PRIVACY POLICY
Last Updated: April 20, 2026
WHO WE ARE
The Onion Talks ("we," "us," "our") is operated by THE ONION TALKS SL, registered in Salt, Girona, Spain.
For privacy questions, contact us at theoniontalksapp@gmail.com.
This policy explains what personal data we collect when you use The Onion Talks mobile app, why we collect it, and what your rights are.
INFORMATION WE COLLECT
We only collect what the app needs to function.
Account information
Name and email address (from Google Sign In or Apple Sign In)
Account creation date
Content you create
Your written reflections in response to questions
Questions you mark as favorites
Feedback you send us
Subscription information
Whether you have an active subscription
Subscription plan type, handled via RevenueCat and Apple's App Store. We never see your payment details.
Notifications
Push notification token, if you opt in
Your notification preferences (time, frequency, categories)
Technical data
Device type, OS version, app version
Anonymous crash and performance data
Approximate language and region for localization
We do NOT collect your location, contacts, camera or microphone data, advertising identifiers, or any sensitive personal data such as health, political views, religion, race, or sexual orientation.
HOW WE USE YOUR INFORMATION
To provide the app's core functionality (account, questions, saved reflections)
To send optional push notifications you've opted into
To process subscriptions via Apple and RevenueCat
To improve the app through anonymous crash reports and aggregate usage trends
To respond to your support requests
To comply with legal obligations
We do NOT sell your personal data.
We do NOT use your data for advertising.
We do NOT share your reflections with anyone.
LEGAL BASIS FOR PROCESSING (GDPR)
Where GDPR applies, we rely on the following legal bases:
Contract — processing needed to provide you the app (account, subscription)
Consent — push notifications, optional analytics
Legitimate interest — security, fraud prevention, bug fixing
Legal obligation — tax, accounting, regulatory requirements
THIRD-PARTY SERVICES WE USE
We work with the following trusted providers, each bound by data processing agreements consistent with GDPR:
Supabase — database hosting
Vercel — backend hosting
Google Sign In — authentication; receives your email and name
Apple Sign In — authentication; receives your email (which may be a private relay address) and name
RevenueCat — subscription management; receives an anonymous user ID and subscription status
Apple App Store — payment processing; we never see your card details
Expo and EAS — app builds and over-the-air updates
Sentry — anonymous crash reporting
DATA RETENTION
Account data is retained while your account is active and for 30 days after deletion, then permanently erased. Exceptions apply where law requires longer retention, such as tax records.
Reflections are deleted when you delete your account.
Crash reports are retained for 90 days.
Backups are fully deleted within 90 days of account deletion.
YOUR RIGHTS
Under GDPR, CCPA, and similar laws, you can:
Access the personal data we hold about you
Correct inaccurate data
Delete your account and all associated data, in-app, under Profile, Account and Subscription, Delete Account
Export your data in a portable format
Object to or restrict certain processing
Withdraw consent for notifications or optional analytics at any time
To exercise any of these rights, email us at theoniontalksapp@gmail.com. We respond within 30 days.
ACCOUNT DELETION
You can delete your account at any time from within the app, under Profile, Account and Subscription, Delete Account.
Deleting your account permanently removes your profile (name, email), all your reflections and favorites, and your notification preferences.
Your subscription link is also removed, but the subscription itself must be canceled separately through your Apple ID Subscriptions settings.
Some data may persist in encrypted backups for up to 90 days, then is fully erased.
CHILDREN
The Onion Talks is not intended for users under 13, or under 16 in the European Union. We do not knowingly collect data from children. If you believe a child has created an account, email us and we will delete it.
INTERNATIONAL DATA TRANSFERS
Your data is stored in the European Union (Supabase, eu-central-1 region). If we transfer data outside the EU, we rely on Standard Contractual Clauses or equivalent safeguards.
SECURITY
We use industry-standard security measures including HTTPS in transit, encryption at rest, and restricted access. No online service is 100% secure. You can help by using a strong password and not sharing your login credentials.
CHANGES TO THIS POLICY
When we update this policy, we will revise the Last Updated date and notify you in-app for material changes.
CONTACT
THE ONION TALKS SL
Salt, Girona, Spain
Email: theoniontalksapp@gmail.com
PRIVACY POLICY
Last Updated: April 20, 2026
WHO WE ARE
The Onion Talks ("we," "us," "our") is operated by THE ONION TALKS SL, registered in Salt, Girona, Spain.
