

For Parents

If you are a parent or guardian and have questions about your child's data, you can:

Ask what data (if any) we have about your child
Request that we delete your child's data
Ask us to stop processing your child's data

Email us at [email protected].

For US Residents

We do not sell your personal information. We do not share personal information for targeted advertising. We do not use sensitive personal information for purposes beyond what is disclosed in this policy.

Under applicable US state privacy laws (including the California Consumer Privacy Act, as amended), you have the right to:

Know what personal information we collect and how it is used
Request correction of inaccurate information
Request deletion of your data
Opt out of any sale of personal information (we do not sell)

We will not discriminate against you for exercising these rights.

To exercise your rights: [email protected]

Complaints

If you have concerns about how we handle your data:

Contact us: [email protected]
UK: Information Commissioner's Office
EU: Your local Data Protection Authority

Changes to This Policy

We may update this policy. Material changes will be reflected by an updated "Last Updated" date at the top of this page. Continued use of the app after changes constitutes acceptance of the updated policy.

Contact

Euphora Labs, TOO

Address: Krylova 44, Karaganda, Kazakhstan

Email: [email protected]