for the "Lunita" iOS app and this website · Last updated: 10 June 2026 · Deutsche Fassung
Jannis Blank · blank&bold
Rodelbahn 10
96049 Bamberg
Germany
Email: [email protected]
A data protection officer is not legally required and has not been appointed.
| Category | Examples | Purpose |
|---|---|---|
| Account data | Email address, password (hashed) or Sign in with Apple identifier | Sign-in, account management, password reset |
| Family & profile data | Family name, baby's name and birthdate, member roles and relationship labels | The app's core function (a shared family diary) |
| Content | Diary entries, photos, videos, milestones, letters, daily-question answers, care logs (feeds, sleep, diapers) | The app's core function |
| Voice transcripts | The text recognized on-device from your dictation (never audio) | Creating diary entries; AI text polish (section 5) |
| Device tokens | Apple push token (APNs) | Delivering notifications (e.g. the daily question) |
| Language setting | The family's device language | Writing monthly stories in your language |
Legal bases: performance of contract (Art. 6(1)(b) GDPR — providing the app's features) and, for notifications, your consent (Art. 6(1)(a) GDPR, revocable anytime in iOS Settings).
Care logs as health data: To the extent care logs (e.g. sleep, feeds, diapers) qualify as health data under Art. 9 GDPR, we process them solely on the basis of your explicit consent (Art. 9(2)(a) GDPR), given when you enable the care-logging feature in the app. You can withdraw it at any time by disabling the feature or deleting the entries.
Necessity: Account data is required to use the app; without it we cannot provide the service. All other content is provided voluntarily.
We do not process: location data, address books, advertising identifiers, or usage analytics. No automated decision-making or profiling within the meaning of Art. 22 GDPR takes place.
Lunita is made for parents and adult family members; it is not directed to children under 13, and we do not knowingly collect personal information directly from children. Content about a child is recorded by a parent or legal guardian acting on the child's behalf and is only visible to family members the parent invites — never public. Children under 16 may not create their own account. If you believe a child has created an account, contact us and we will delete it.
Two features use the "Claude" large language model by Anthropic PBC, USA (section 6): polishing your dictated words into diary prose, and writing the monthly/weekly stories from your entries. Only text is transmitted (never photos, videos, or audio). AI-generated text is recognizable as such in the app and is never saved or shared without your review and approval. Under its commercial terms, Anthropic does not use this data to train its models and retains inputs only temporarily for abuse prevention. The AI makes no decision with legal effect concerning you.
| Provider | Purpose | Data | Transfer basis (US) |
|---|---|---|---|
| Supabase Inc. | Database, authentication, server functions | Account, family, and content data (except media files) | EU Standard Contractual Clauses (Art. 46(2)(c) GDPR) |
| Backblaze Inc. | Media file storage | Photos, videos, photobook PDFs (private storage; access only via short-lived signed links) | EU Standard Contractual Clauses (Art. 46(2)(c) GDPR) |
| Anthropic PBC | AI text generation (section 5) | Text of entries/transcripts | EU-US Data Privacy Framework |
| Apple Inc. | Push notifications (APNs), Sign in with Apple | Device tokens, sign-in identifier | EU-US Data Privacy Framework |
| Cloudflare, Inc. | Hosting of this website (section 8) | Server logs of website visitors | EU-US Data Privacy Framework |
Data processing agreements (Art. 28 GDPR) are in place with all providers. Where data is transferred to the United States, there remains a risk that US authorities may access data under US law without effective legal remedies for you.
This website is hosted by Cloudflare, Inc. (USA). When you visit, Cloudflare processes technically necessary connection data (IP address, date and time, requested page, user agent) to deliver and protect the site (e.g. mitigating attacks). The legal basis is our legitimate interest in secure, performant operation (Art. 6(1)(f) GDPR). Fonts are self-hosted; no connection is made to Google Fonts or other third-party servers. The website sets no cookies and uses no analytics.
All connections are TLS-encrypted. Data is stored encrypted at rest with our providers; passwords are stored only as secure hashes. Media files live in private storage and are accessible only through short-lived signed links. Access to family content is restricted server-side per family member and role.
In the event of a personal-data breach likely to result in a high risk to your rights and freedoms, we will notify affected users without undue delay via email and in-app (Art. 34 GDPR) and report the incident to the competent supervisory authority (Art. 33 GDPR).
Under the GDPR you have the right of access (Art. 15), rectification (Art. 16), erasure (Art. 17), restriction (Art. 18), data portability (Art. 20), and objection (Art. 21), as well as the right to withdraw any consent at any time with effect for the future (Art. 7(3)) and to lodge a complaint with a supervisory authority (Art. 77). Export and deletion are available directly in the app; for anything else, email [email protected].
California residents: we do not sell or share personal information (as defined by the CCPA/CPRA) and use no cross-context behavioral advertising. You can exercise your rights of access and deletion directly in the app or by emailing us; we will not discriminate against you for doing so.
UK residents: the rights above apply equally under the UK GDPR; complaints may be addressed to the Information Commissioner's Office (ICO).
We update this policy when the app or the law changes. We will notify you of material changes in-app in good time before they take effect. The current version is always available at this address.