On this page
- 1. Information We Collect
- 2. How We Use Information
- 3. Use of AI
- 4. Sign in with Google / Apple
- 5. Third-Party Services
- 6. Sharing Your Information
- 7. International Transfers
- 8. Data Retention
- 9. Your Rights (GDPR)
- 10. Account Deletion
- 11. Children's Privacy
- 12. Data Security
- 13. Changes to This Policy
- 14. Consent
- 15. Contact
Privacy Policy
This Privacy Policy describes how Elunimy ("Application", "we", "us", or "our") collects, uses, and protects your personal information when you use our mobile application. The Application is developed and operated by Andrej Veremčiuk (hereinafter referred to as "Service Provider"). By using the Application, you agree to the practices described in this Privacy Policy.
1.Information We Collect
1.1 Information You Provide Directly
To use the Application, registration is required. During registration and use, we collect:
- Account information: your name, email address, and an encrypted password (when registering by email), or your name, email address, and account identifier received from Google or Apple (when using Sign in with Google or Sign in with Apple)
- Unique user identifier (User ID): assigned automatically upon registration
- Workspace content: notes you write, images you upload, web links you save, and documents you import (PDF, Word, Excel, plain text, Markdown, CSV)
- Web link data: when you save a web link, the linked page's publicly available content is retrieved and processed to generate a title and an AI summary
- Video data: when you save a YouTube link, publicly available video information (title, channel, duration, view count) and captions/transcript are retrieved from YouTube and stored in your workspace
- Subscription information: subscription status (free or premium) and validity period (managed via Apple App Store or Google Play)
- Support requests: your email address, the selected topic, and your message when you contact support through the Application
1.2 Information Collected Automatically
When you use the Application, we may automatically collect:
- Device information (device type, operating system, language, time zone)
- Unique device identifier
- IP address (collected at session level)
- Application usage data (features used, sessions, in-app actions)
- Technical logs and crash data
1.3 Information Derived from Your Content
To power organization, insights, and search, the Application automatically generates and stores data derived from the content you save:
- AI-generated summaries, key points, keywords, topics, and entities extracted from your notes, links, documents, and video transcripts
- Text extracted from images and documents you upload (to make them searchable)
- Vector embeddings (numerical representations of your content) used to power semantic search
2.How We Use Your Information
We use the collected information for the following purposes:
- To provide the Application's core functionality — saving, storing, and organizing your notes, links, images, and documents
- To create and maintain your account
- To process your saved content via AI services (summaries, key points, metadata, search)
- To manage your subscription status and access to premium features
- To improve the Application and its features
- To send essential service notifications (e.g., account-related, security, important updates)
- To prevent abuse and enforce usage limits
- To comply with legal obligations
We do not send marketing or advertising emails without your explicit consent.
3.Use of Artificial Intelligence (AI)
The Application uses third-party AI services to process the content you save:
- xAI (Grok) — generates summaries, key points, insights, and metadata (keywords, topics, entities) from your notes, links, documents, and video transcripts, and analyzes images you upload
- OpenAI — creates vector embeddings of your content that power semantic search within your workspace
This means:
- The text of the content you save (and, where applicable, images you upload) is transmitted to these providers solely to deliver the features described above.
- These providers process data according to their own privacy policies and API data-processing terms.
- Their servers may be located outside of the European Economic Area (primarily in the United States). Such transfers are protected by Standard Contractual Clauses (SCCs).
For more information, please review the xAI Privacy Policy and the OpenAI Privacy Policy.
4.Sign in with Google and Apple
If you choose to sign in with Google or Apple, we receive your name, email address, and a unique account identifier from the provider. We do not receive your password and do not gain access to any other data in your Google or Apple account.
If you use Apple's "Hide My Email" feature, we receive the private relay email address generated by Apple instead of your personal email address.
