Privacy Policy

Effective Date: March 9, 2026

Todai ("we", "our", or "the App") is an AI-powered life planning assistant developed by Motto Digital Studios. This Privacy Policy explains how we collect, use, and protect your information when you use Todai.

1. Information We Collect

1.1 Information You Provide

Account Data: Email address, display name, and profile photo when you create an account.
Authentication Data: Credentials used through Email/Password, Google Sign-In, or Apple Sign-In.
Profile Data: Personal goals, habits, financial information, career details, and health preferences you enter into your Todai Profile.
Chat Messages: Conversations with the Todai AI assistant.
Plans & Tasks: Daily, weekly, and monthly plans, tasks, and check-in responses.
Calendar Data: Calendar events (only when you grant calendar permission) to help schedule tasks around existing commitments.
Notes: Personal notes you create within the App.

1.2 Information Collected Automatically

Device Information: Device model, operating system version, and app version.
Usage Analytics: Feature usage patterns, screen views, and interaction events (anonymized).
Subscription Data: Subscription status, plan type (weekly, monthly, or yearly), entitlement information, purchase history, free trial status, renewal dates, and transaction receipts — processed securely by RevenueCat, our subscription management partner. This data is used solely for managing your subscription entitlements and is not linked to your personal content.

1.3 Information We Do NOT Collect

We do not track your location.
We do not access your contacts, photos, or files.
We do not use advertising identifiers or sell your data to advertisers.

2. How We Use Your Information

AI Coaching: Your profile and chat data are processed by AI to provide personalized life planning advice and recommendations.
Sync & Backup: Data is synced to Firebase Cloud Firestore so you can access it across devices.
Notifications: To send daily briefs, reminders, and smart scheduling alerts you have opted into.
Subscription Management: To manage your auto-renewable subscription status, validate entitlements, process in-app purchases, track free trial periods, and handle subscription renewals and cancellations through RevenueCat and the Apple App Store / Google Play Store.
App Improvement: Anonymized usage data helps us improve performance and fix bugs.
Security: To detect, prevent, and address technical issues and unauthorized access.

3. AI Data Processing

Todai uses OpenAI's GPT models to provide AI coaching. When you interact with the AI assistant:

Your messages and relevant profile context are sent to OpenAI's API for processing.
OpenAI does not use your data to train their models (per their API data usage policy).
AI responses are generated in real-time and not stored by OpenAI beyond the processing window.

4. Data Storage & Security

Local Storage: Your data is cached locally on your device using encrypted MMKV storage. Encryption keys are stored in the OS keychain (Keychain on iOS, Keystore on Android).
Cloud Storage: Firebase Cloud Firestore (Google Cloud infrastructure) with server-side security rules.
Financial Data: Sensitive financial information is encrypted using iterated SHA-256 keystream encryption with HMAC integrity verification before storage.
Authentication: Handled by Firebase Authentication with industry-standard security protocols.
Subscription Data: Processed by RevenueCat with industry-standard encryption and security measures. RevenueCat stores subscription status, purchase receipts, renewal information, and transaction history. No personal content (messages, goals, financial data, notes) is shared with RevenueCat. See RevenueCat's Privacy Policy for details.

5. Data Sharing

We do not sell, rent, or trade your personal information. We share data only with:

Firebase (Google): Authentication and cloud data storage.
OpenAI: AI message processing (no data retention by OpenAI).
RevenueCat: Auto-renewable subscription management and in-app purchase processing. RevenueCat receives your anonymous user ID, purchase receipts, subscription status, renewal dates, and transaction data. RevenueCat does not receive any of your personal content, messages, or financial data entered within the app. See RevenueCat's Privacy Policy.

We may disclose information if required by law or to protect the rights and safety of our users.

6. Subscription & Payment Data

Todai Pro is offered as an auto-renewable subscription. The following information describes how subscription-related data is handled:

Payment processing is handled entirely by the Apple App Store or Google Play Store. We do not collect, store, or have access to your credit card number, bank account, or other payment instrument details.
RevenueCat, our subscription management service, receives anonymized purchase data (transaction receipts, subscription status, renewal dates) to manage entitlements.
Free trial status and expiration dates are tracked to provide appropriate access to Pro features.
Subscription status is synced to your device and our servers to ensure seamless feature access across sessions.
You can manage or cancel your subscription at any time through your device's account settings (iOS: Settings > [your name] > Subscriptions; Android: Google Play Store > Subscriptions).

7. Your Rights & Choices

Access & Export: You can view all your data within the app at any time.
Delete Account: You can delete your account and all associated data from Profile > Settings. This action is irreversible.
Notifications: You can disable notifications at any time from your device settings or within the app.
Calendar Access: You can revoke calendar permission from your device settings.
Data Portability: Contact us to request a copy of your data in a portable format.

8. Children's Privacy

Todai is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If we discover that a child under 13 has provided us with personal data, we will delete it immediately.

9. Data Retention

We retain your data for as long as your account is active. When you delete your account:

All cloud data is permanently deleted within 30 days.
Local data is removed from your device immediately.
Anonymized analytics data may be retained for statistical purposes.

10. International Data Transfers

Your data may be processed in countries other than your own (including the United States and the European Union) through our service providers (Firebase, OpenAI, RevenueCat). These transfers are protected by appropriate safeguards including Standard Contractual Clauses.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes through an in-app notification or by updating the "Effective Date" at the top of this page. Continued use of the App after changes constitutes acceptance of the updated policy.

12. Contact Us

If you have questions about this Privacy Policy or your data, contact us at:

Email: support@mottods.com
Developer: Motto Digital Studios