Privacy Policy

Last updated: March 11, 2026

What we collect

When you create an account, we store your email address and authentication credentials (hashed, never in plaintext). Your document tree is stored as structured data in our database. If you enable end-to-end encryption, your tree data is encrypted client-side before it reaches our servers — we cannot read it.

How we use your data

Your data is used solely to provide the daey service — syncing your tree across sessions and devices. We do not sell, share, or monetize your data. We do not run analytics trackers or third-party advertising scripts.

Data storage

Data is stored in a Supabase-managed PostgreSQL database with row-level security. All connections use TLS encryption in transit. Backups are encrypted at rest. Your data is stored in the region closest to you as determined by our infrastructure provider.

End-to-end encryption

daey offers optional client-side encryption (AES-256). When enabled, your tree data is encrypted in your browser before being sent to our servers. We never have access to your encryption key or passphrase. If you lose your passphrase, we cannot recover your data.

Third-party services

We use Supabase for authentication and database hosting, and Google for OAuth sign-in (if you choose that method). No other third-party services have access to your data.

Data deletion

You can delete your account and all associated data at any time from your account settings. Upon deletion, your document tree, settings, and shared links are permanently removed from our servers. This action is irreversible.

Cookies

We use a single authentication cookie to keep you signed in. We do not use tracking cookies, analytics cookies, or any third-party cookies.

Contact

For privacy-related questions, contact us at hello@daey.app.