5.Third-Party Services
The Application uses the following third-party services that have their own privacy policies regarding data handling:
- xAI — AI summaries, insights, and metadata generation
- OpenAI — semantic search technology (content embeddings)
- Apple App Store — application distribution, in-app purchases, and Sign in with Apple (iOS)
- Google Play Services — application distribution, in-app purchases, and Sign in with Google (Android)
- YouTube (Google) — retrieval of publicly available video information and captions for video links you save
- Jina AI (Reader) — retrieval and extraction of publicly available webpage content from links you save, used to generate summaries
- RevenueCat — subscription management
- Mixpanel — usage analytics
- Supabase — backend infrastructure, authentication, and data storage
- Resend — transactional email delivery (e.g., account confirmation emails)
6.Sharing Your Information
We do not sell, rent, or trade your personal information. We may disclose your information in the following cases:
- Service providers: with trusted third-party service providers (listed in Section 5) that help us operate the Application
- Legal compliance: when required by law, court order, or government request
- Protection of rights: when necessary to protect our rights, your safety, or the safety of others, or to investigate fraud
- Business transfer: in the event of a merger, acquisition, or sale of assets, with notice to you
7.International Data Transfers
Some of our service providers (e.g., xAI, OpenAI, Jina AI, Mixpanel, Resend) operate servers outside the European Economic Area (EEA), primarily in the United States. Such transfers are protected by appropriate safeguards, including Standard Contractual Clauses (SCCs) approved by the European Commission.
8.Data Retention
| Data category | Retention period |
|---|---|
| Account data | Retained while your account is active. Deleted immediately and permanently when you delete your account in the Application. |
| Workspace content (notes, links, images, documents) | Retained until you delete the individual item or your account. |
| AI-derived data (summaries, metadata, extracted text, embeddings) | Stored together with the content it was derived from and deleted together with it. |
| Support messages | Retained while your account is active; deleted upon account deletion. |
| Automatically collected data (analytics, logs) | Retained for up to 24 months, after which it is anonymized or deleted. |
| Subscription records | Retained according to the requirements of Apple/Google and applicable law. |
9.Your Rights (GDPR)
If you are a resident of the European Economic Area (EEA), you have the following rights under the General Data Protection Regulation (GDPR):
- Right to access — request a copy of the personal data we hold about you
- Right to rectification — request correction of inaccurate data
- Right to erasure ("right to be forgotten") — request deletion of your data
- Right to restriction of processing — request that we limit the processing of your data
- Right to data portability — receive your data in a structured, machine-readable format
- Right to object — object to specific types of processing
- Right to withdraw consent — withdraw your consent at any time, where processing is based on consent
- Right to lodge a complaint — submit a complaint to the supervisory authority
To exercise your rights, please contact us at info@elunimy.com. We will respond within 30 days.
If you reside in Lithuania, you may also contact the State Data Protection Inspectorate of the Republic of Lithuania (Valstybinė duomenų apsaugos inspekcija): https://vdai.lrv.lt/
10.Account Deletion
You may delete your account and all associated data at any time:
- Directly in the Application: Settings → Account → Delete account. This immediately and permanently deletes your workspace content (notes, links, images, documents), all AI-derived data, support messages, your profile, and your account record.
- By email: contact info@elunimy.com from your registered email address; we will permanently delete your data within 30 days, except where retention is required by law.
Uninstalling the Application does not delete your server-side account data. To fully delete your data, use the in-app deletion option or contact us by email.
11.Children's Privacy
The Application is not intended for use by children under the age of 16 (in the European Union) or under the age of 13 (in other jurisdictions). Where applicable national law sets a different minimum age for digital consent, that age applies.
We do not knowingly collect personal information from children. If we become aware that a child has provided us with personal data, we will delete it immediately.
If you are a parent or guardian and believe your child has provided us with personal information, please contact us at info@elunimy.com.
12.Data Security
We take reasonable technical and organizational measures to protect your personal information from unauthorized access, alteration, disclosure, or destruction. These measures include:
- Encrypted data transmission (HTTPS/TLS)
- Encrypted password storage
- Restricted server access
- Rate limiting and abuse controls on authentication and sensitive operations
- Regular security review
However, no system can guarantee 100% security. In the event of a personal data breach, we will notify the relevant supervisory authority and affected users in accordance with GDPR requirements.
13.Changes to This Privacy Policy
We may update this Privacy Policy from time to time. Any changes will be reflected on this page with an updated "Last updated" date. Significant changes will be communicated via email or in-app notification. We recommend reviewing this Privacy Policy periodically.
14.Consent
By using the Application, you consent to the practices described in this Privacy Policy. If you do not agree with any of these terms, please do not use the Application.
15.Contact
If you have any questions, comments, or requests regarding this Privacy Policy or our practices, please contact us:
Service Provider: Andrej Veremčiuk
Email: info@elunimy.com
This Privacy Policy is effective as of June 12, 2026.