Privacy

Last updated: 12 June 2026

The Inara Beacon is a quiet place. We collect as little about you as we can and we explain plainly what we do with what we hold. This notice meets our obligations under the UK GDPR and EU GDPR.

Who we are

The Inara Beacon is the data controller for the personal information described here. You can reach us at hello@inarabeacon.app.

What we collect and why

• Account. Your email address and chosen display name so you can sign in and we can speak to you. Provided by our auth provider (Supabase) on our behalf.
• Birth data. Date, time and place of birth, used only to compute your natal chart and your personalised reflections. This information stays on our database and is never sold or shared with advertisers.
• Subscription & payments. Handled by Stripe. We receive a customer id, the status of your subscription and the last four digits of your card for receipts. Full card details never reach our servers.
• Reflections, journal entries and questions to Inara.Stored so you can read them again. Used to compute your private reading history (anti-repetition) and never used to train models.
• Astrological calculations. Birth date, time and location are sent to AstrologyAPI to compute planetary positions and house cusps. The provider acts as our processor under contract.
• AI reflections. Your prompts to Inara are sent to our AI provider (the Lovable AI Gateway, which routes to Google Gemini and OpenAI models) to generate a reply. The provider does not retain prompts for model training.
• Personal Melody. A short audio file generated by ElevenLabs based on your sun, moon and rising. Stored privately in your account.
• Operational logs. We keep a brief technical record of each API call (which feature, how many tokens) so we can monitor costs and detect abuse. No reading content is included.

Cookies

We use only essential storage (your auth session) and a small number of first-party preferences. We do not use advertising or tracking cookies.

Retention

Account, birth data and reflections are kept for as long as your account is active. When you delete your account, we delete your data within 30 days, except where we must keep records for legal reasons (for example, billing records for seven years).

Your rights

Under UK and EU GDPR you have the right to access, correct, delete, port and object to processing of your personal data. To exercise any of these rights, write to hello@inarabeacon.app and we will respond within 30 days. You also have the right to complain to your local data protection authority.

International transfers

Our processors may store or process data in the US and EU. Where required, transfers are protected by Standard Contractual Clauses.

See also our Terms, Disclaimer and Community Guidelines.