Skip to main content
Back to LORE

LORE - Privacy Policy

Last Updated: February 3, 2026

1. Information We Collect

When you use LORE, we collect basic account information through our service provider, Supabase:

  • • Email address and basic profile data from Google or Apple Sign-In.
  • • Technical data such as device type and operating system version.
  • • App usage data, specifically your story choices and energy consumption.

2. How We Use Your Data

Your data is used strictly to provide the Service: managing your stories, tracking your energy balance, and maintaining your subscription status. We do not sell your personal data to third parties.

3. AI Processing

The story inputs you provide are processed by Large Language Models (LLMs). While these inputs are used to generate your stories, they are not used by KaiNext to train generalized AI models without your explicit consent.

4. Data Security & Storage

Your information is stored securely using Supabase's encrypted infrastructure. We implement industry-standard security measures to protect your account, though no method of digital storage is 100% secure.

5. Your Rights (GDPR & CCPA Compliance)

For EU Residents (GDPR)

Under the General Data Protection Regulation (GDPR), you have the right to:

  • Access - Request a copy of your personal data
  • Rectification - Correct inaccurate data
  • Erasure - Request deletion of your account and data
  • Data Portability - Export your data in a structured format
  • Objection - Opt out of certain data processing

For California Residents (CCPA)

Under the California Consumer Privacy Act (CCPA), you have the right to:

  • Know what personal information is collected
  • Know whether your personal information is sold or shared (we do not sell data)
  • Opt-out of the sale of personal information
  • Request deletion of your personal information
  • Non-discrimination for exercising your privacy rights

How to Exercise Your Rights

You can request access, correction, or deletion of your data by:

  • 1. Using the "Delete Account" option in app settings
  • 2. Emailing alejandrehl@icloud.com with subject "Privacy Rights Request"

We will respond to verified requests within 30 days.

Withdrawal of Consent

Where we process your data based on consent (e.g., future marketing emails), you have the right to withdraw consent at any time.

  • Email Preferences: Use "Unsubscribe" link in emails (future feature)
  • Analytics: iOS Settings > Privacy > Analytics > Disable for LORE
  • Account Data: Request deletion via app settings or email

Important: Withdrawing consent does not affect the lawfulness of processing based on consent before withdrawal. Some processing may continue based on other legal grounds (e.g., contract necessity to provide the Service).

6. Contact Information

If you have questions regarding your privacy, contact us at: alejandrehl@icloud.com

7. Third-Party Services

LORE integrates the following third-party services to provide functionality:

Analytics & Performance

  • Firebase Analytics (Google LLC) - Tracks app usage, crashes, and user engagement to improve the Service. Privacy Policy

Monetization

  • RevenueCat (RevenueCat, Inc.) - Manages in-app purchases and subscription lifecycle. Privacy Policy
  • Google AdMob (Google LLC) - Provides rewarded video ads for free energy. Privacy Policy

Infrastructure

  • Supabase (Supabase, Inc.) - Hosts database and provides authentication services. Privacy Policy
  • OpenAI (OpenAI, L.L.C.) - Powers AI story generation via GPT models. Your story inputs are sent to OpenAI servers for processing. Privacy Policy

Each third-party service has its own privacy policy. We encourage you to review them to understand how your data is handled.

8. International Data Transfers

LORE operates globally and uses service providers located in different countries:

Data Transfer Mechanisms

  • Supabase - Data stored in US-East region (Virginia, USA)
  • OpenAI - AI processing occurs on US-based servers
  • Firebase/AdMob - Google services with global infrastructure

For users in the European Economic Area (EEA), UK, or Switzerland:

We transfer your personal data to the United States and other countries that may not have the same data protection laws as your jurisdiction. We ensure adequate protection through:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Adequacy decisions where applicable (e.g., EU-US Data Privacy Framework)
  • Contractual obligations with service providers to maintain GDPR-level protections

You have the right to obtain information about the safeguards we use for international transfers.

