Legal
Effective date: 23 March 2026 · Coding Monks OÜ
Privacy at a glance
We cannot read your stored journal entries — they are encrypted before they reach us.
AI processes your entries temporarily to provide transcription and analysis. This is not permanent storage.
Your content is not used to train AI models.
We do not share your journal, insights, or emotional data with any third party.
You can delete your account and all your data at any time from Settings.
This app is not therapy and not a medical service.
Your journal is yours alone. This policy explains what we collect, why, and how your rights are protected.
Clicked Emotions is operated by Coding Monks OÜ, a company registered in Estonia. References to “we”, “us”, or “our” refer to Coding Monks OÜ.
For privacy questions: privacy@clickedemotions.com
We collect only what is necessary to provide the service:
We use your data solely to provide, maintain, and improve the service you have signed up for. We do not sell your data, use it for advertising, or share it with any party beyond what is described in this policy.
The table below sets out the lawful basis under GDPR for each type of processing:
| Data | Purpose | Legal basis |
|---|---|---|
| Account data | Provide login and account access | Contract |
| Journal content | Provide journaling, transcription, and insights | Contract |
| Payment data | Manage subscriptions and billing | Contract |
| Usage & security logs | Maintain security and service reliability | Legitimate interests |
| Product analytics | Understand feature usage to improve the product | Legitimate interests |
We use limited product analytics tools to understand how the app is used — for example, which features are used and where users encounter problems. These tools collect anonymised event data and do not receive the content of your journal entries.
We do not use advertising networks, behavioural tracking, or cross-site tracking of any kind. We do not build advertising profiles or sell usage data.
We also use error monitoring tools to detect and fix crashes and reliability issues. These tools receive technical diagnostic information (e.g. error messages, device type) and do not receive journal content.
We do not share your journal entries, AI-generated insights, emotion tags, or any other personal content with therapists, employers, family members, schools, insurers, healthcare providers, law enforcement, or any other third party — unless you explicitly choose to use a sharing feature, or unless we are compelled by a valid legal order.
If we ever receive a compelled legal request for data, we will notify you to the extent permitted by law. Because your journal content is encrypted and we cannot read it, we are also unable to produce readable journal content in response to any such request.
Some features of Clicked Emotions use artificial intelligence to process your content — for example, to transcribe handwritten photos or analyse emotional patterns in your writing. To provide these features, your content is temporarily transmitted to a third-party AI processing provider.
During AI processing, your content is in readable form for the duration of the request only — typically a matter of seconds. It is not stored, logged, or retained by us or our AI provider after the response is returned. Our AI provider is contractually prohibited from using your content to train or improve AI models.
After AI processing is complete, all content is encrypted on your device before being saved. If you prefer not to use AI features, you can use the app in transcription-only mode.
All journal content is protected by end-to-end encryption using industry-standard algorithms. Your encryption keys are derived from your password and are never transmitted to or stored by us in a readable form.
A recovery key is generated when you create your account. If you lose your password and your recovery key, your encrypted data cannot be recovered by anyone, including us. This is by design.
Emotional and mood data may constitute sensitive health-related personal data under GDPR Article 9. We treat all journal content as sensitive regardless of legal classification. Our encryption means this data is never accessible to us in readable form.
By creating an account and using AI features, you explicitly consent to the processing of this data as described in this policy. You may withdraw consent at any time by deleting your account.
To operate the service, we use third-party providers in the following categories:
All providers are bound by data processing agreements. None are permitted to use your data for their own purposes. We do not use advertising networks, social media trackers, or data brokers.
For a full list of sub-processors, contact us at privacy@clickedemotions.com.
Your data is retained for as long as your account exists. When you delete your account from Settings, we permanently delete all your journal content, encryption keys, photos, and account information. Deletion is immediate. Backups are purged within 30 days.
Depending on your location, you may have the right to access, correct, export, restrict processing of, or delete your personal data. To exercise any of these rights, contact us at privacy@clickedemotions.com.
Because your journal content is end-to-end encrypted, we cannot provide readable exports of it on your behalf — but you can export your own data directly from the app while your vault is unlocked.
If you are in the European Economic Area, you have the right to lodge a complaint with your local data protection supervisory authority.
Clicked Emotions is not directed at children under 16. We do not knowingly collect data from anyone under 16. Contact privacy@clickedemotions.com if you believe a child has created an account.
If we make material changes, we will notify you by email or in-app notice at least 14 days before changes take effect. Continued use after that date constitutes acceptance.
Coding Monks OÜ · Estonia · privacy@clickedemotions.com