For privacy questions, contact us at theoniontalksapp@gmail.com.
This policy explains what personal data we collect when you use The Onion Talks mobile app, why we collect it, and what your rights are.
INFORMATION WE COLLECT
We only collect what the app needs to function.
Account information
Name and email address (from Google Sign In or Apple Sign In)
Account creation date
Content you create
Your written reflections in response to questions
Questions you mark as favorites
Feedback you send us
Subscription information
Whether you have an active subscription
Subscription plan type, handled via RevenueCat and Apple's App Store. We never see your payment details.
Notifications
Push notification token, if you opt in
Your notification preferences (time, frequency, categories)
Technical data
Device type, OS version, app version
Anonymous crash and performance data
Approximate language and region for localization
We do NOT collect your location, contacts, camera or microphone data, advertising identifiers, or any sensitive personal data such as health, political views, religion, race, or sexual orientation.
HOW WE USE YOUR INFORMATION
To provide the app's core functionality (account, questions, saved reflections)
To send optional push notifications you've opted into
To process subscriptions via Apple and RevenueCat
To improve the app through anonymous crash reports and aggregate usage trends
To respond to your support requests
To comply with legal obligations
We do NOT sell your personal data.
We do NOT use your data for advertising.
We do NOT share your reflections with anyone.
LEGAL BASIS FOR PROCESSING (GDPR)
Where GDPR applies, we rely on the following legal bases:
Contract — processing needed to provide you the app (account, subscription)
Consent — push notifications, optional analytics
Legitimate interest — security, fraud prevention, bug fixing
Legal obligation — tax, accounting, regulatory requirements
THIRD-PARTY SERVICES WE USE
We work with the following trusted providers, each bound by data processing agreements consistent with GDPR:
Supabase — database hosting
Vercel — backend hosting
Google Sign In — authentication; receives your email and name
Apple Sign In — authentication; receives your email (which may be a private relay address) and name
RevenueCat — subscription management; receives an anonymous user ID and subscription status
Apple App Store — payment processing; we never see your card details
Expo and EAS — app builds and over-the-air updates
Sentry — anonymous crash reporting
DATA RETENTION
Account data is retained while your account is active and for 30 days after deletion, then permanently erased. Exceptions apply where law requires longer retention, such as tax records.
Reflections are deleted when you delete your account.
Crash reports are retained for 90 days.
Backups are fully deleted within 90 days of account deletion.
YOUR RIGHTS
Under GDPR, CCPA, and similar laws, you can:
Access the personal data we hold about you
Correct inaccurate data
Delete your account and all associated data, in-app, under Profile, Account and Subscription, Delete Account
Export your data in a portable format
Object to or restrict certain processing
Withdraw consent for notifications or optional analytics at any time
To exercise any of these rights, email us at theoniontalksapp@gmail.com. We respond within 30 days.
ACCOUNT DELETION
You can delete your account at any time from within the app, under Profile, Account and Subscription, Delete Account.
Deleting your account permanently removes your profile (name, email), all your reflections and favorites, and your notification preferences.
Your subscription link is also removed, but the subscription itself must be canceled separately through your Apple ID Subscriptions settings.
Some data may persist in encrypted backups for up to 90 days, then is fully erased.
CHILDREN
The Onion Talks is not intended for users under 13, or under 16 in the European Union. We do not knowingly collect data from children. If you believe a child has created an account, email us and we will delete it.
INTERNATIONAL DATA TRANSFERS
Your data is stored in the European Union (Supabase, eu-central-1 region). If we transfer data outside the EU, we rely on Standard Contractual Clauses or equivalent safeguards.
SECURITY
We use industry-standard security measures including HTTPS in transit, encryption at rest, and restricted access. No online service is 100% secure. You can help by using a strong password and not sharing your login credentials.
CHANGES TO THIS POLICY
When we update this policy, we will revise the Last Updated date and notify you in-app for material changes.
CONTACT
THE ONION TALKS SL
Salt, Girona, Spain
Email: theoniontalksapp@gmail.com
PRIVACY POLICY
Last Updated: April 20, 2026
WHO WE ARE
The Onion Talks ("we," "us," "our") is operated by THE ONION TALKS SL, registered in Salt, Girona, Spain.
