Legal · Privacy

Privacy Policy.

Effective December 6, 2025

Align13 (“we,” “us,” “our”) is a 13-sign astrology app. We built it to read the sky honestly — and we treat your data the same way. This policy explains what we collect, why, how we use it, and how to make us delete or export it. Short version: we only collect what we need to compute your chart and run the app, we don’t sell your data, and you can delete everything at any time.

The short version

  • We collect only what we needemail, birth data, and device info
  • We never sell your datanot to advertisers, not to anyone
  • You can delete or export anytimeemail us and we handle it within 72 hours
  • We encrypt everything in transitTLS 1.2+, HSTS, modern ciphers
  • No third-party ads, no tracking pixelswe use privacy-respecting analytics only

1. What we collect

We collect the minimum needed to compute your natal chart and run the app. Specifically:

  • Account infoemail address and a securely hashed password
  • Birth datadate, time (if known), city / coordinates, and timezone
  • Chart datayour natal chart, transits, and any saved relationships
  • Device infodevice type, OS, language, and approximate region from IP
  • Usage telemetryanonymized events (feature opens, crashes) — no content
  • Billing recordshandled by Stripe; we receive a customer ID and plan only

We do not collect contacts, photos, location (beyond approximate region from IP), microphone, or any data that isn’t declared here.

2. How we use it

  • Compute your natal chart, transits, and readings
  • Send you the daily / weekly readings you subscribed to
  • Operate, secure, and debug the service
  • Process your subscription and issue receipts
  • Reply to your support requests
  • Comply with legal obligations

We do not use your data to train third-party AI models, and we do not sell or rent it to advertisers. When we use AI to refine readings, we use our own prompts with anonymized inputs.

3. Who we share it with

Only with vendors strictly necessary to run Align13, under data processing agreements that forbid them from using your data for their own purposes:

  • Stripepayment processing (PCI-DSS compliant)
  • CloudflareCDN + TLS termination + DDoS protection
  • Hosting providerapplication + database hosting
  • Email providertransactional emails (verification, receipts)

We may also disclose information if required by law, to protect rights and safety, or in a corporate transaction (e.g. merger) — in which case you’ll be notified and given the chance to delete your account first.

4. How long we keep it

  • Active accountfor as long as your account exists
  • Deleted accountfully removed 30 days after you request deletion
  • Payment recordsretained for the legal minimum (typically 7 years, tax law)
  • Server logsrotated and purged within 30 days
  • Anonymized analyticsaggregate, cannot be linked back to you

5. Your rights

Regardless of where you live, you can:

  • Access your datarequest a copy in JSON
  • Correct your datafix birth data, email, timezone
  • Delete your accountsee the Security page
  • Delete specific datacharts, relationships, journal entries
  • Withdraw consentfor optional analytics or emails at any time
  • Opt out of marketingwith one click in every email

If you’re in the EEA, UK, or Switzerland, GDPR applies. If you’re in California, you have CCPA rights including the right to know, to delete, and to not be discriminated against for exercising those rights. To exercise any right, email support@align13.com. We respond within 72 hours and fulfill requests within 30 days (or notify you of any legally permitted extension).

6. Children

Align13 is not intended for children under 13 (or the minimum age of digital consent in your region, whichever is higher). We don’t knowingly collect data from such users. If you believe a child has registered, email us and we’ll delete the account immediately.

7. Security

  • TLS 1.2+ everywhere, with HSTS preloaded
  • Passwords are salted and hashed (bcrypt / argon2)
  • Payment data never touches our servers — Stripe handles it end-to-end
  • Principle of least privilege on all internal systems
  • Security incidents communicated within 72 hours of discovery

8. International transfers

Our servers may be located outside your country. When we transfer data internationally, we rely on Standard Contractual Clauses (SCCs) and equivalent safeguards to protect it.

9. Changes to this policy

If we make a material change, we’ll email registered users at least 14 days before it takes effect, and update the effective date at the top of this page. Minor edits (typos, clarifications) may be made without notice.

10. Contact

Questions, complaints, or requests? Email us and a human will reply within 72 hours.

Data protection contact

support@align13.com

Related

Delete my account

Permanent deletion with 30-day grace

Data deletion & support

Delete specific data or request an export