9. Legal Basis for Processing (GDPR)

For users in the European Economic Area, we process your personal data based on the following legal grounds:

Data TypeLegal BasisPurpose
Account Information (email, auth)ContractNecessary to provide the Service under our Terms
Usage Analytics (Firebase)Legitimate InterestImprove app performance and user experience
Payment Data (RevenueCat)ContractProcess purchases and subscriptions
Story Inputs (OpenAI)ContractGenerate AI narratives as core Service feature
Marketing CommunicationsConsentOnly if you opt-in (not applicable in V1.0)

You have the right to object to processing based on legitimate interest. Contact us to exercise this right.

10. Automated Decision Making & AI Profiling

LORE uses artificial intelligence (Large Language Models) to generate story content. This involves automated decision-making:

How AI Affects Your Experience

  • Story Generation: AI determines narrative direction based on your choices
  • Content Filtering: AI may refuse to generate prohibited content (violence, explicit material)
  • No Profiling: We do NOT use AI to profile you, predict behavior, or make decisions about eligibility

Your Rights

Under GDPR Article 22, you have the right to:

  • Obtain human intervention if AI-generated content is problematic
  • Express your point of view about AI decisions
  • Contest decisions made solely by automated means

To request human review of AI-generated content, contact alejandrehl@icloud.com.

11. Data Breach Notification

In the unlikely event of a data breach that poses a risk to your rights and freedoms:

Our Commitment

  • 72-Hour Notification: We will notify relevant supervisory authorities within 72 hours of discovery
  • User Notification: If breach poses high risk to you, we will notify you directly via email without undue delay
  • Transparency: We will disclose nature of breach, affected data, and remedial actions taken

What We Protect Against

  • Unauthorized access to personal data
  • Accidental loss or destruction of data
  • Unlawful processing or disclosure

We maintain incident response procedures and regular security audits to minimize breach risk.

12. Children's Privacy (COPPA)

LORE is not intended for children under 13 and we do not knowingly collect personal information from children under 13.

Age Verification

  • Our Terms of Service require users to be at least 17 years old
  • We rely on Apple/Google age verification during app download
  • We do not request birthdates or additional age verification in-app

If You Are a Parent

If you believe your child under 13 has created an account:

  • 1. Email alejandrehl@icloud.com immediately with subject "Child Account Removal"
  • 2. Provide account email or username
  • 3. We will delete the account and all associated data within 48 hours

We comply with the Children's Online Privacy Protection Act (COPPA) and similar regulations worldwide.

13. Data Retention

We retain your personal data only as long as necessary to provide the Service:

  • Active accounts: Data retained indefinitely while account is active
  • Deleted accounts: Data permanently deleted within 30 days of deletion request
  • Inactive accounts: Accounts inactive for 2+ years may be anonymized or deleted
  • Legal compliance: Some data may be retained longer if required by law

You can request immediate deletion by contacting alejandrehl@icloud.com.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect:

  • Changes in our data practices
  • New legal requirements
  • New features or services
  • User feedback

How We Notify You

  • Material Changes: We will notify you via email (to your registered address) at least 30 days before changes take effect
  • Minor Changes: We will update the "Last Updated" date at the top of this page
  • In-App Notice: For significant changes, we may display a notification in the app

Your Options

If you do not agree with updated terms:

  • You may discontinue using LORE before changes take effect
  • Your continued use after the effective date constitutes acceptance
  • You can request account deletion at any time

We encourage you to review this Privacy Policy periodically.

15. Right to Lodge a Complaint

If you are located in the European Economic Area (EEA), UK, or Switzerland, you have the right to lodge a complaint with your local data protection supervisory authority if you believe we have violated your privacy rights.

EU/EEA Supervisory Authorities

Find your local authority: https://edpb.europa.eu/about-edpb/board/members_en

Other Jurisdictions

  • California (CCPA): California Attorney General - Contact
  • Other US States: Your state's Attorney General office
  • Chile: Consejo para la Transparencia - Website

We encourage you to contact us first at alejandrehl@icloud.com so we can address your concerns directly, but you have the right to file a complaint at any time.