Privacy Policy
Last updated: September 5, 2025
Your privacy is important to us. This Privacy Policy explains how the Become mobile application (”Become”, “we”, “us”, or “our”) collects, uses, shares, and protects your personal information. Become is a personal growth companion app that delivers daily motivational quotes and personalized messages to help you stay motivated, build resilience, journal your progress, and feel supported. We are committed to protecting your data and complying with applicable privacy laws, including the EU General Data Protection Regulation (GDPR).
By using Become, you agree to the collection and use of your information in accordance with this Privacy Policy. If you do not agree with these practices, please do not use the app. We may update this policy from time to time, and we will notify you of any significant changes by updating the “Last updated” date and possibly through in-app notifications.
Information We Collect
We only collect information that is necessary to provide and improve our services. This includes:
Account Identifier (Anonymous Account): You do not need to create an account with personal credentials to use Become. When you first use the app, we create an anonymous account for you using a randomly generated identifier. This allows you to use the app without providing an email address or password. All data we collect (listed below) is associated with this anonymous account ID.
Name: We may ask you to provide your name or a nickname. This is used to personalize the motivational quotes and messages (for example, addressing you by name in daily messages). Providing your name is optional, but it enhances the personalized experience. We do not require any other personal details such as email or phone number.
Journal Entries: The app includes a personal journaling feature for you to reflect on your dreams, goals, and progress. Any content you write in your journal (entries, reflections, notes) is collected and stored in our database so that you can access it anytime within the app. These entries help us tailor the daily messages to align with your aspirations and struggles. Please note: Your journal entries may contain personal or sensitive information, depending on what you choose to write. We treat all journal content as private and confidential.
Device and Usage Data: When you use Become, we automatically collect certain information about your device and how you use the app. This device data may include:
Device type and model (e.g. smartphone model), operating system version, and unique device identifiers.
Log information such as the dates and times you use the app, pages or screens viewed, and other usage statistics.
Internet Protocol (IP) address and general location (e.g. city or region derived from IP).
App crash reports or error logs, which might include technical details about your device at the time of the crash (for debugging purposes).
This information is collected automatically to help us ensure the app functions properly, to troubleshoot issues, and to understand usage patterns so we can improve the service. This device and usage data generally does not directly identify you, but it may be linked to your anonymous account ID.
How We Use Your Information
We use the collected information for the following purposes:
To Provide and Personalize the Service: Your name and journal entries are used to deliver daily motivational quotes and personalized messages that are tailored to you. For example, Become may incorporate your name in messages or reference themes from your journal to ensure the encouragement you receive “feels written just for you.” This personalization helps you stay motivated, focused on what matters, and aligned with who you want to be — one message at a time.
Journaling Feature: Your journal entries are saved so that you can review your past reflections and track your progress over time. This helps you build self-trust and resilience by looking back at your journey. We do not access or use your journal content for any purpose other than providing you with the journaling service and the personalized messages (as described above).
AI-Powered Message Generation: We use an artificial intelligence service (provided by OpenAI) to help generate the motivational quotes and personalized messages. This means that when the app creates a personalized daily message for you, it may send some of your data (such as your name and relevant journal prompts or excerpts) to OpenAI’s API in order to generate the content. OpenAI acts as our processing service provider for these features. Importantly, any data shared with OpenAI for this purpose remains confidential and is only used to generate the content you see. OpenAI does not use your data to train its public models or improve its services . Data sent to the OpenAI API is stored only temporarily (for a short period, up to 30 days) to allow the service to function and to monitor for abuse, after which it is deleted from OpenAI’s systems . We have also entered into a Data Processing Addendum (DPA) with OpenAI to ensure your data is handled in compliance with GDPR and with appropriate security measures .
App Improvement and Analytics: Device and usage data are used to understand how users interact with Become. This helps us identify which features are most helpful, improve existing features, fix bugs, and enhance the user experience. For instance, crash reports help us diagnose and resolve issues to make the app more reliable. We may aggregate usage information (combine data from many users in a way that no longer identifies any individual) to analyze trends or feature usage. This aggregated data contains no personal details and may be used to guide product decisions or share overall usage statistics (for example, “X% of users write in the journal at least once a week”).
