Privacy Policy
Mystic Arcana — Privacy Policy
App Name: Mystic Arcana
Website: https://mysticarcana.com
Operator: Mystic Arcana, LLC
Effective Date: June 18, 2025
This Privacy Policy applies to the Mystic Arcana mobile application ("App") and the Mystic Arcana website at mysticarcana.com ("Website"), collectively referred to as the "Service." By using the Mystic Arcana App or Website, you agree to the data practices described below.
Compliance Checklist:
|| Standard | Covered? | || ---------------- | -------- | || GDPR | ✅ | || CCPA | ✅ | || COPPA Disclaimer | ✅ | || PCI DSS (Stripe) | ✅ |
1. What We Collect (and Why)
To guide your path, we collect the following types of information:
| Data Type | Examples | Purpose |
|---|---|---|
| Identity & Profile | Name, email, birth date, age, gender, profession, interests | To personalize your readings and birth chart |
| Astrological Details | Birth location, current location | To generate accurate astrology insights |
| Behavioral Data | Interactions with cards, spreads, and journal entries | To tailor AI-generated guidance over time |
| Communication Logs | Comments, messages, Q&A participation | To support community connection and safety |
| Payment Info | Billing address, transaction history (via Stripe) | To manage subscriptions and purchases |
| Device & Usage | IP address, browser, device ID | To improve performance, security, and analytics |
2. How We Use Your Data
We use your data to:
- Deliver personalized tarot, astrology, and journaling experiences
- Interpret planetary influences based on your birth chart
- Offer relevant spreads, decks, and recommendations
- Analyze usage patterns to evolve our platform's wisdom
- Send optional updates, horoscopes, and event invitations (if opted in)
- Process secure payments and subscriptions
- Prevent abuse and ensure community safety
3. Who We Share It With
We only share your data with trusted service providers:
- Supabase – secure data storage and user authentication
- Stripe – payment processing
- Google Analytics – anonymous usage metrics
- Vercel – website deployment
- TikTok – login integration and content sharing (when you connect your TikTok account through the Mystic Arcana App)
- Affiliates – with clear link disclosure
- Legal authorities – only if legally required
We do not sell your personal information.
4. Connected Social Accounts & Third-Party Publishing
Mystic Arcana includes an optional social-publishing dashboard that lets you connect third-party social media accounts (for example, TikTok) and schedule or publish content to them.
- Connecting accounts is optional and user-initiated. You may connect one or more third-party social accounts through their official OAuth login. We never ask for, see, or store your third-party passwords.
- You control what is uploaded and submitted. You choose the media, captions, and settings for each post. We do not create or send content on your behalf automatically.
- Content is sent only after explicit action. Uploaded media and captions are transmitted to a connected third-party platform only after you explicitly schedule, submit, or publish a post to that platform — and only to the platform(s) you select. Nothing is sent without your action.
- OAuth tokens are used only for the requested integration. The access and refresh tokens we receive are used solely to provide the social-publishing features you requested (authorizing your account and publishing the posts you create). They are stored securely and are never sold or used for unrelated purposes.
- You can disconnect at any time. You may remove a connected social account from within the dashboard at any time, which revokes Mystic Arcana's ongoing access. You may also revoke access directly from the third-party platform's own settings.
- Third-party terms apply. Content you publish to a connected platform is also governed by that platform's own terms and policies.
Disconnecting an account, or deleting your Mystic Arcana account, stops any further use of those tokens. See "Your Rights & Choices" below, or contact privacy@mysticarcana.com.
5. Cookies & Tracking Technologies
We use cookies and local storage to:
- Remember login sessions
- Store spread and reading preferences
- Analyze user behavior anonymously
- Support affiliate referrals
You can manage your cookie preferences through your browser settings.
6. Your Rights & Choices
| Right | What You Can Do |
|---|---|
| Access | Request a copy of your personal data |
| Correction | Update or fix your data |
| Erasure | Delete your account and data |
| Portability | Export your data |
| Opt Out | Control email/marketing preferences |
Contact us at privacy@mysticarcana.com to exercise your rights.
7. Children & Youth Safety
Mystic Arcana is intended for users aged 16+. We do not knowingly collect data from children under 13.
Content is for spiritual entertainment only and is not a substitute for professional advice. We disclaim liability for actions taken based on readings.
8. Data Storage & Retention
- Stored securely via Supabase and encrypted
- Retained while account is active
- Anonymized data may be used for research and AI training
- Deleted upon request unless retention is required by law
9. International Transfers
Data may be processed outside your country. We follow international data transfer rules (e.g., SCCs) for lawful compliance.
10. Payments and Security
Payments processed securely through Stripe.
We do not store your card info.
SSL and security practices are in place to prevent fraud.
11. Fair Use Policy
Mystic Arcana respects and operates under the principles of Fair Use for any educational, transformative, or interpretive content shown in user-generated decks, public journals, blog tutorials, or custom readings.
We allow:
- Modified card interpretations and deck artwork under Creative Commons
- Educational or spiritual commentary on traditional archetypes
- Community spreads shared for discussion or teaching
You agree not to:
- Upload pirated deck scans, plagiarized material, or unlicensed commercial assets
- Claim Mystic Arcana content as your own outside the platform
- Bypass protections to resell our materials or AI-generated designs
We reserve the right to remove content violating fair use or copyright laws.
12. Changes to This Policy
We may update this policy. Significant changes will be announced via the app or email.
13. Contact Us
Email: support@mysticarcana.com
Privacy: privacy@mysticarcana.com
Mail: Mystic Arcana, LLC – 1810 E Palm Ave, Apt 5107, Tampa, FL 33605
Last updated: June 18, 2025