Kanso Journal is a private writing product designed to help people maintain a reflective journaling practice. This policy explains what information we collect, why we collect it, how we protect it, and what rights you have. We write this policy in plain language because privacy only works when people can understand it without legal guesswork.
Information we collect
When you join our waitlist or create an account, we collect contact details such as email address and basic account identifiers. If you use the app, we store content you choose to create, including journal entries, notes, and optional profile settings. We also collect technical information needed for service reliability, such as browser type, approximate region, error telemetry, and request timestamps. We do not sell personal data to advertisers and we do not run third-party ad profiles against your writing.
How we use information
We use account information to authenticate users, keep sessions secure, prevent abuse, and deliver requested features. Journaling content is used only to provide writing functionality and optional product experiences you explicitly enable. Operational analytics are used to improve reliability, identify broken flows, and plan product quality improvements. We use security logs and rate limiting to detect spam and suspicious behavior that could impact service availability.
Data retention and deletion
We retain account and content data while your account remains active, unless a shorter retention window is legally required. You can request deletion of your account and associated content, and we will process those requests in a reasonable period, subject to legal or fraud-prevention obligations. Backups may persist for a limited interval and are removed on a rolling schedule. When deletion completes, stored content is removed from primary systems and queued for removal from backup cycles.
Security safeguards
We apply encryption in transit, access controls, and environment-level protections to reduce unauthorized access risk. Internal access is restricted to team members and operators with a legitimate need. We monitor for unusual access patterns, maintain audit logs, and remediate known vulnerabilities as part of routine operations. No security program can provide absolute guarantees, but we continuously improve controls to reduce practical risk.
Third-party service providers
We use infrastructure and service providers to host application data, deliver authentication, process error reporting, and operate core product functions. These providers process data under contractual restrictions and only for approved purposes. Examples may include cloud infrastructure, crash reporting, and transactional email delivery. We evaluate providers for reliability and security posture before use and review them when risk profiles change.
Your choices and rights
You can unsubscribe from launch emails at any time. For account users, you can update profile information and request data deletion through support channels. Depending on your location, you may have rights to access, correct, export, or erase your personal information. To exercise these rights, contact us using the support details below and include enough detail for us to verify your request safely.
Contact
If you have privacy questions or requests, contact support@kansojournal.com. We review requests in the order received and respond as quickly as practical. If this policy changes materially, we will update the date above and publish the revised version at this same URL. The current policy is always available at kansojournal.com/legal/privacy/.