Customer Support and Communication: If you contact us for support or feedback (for example, via an in-app support feature or email), we will use any information you provide (which might include your email if you choose to provide one, and details about your support issue) to help resolve your issue or answer your questions. We may also send you service-related communications, such as important updates or privacy policy changes, via the app or other contact information you provide.
Legal Compliance and Preventing Misuse: We may use personal data as necessary to enforce our Terms of Service, to prevent fraudulent, harmful, or illegal activities (for example, to detect and address security or abuse issues), and to comply with legal obligations. For instance, if required by law to retain certain data or to provide information in response to lawful requests (such as a court order), we will do so.
We will not use your personal information for purposes that are incompatible with the above, and we do not engage in any form of automated decision-making that produces legal or similarly significant effects on you (the AI-generated messages are solely for motivational purposes and have no legal effect on your rights).
How We Share Your Information
We value your privacy and do not sell or rent your personal data to third parties for marketing or any other purposes. We only share your information in the following circumstances:
With Our Service Providers: We use trusted third-party service providers to help us operate and improve Become. These providers only process your data on our behalf and under our instructions, and they are obligated to protect it. The primary third-party service we use is OpenAI, which provides the AI platform that generates personalized quotes and messages for you, as described above. We share your name and relevant portions of your journal input with OpenAI’s API to get the motivational message output. OpenAI is contractually bound (through our DPA and their terms) to keep your data confidential and secure, and not to use it for any purpose other than providing the service . As noted, OpenAI does not use API data (such as your inputs) to train its models , and it retains the data only briefly (up to 30 days) for security monitoring before deletion .
We may also use cloud infrastructure providers (for example, database hosting or servers) to store and process data. All our databases and servers are located in Europe, so your data is stored within the European Union. By keeping storage in the EU, we ensure that your data is protected under European data protection standards . Our hosting providers are GDPR-compliant and subject to strict data protection obligations. They do not access your personal content except as needed for routine storage and maintenance.Analytics or Crash Reporting Services: (If applicable) We might use third-party analytics tools or crash reporting services to better understand app performance and usage. These services could collect device data and usage information (such as what features you use, or details of a crash) so we can fix issues and optimize the app. Any such third-party analytics service would be limited to using this data for our purposes and not for their own purposes. (Currently, we do not use any advertising trackers and do not collect analytics beyond what is necessary for improving the product.)
Legal Requirements: We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., a court or regulatory agency). We will only share the data that is necessary to comply with such requirements.
Protection of Rights and Safety: If we believe it is necessary to investigate, prevent, or take action regarding illegal activities, suspected fraud, situations involving potential threats to the safety of any person, or violations of our terms and conditions, we may disclose information to the appropriate authorities or relevant third parties (such as cybersecurity consultants). This is done in accordance with applicable laws.
Business Transfers: In the event that Become or our associated business is involved in a merger, acquisition, asset sale, or other corporate transaction, user data (including personal information) may be transferred to the new owner/partner as part of that deal. If such a transfer occurs, we will ensure the new entity honors the commitments we have made in this Privacy Policy, and we will notify you (for example, via an app notification or email) of any change in data ownership or new privacy policy.
Rest assured, we do not share your personal information with any third parties for their own marketing or advertising purposes. We also do not allow third-party ad networks to collect information from our app, since Become is focused on providing a private personal growth experience without advertising.
Data Storage and Security
We take the security of your personal data seriously. We implement a variety of technical and organizational measures to safeguard your information:
Data Location: All personal data collected through Become is stored on secure servers located in the European Union (for example, in data centers in Europe) . Keeping data in Europe helps us comply with GDPR and protect your data under European privacy standards. If we ever need to transfer your data outside of the EU (for instance, to a service provider in another country, such as OpenAI’s servers in the United States), we will ensure that appropriate safeguards are in place. This may include using contracts approved by the EU (Standard Contractual Clauses) or relying on providers that are certified under privacy frameworks, to ensure your data remains protected at a level equivalent to EU law.
