Privacy Policy (Nolum)

This Privacy Policy explains how Nolum Inc. (Delaware, USA), referred to as "Nolum" or "the Nolum Team", collects, uses, and protects your information when you use our application. By using Nolum, you agree to this Policy.

We take your privacy seriously. We collect only the data needed to provide the service, we store your personal entries in encrypted form, and we never sell your personal information to anyone.

  1. Information We Collect

    Account data: your email address, and your name only if you choose to share it through Google sign in. Content data: the cards, states, and quests you create in the app, used to generate your personalized experience. Technical data: device type, operating system, IP address, and interaction logs collected automatically so the service works correctly and securely. Payment data: transaction identifiers and subscription status processed by Stripe. We do not store card numbers or full payment details on our servers.

  2. How We Use Your Data

    We use your data to provide and maintain Nolum, generate your personalized content, send transactional emails such as login codes, process payments through Stripe, understand aggregated and anonymized usage to improve the product, and keep your account and the platform secure.

  3. Data Protection

    Your personal entries are stored in encrypted form in our database. They are decrypted only by the system to generate your content, and are never sold or disclosed to anyone for any purpose beyond providing your experience.

  4. Third-Party Services

    Nolum relies on trusted infrastructure providers that process data to make the service work: Google Firebase (authentication, storage, hosting), Google Gemini via Google Cloud Vertex AI (content generation, on a configuration where your data is not used to train AI models), and Stripe (payment processing). These providers process data under their own privacy and security standards. We do not sell your data to anyone.

  5. Data Storage and Retention

    Data is stored on Google Cloud infrastructure in the United States. We retain your data while your account is active. When you delete your account, your subscription is cancelled in Stripe and your sensitive personal data (your entries, cards, states, quests, and personal information) is deleted in accordance with GDPR. Limited non-sensitive technical records may be retained where required.

  6. Your Rights

    You have the right to access the personal data we hold about you, request correction of inaccurate data, delete your account and associated sensitive data, and withdraw consent where processing is based on consent. To exercise these rights, contact us at support@nolum.io.

  7. Analytics and Cookies

    We use session tokens in your browser to keep you logged in. We use Google Analytics and our own in-app event tracking (via Firebase) to understand how the product is used and improve it. We do not use third-party advertising cookies or tracking pixels.

  8. Changes to This Policy

    We may update this Policy from time to time. Material changes will be communicated by email or an in-app notice. The current version is always available at nolum.io/privacy.

  9. Contact

    Questions about this Policy or how your data is handled: support@nolum.io. Nolum Inc., registered in the State of Delaware, USA.