For privacy questions, contact us at theoniontalksapp@gmail.com.
This policy explains what personal data we collect when you use The Onion Talks mobile app, why we collect it, and what your rights are.
INFORMATION WE COLLECT
We only collect what the app needs to function.
Account information
Name and email address (from Google Sign In or Apple Sign In)
Account creation date
Content you create
Your written reflections in response to questions
Questions you mark as favorites
Feedback you send us
Subscription information
Whether you have an active subscription
Subscription plan type, handled via RevenueCat and Apple's App Store. We never see your payment details.
Notifications
Push notification token, if you opt in
Your notification preferences (time, frequency, categories)
Technical data
Device type, OS version, app version
Anonymous crash and performance data
Approximate language and region for localization
We do NOT collect your location, contacts, camera or microphone data, advertising identifiers, or any sensitive personal data such as health, political views, religion, race, or sexual orientation.
HOW WE USE YOUR INFORMATION
To provide the app's core functionality (account, questions, saved reflections)
To send optional push notifications you've opted into
To process subscriptions via Apple and RevenueCat
To improve the app through anonymous crash reports and aggregate usage trends
To respond to your support requests
To comply with legal obligations
We do NOT sell your personal data.
We do NOT use your data for advertising.
We do NOT share your reflections with anyone.
LEGAL BASIS FOR PROCESSING (GDPR)
Where GDPR applies, we rely on the following legal bases:
Contract — processing needed to provide you the app (account, subscription)
Consent — push notifications, optional analytics
Legitimate interest — security, fraud prevention, bug fixing
Legal obligation — tax, accounting, regulatory requirements
THIRD-PARTY SERVICES WE USE
We work with the following trusted providers, each bound by data processing agreements consistent with GDPR:
Supabase — database hosting
Vercel — backend hosting
Google Sign In — authentication; receives your email and name
Apple Sign In — authentication; receives your email (which may be a private relay address) and name
RevenueCat — subscription management; receives an anonymous user ID and subscription status
Apple App Store — payment processing; we never see your card details
Expo and EAS — app builds and over-the-air updates
Sentry — anonymous crash reporting
DATA RETENTION
Account data is retained while your account is active and for 30 days after deletion, then permanently erased. Exceptions apply where law requires longer retention, such as tax records.
Reflections are deleted when you delete your account.
Crash reports are retained for 90 days.
Backups are fully deleted within 90 days of account deletion.
YOUR RIGHTS
Under GDPR, CCPA, and similar laws, you can:
Access the personal data we hold about you
Correct inaccurate data
Delete your account and all associated data, in-app, under Profile, Account and Subscription, Delete Account
Export your data in a portable format
Object to or restrict certain processing
Withdraw consent for notifications or optional analytics at any time
To exercise any of these rights, email us at theoniontalksapp@gmail.com. We respond within 30 days.
ACCOUNT DELETION
You can delete your account at any time from within the app, under Profile, Account and Subscription, Delete Account.
Deleting your account permanently removes your profile (name, email), all your reflections and favorites, and your notification preferences.
Your subscription link is also removed, but the subscription itself must be canceled separately through your Apple ID Subscriptions settings.
Some data may persist in encrypted backups for up to 90 days, then is fully erased.
CHILDREN
The Onion Talks is not intended for users under 13, or under 16 in the European Union. We do not knowingly collect data from children. If you believe a child has created an account, email us and we will delete it.
INTERNATIONAL DATA TRANSFERS
Your data is stored in the European Union (Supabase, eu-central-1 region). If we transfer data outside the EU, we rely on Standard Contractual Clauses or equivalent safeguards.
SECURITY
We use industry-standard security measures including HTTPS in transit, encryption at rest, and restricted access. No online service is 100% secure. You can help by using a strong password and not sharing your login credentials.
CHANGES TO THIS POLICY
When we update this policy, we will revise the Last Updated date and notify you in-app for material changes.
CONTACT
THE ONION TALKS SL
Salt, Girona, Spain
Email: theoniontalksapp@gmail.com
© 2025 All Rights Reserved, The Onion Talks SL
© 2025 All Rights Reserved, The Onion Talks SL
Terms & Conditions,
Terms of Use
Terms & Conditions,
Terms of Use
© 2025 All Rights Reserved, The Onion Talks SL