Encryption: We use encryption to protect data in transit and at rest. This means that any data transmitted between your device and our servers (or to OpenAI) is encrypted using secure protocols (HTTPS/TLS), which helps prevent eavesdropping. Our databases are also encrypted or protected with security controls, so your journal entries and personal details are stored securely.
Access Controls: Access to personal data is restricted to authorized personnel who need it to operate or develop the app (for example, customer support or engineers investigating a specific issue). Our team is trained on data privacy and security practices. We also ensure that our service providers (like OpenAI and hosting partners) have strong security measures and adhere to high confidentiality standards .
Security Testing: We regularly review our practices and may employ standard security testing (such as vulnerability assessments) to protect against unauthorized access or vulnerabilities.
While we strive to protect your information, please note that no method of electronic transmission or storage is 100% secure. Therefore, we cannot guarantee absolute security. However, we continuously work to update and improve our security measures to keep your data safe. If we ever experience a data breach involving your personal data, we will notify you and the relevant authorities as required by law.
Data Retention
We retain your personal information only for as long as necessary to fulfill the purposes outlined in this policy or as required by law:
Journal Entries and Name: We will keep your journal entries and profile name for as long as you continue to use Become, so that you have ongoing access to your data and we can provide the personalized services. If you have been inactive on the app for an extended period, we may eventually archive or delete your entries from active databases, but we will try to provide a way for you to recover your data or we will inform you beforehand if feasible. You can also request deletion of your journal or account data at any time (see “Your Rights” below), and we will honor such requests.
Device Data and Logs: Automatically collected device and usage data (like logs and crash reports) are kept for a shorter period, typically only as long as needed for analysis and troubleshooting. For example, server logs might be kept for a few weeks or months and then automatically deleted or anonymized. Crash reports may be retained until the issue is resolved.
AI Service Data (OpenAI): As noted, any data sent to OpenAI’s API for message generation is retained by OpenAI for a maximum of 30 days for security monitoring, after which it is deleted . We do not store the raw requests sent to or responses from OpenAI longer than necessary on our end either — typically, the generated message is immediately delivered to you and stored as part of your app’s content, but the underlying request data isn’t separately kept. (Your journal entries remain in our database, of course, but the fact that they were sent to the AI service isn’t kept beyond what is needed for technical logs.)
Legal Retention: If a law or regulation requires us to keep certain data for a specified period (for example, records of customer support interactions or information needed for financial, tax, or legal compliance), we will retain that information for the required period. We will also retain information as needed to enforce our rights or agreements, or resolve disputes.
When personal data is no longer necessary for the purposes for which it was collected, or if you request its deletion, we will erase or anonymize it in a secure manner so that it can no longer be associated with you.
Legal Bases for Processing (GDPR Compliance)
If you are located in the European Economic Area (EEA) or the United Kingdom, we rely on the following legal grounds under the GDPR for processing your personal data:
Performance of a Contract: Most of our data processing is to provide you with the services you have requested – namely, delivering personalized motivational messages and maintaining your journal. We consider this necessary for the performance of the contract (the app’s Terms of Service) between you and us. For example, we use your name and journal content to generate the daily messages as part of the service you expect.
Consent: In certain cases, we rely on your consent. For instance, if you enter sensitive personal information in your journal (such as health-related reflections or other special category data), that is information you are choosing to provide. We treat the act of entering such information as your implicit consent to use it for the purposes of the app (providing the journal service and personalized messages). You can withdraw this consent at any time by deleting those entries or requesting that we delete your data. Also, if we ever want to use your data for a new purpose not covered by this Privacy Policy, we would seek your consent.
Legitimate Interests: We may process certain data for our legitimate interests, in a manner that doesn’t override your rights and freedoms. For example, maintaining app security, improving the app’s functionality, and analyzing usage (in a privacy-preserving way) are activities we pursue to make Become better for our users. We do so only after considering any potential impact on your privacy and implementing safeguards. If you disagree with any processing based on legitimate interests, you have the right to object (see “Your Rights” below).
In all cases, we only process personal data when we have a valid legal basis to do so, and we ensure transparency and fairness in those processes.
