Privacy Policy

Last updated: June 2026

1. Data controller

Patrick Zwick. Email: privacy@journai.xyz

2. What data we collect and why

Account data (email address, phone number, or third-party account identifier): required to create and manage your account. Legal basis: Art. 6(1)(b) GDPR — performance of a contract.

Health data (documents, vaccination records, and health values such as blood type, allergies, and conditions): stored end-to-end encrypted on our servers. We have no technical access to the plaintext of your data. Legal basis: Art. 6(1)(b) GDPR — performance of a contract; Art. 9(2)(a) GDPR — your explicit consent to processing special-category health data. You may withdraw your consent and delete all data at any time in the app settings.

Health document analysis (optional): if you use the AI analysis feature, your document image is briefly decrypted server-side and forwarded to Google Gemini for text recognition. The result is re-encrypted immediately. Legal basis: Art. 9(2)(a) GDPR — your explicit consent. You may withdraw this consent at any time in the app settings.

Approximate location (optional): used on-device to display local weather, emergency numbers, and nearby facilities (hospitals, pharmacies, police). Your coordinates are sent directly from your device to Open-Meteo, OpenStreetMap Nominatim, and Overpass API — they are never transmitted to Journai's servers. Legal basis: Art. 6(1)(b) GDPR — performance of a contract. Location is only accessed when you grant the permission.

Camera and photo library (optional): accessed when you photograph or select a document for AI scanning. Images are processed locally on your device before being encrypted and uploaded. No images are stored on Journai's servers beyond the duration of the scan. Legal basis: Art. 6(1)(b) GDPR.

Push notification token (optional): stored to send you vaccination expiry reminders. Legal basis: Art. 6(1)(b) GDPR — performance of a contract.

3. Processors and third-party services

We use the following processors under data processing agreements: • Google LLC (Firebase, Gemini) — push notifications and document AI analysis • Apple Inc. — Sign in with Apple • Twilio Inc. — SMS verification • Netcup GmbH — server infrastructure The following third-party services receive your device's IP address and, where applicable, approximate location coordinates directly from your device. These services are not Journai processors but independent controllers: • Open-Meteo (open-meteo.com) — weather data • OpenStreetMap Nominatim (nominatim.openstreetmap.org) — reverse geocoding • Overpass API (overpass-api.de) — nearby facility search • Frankfurter App (frankfurter.app) — currency exchange rates (no location data)

4. Retention

Account data and encrypted health data are retained for as long as your account exists. You may delete your account at any time, which permanently deletes all associated data within 30 days. You may also reset your encryption key to permanently erase all health data without deleting your account.

5. Your rights

Under the GDPR you have the right to: access your data, rectify inaccurate data, erase your data, restrict processing, data portability, object to processing, and lodge a complaint with a supervisory authority (Germany: Landesbeauftragter für Datenschutz und Informationsfreiheit Baden-Württemberg, lfd.bw.de). To exercise these rights, contact privacy@journai.xyz.

6. Security

Health data is end-to-end encrypted using AES-256-GCM. Your encryption keys are derived on your device and never transmitted in plaintext. Even in the event of a server breach, your health data remains unreadable.

7. Cookies and server logs

The Journai website uses no tracking cookies. Session-less server logs (IP address, request path, timestamp) are retained for up to 7 days for security purposes.

8. Changes to this policy

We will notify you of material changes via the app. The current version is always available at this URL.