Your Rights
We want you to be in control of your personal information. Depending on your jurisdiction (especially if you are in the EU/EEA or UK under GDPR, or in other regions with similar laws), you have certain rights regarding the personal data we hold about you. These rights include :
Right to Access: You have the right to request a copy of the personal data we hold about you, and to obtain information about how we process it. We can provide you with a copy of your journal entries and any other data associated with your account upon request.
Right to Rectification: If any personal information we have is incorrect or incomplete (for example, if you choose to provide a name and it’s misspelled, or some entry is recorded incorrectly), you have the right to have it corrected. In the app, you may be able to edit certain profile information like your name. For other corrections, you can contact us.
Right to Erasure: You have the right to request deletion of your personal data (“right to be forgotten”). This means you can ask us to delete your account and remove all personal information (name, journal entries, etc.) that we have stored about you. There may be exceptions (if we are legally required to keep certain data, we will inform you), but we’ll generally comply with deletion requests. Note that deleting your data means you will lose access to your journal entries and personalized content history.
Right to Restrict Processing: You can ask us to restrict or pause the processing of your data in certain circumstances. For example, if you contest the accuracy of the data or have objected to our processing (see below), you can request a restriction until the issue is resolved. When processing is restricted, we can still store your data but won’t use it for anything else until the restriction is lifted.
Right to Object: You have the right to object to our processing of your personal information when we are doing so under a legitimate interest basis. If you object, and unless we have a compelling legitimate ground to continue, we will stop that processing. For example, if you object to certain analytics data collection, we will accommodate that if possible. You can also object to receiving any non-essential communications from us (though currently we do not send marketing messages).
Right to Data Portability: You have the right to request your personal data in a common, machine-readable format, so that you can reuse it or transfer it to another service. For example, you might want an export of all your journal entries. We can provide such exports (likely in a JSON or CSV text format) upon request.
Right to Withdraw Consent: If we are processing any of your data based on your consent, you have the right to withdraw that consent at any time. For instance, if you gave consent to process a certain sensitive journal entry, you can delete that entry or ask us to delete it, which withdraws the consent for that piece of data. Withdrawing consent will not affect the lawfulness of any processing we already performed before your withdrawal.
Right Not to Be Subject to Automated Decisions: As mentioned, we do not make any automated decisions that have legal or significant effects on you. The AI-generated motivational messages are not decisions about you; however, if you ever feel that any aspect of our service is purely automated and significantly affecting you, you have the right to ask for human review. (This is more relevant to things like credit decisions or job applicant filtering, which our app does not do.)
To exercise any of these rights, please contact us using the contact information provided below. We will respond to your request as soon as possible, and in any case within the timeframe required by applicable law (typically within one month for GDPR, with possible extension if needed ). For your security, we may need to verify your identity before fulfilling certain requests (for example, we might ask you to send the request from within the app or from the email associated with support inquiries, etc., to confirm it’s you).
If you are an EU or EEA user, you also have the right to lodge a complaint with your local Data Protection Authority (DPA) if you believe we have infringed your privacy rights. For example, in France you can contact the CNIL, and in other EU countries there are equivalent authorities. We encourage you to contact us first so we can address your concerns directly, but you have the right to seek help from regulators as well.
Children’s Privacy
Become is not intended for use by children under the age of 13. We do not knowingly collect personal data from anyone under 13 years old. If you are between 13 and 16 (the age of digital consent under GDPR can vary between member states, up to 16), you should only use this app with parental consent. If we become aware that we have inadvertently collected personal information from a child under 13 (or under the applicable minimum age in their region) without proper consent, we will take steps to delete that information promptly.
Parents or guardians who believe that their child may have provided us with personal data can contact us, and we will delete the data and terminate the child’s account if applicable.
Changes to this Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. When we make changes, we will update the “Last updated” date at the top of the policy. If the changes are material, we will also provide a more prominent notice — for example, by displaying a notification in the app or sending a message. We encourage you to review this policy periodically to stay informed about how we are protecting your information.
Your continued use of Become after any update to this Privacy Policy will signify your acceptance of the changes, to the extent permitted by law.
Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:
Email: adrienlong1@gmail.com
We are happy to hear from you and will do our best to address any privacy-related questions or issues. Your trust is important to us, and we are committed to safeguarding your personal information as you use Become.