DailyBeBetter

Privacy Policy

This Privacy Policy is product-scoped and covers both DailyBeBetter products under one and the same data controller:

  • Coach — the AI voice-coaching mobile app (iOS & Android).
  • Soul Blueprint — the one-off numerology / spiritual birth-report web product.

Where a data flow belongs to only one product it is marked (Coach) or (Soul Blueprint). Where unmarked, it applies to both. The two products share a single controller; their data flows are otherwise separate.

The data controller for both products is Daily Be Better - F.Z.C, a UAE Ajman Free Zone company (License No. 55075), Ajman Free Zone C1 Building, B.C. 1308557, Ajman Free Zone, Ajman, United Arab Emirates.

EU / UK representatives and Data Protection Officer details will be added once appointed. This policy remains a draft pending counsel review.

1. Who We Are

DailyBeBetter is operated by the entity identified above (UAE — Ajman Free Zone). We are the data controller for both products. For privacy questions, to exercise your rights, or to reach our Data Protection Officer, contact office@dailybebetter.com. If you are in the EU or the UK, you may also contact our representative once it is appointed.

DailyBeBetter is a wellness and personal-development coaching service. It is not a medical service, and it does not diagnose, treat, or prescribe. Some data we process is, for the limited purpose of choosing the correct legal basis, classified as “special-category” or “consumer health data” under data-protection law (see sections 2–3) — that legal classification does not change the wellness / coaching nature of the service.

2. What Data We Collect

The categories flagged special-category below are treated, for the lawful-basis classification only, as GDPR Article 9 data concerning health or as Washington consumer health data (see section 3). Mental-wellbeing status is treated as health data even outside any clinical setting.

Coach

  • Name, email, phone — identity data.
  • Date of birth — drives the 18+ age gate.
  • Biological sex (male / female / prefer not to say) — special-category; choosing to decline is itself recorded as a signal.
  • Health & wellbeing self-reports — special-category (data concerning health).
  • Spiritual / religious beliefs you choose to share — special-category.
  • Family & relationship narratives — can reveal special-category data.
  • Goals & problem narratives — can reveal special-category data.
  • Life-satisfaction self-ratings — wellbeing signal.
  • Live voice audio (streamed during a session) — processed live and never stored as an audio recording (see section 8).
  • Session transcripts — special-category (full coaching content).
  • AI session recaps / summaries — special-category (AI-inferred wellbeing; AI-generated).
  • Client Graph (Tree of Growth) inferences — special-category (intentional inference of emotional / wellbeing state).
  • Consent records & signature audit (incl. IP, device) — consent metadata.
  • AI-disclosure cadence state — operational.
  • Content reports you submit; account-deletion requests (email + IP + status).
  • Device / IP / region.
  • Federated provider tokens (Apple / Google) — auth credentials, KMS-encrypted.

Soul Blueprint

  • Birth details (date / time / city of birth) — required to generate the report.
  • Payment information — Stripe-tokenized; we never see your full card number.

3. Special-Category Data & Lawful Basis (GDPR Article 9)

For the special-category data identified above, our Article 9 lawful basis is your explicit consent (GDPR Art 9(2)(a)). For Coach, that consent is captured in-app at the consent gate as three separate, unbundled, default-unchecked tick-boxes:

  • an Article 9 health-data consent;
  • a Washington My Health My Data Act collection consent; and
  • a separate, distinct Washington My Health My Data Act sharing consent.

None of these is pre-ticked, and none is bundled with another — each is a freely-given, specific, informed opt-in. Deleting your account withdraws this consent (see section 9).

Our AI inference of your emotional and wellbeing state — the persistent Client Graph that lets the coach surface patterns across sessions — is intentional special-category processing regardless of confidence level, and is covered by the same explicit consent.

Voice and biometrics. Your live voice is processed to deliver the conversation; it is not processed to uniquely identify you as a person. On that basis it is not biometric special-category data under the Article 9 biometric limb. The voice content can carry wellbeing information, which we capture as a text transcript, not as an audio recording (see section 8).

4. AI Processing Disclosure

(Coach) When you use Coach, you are interacting with an AI coach (presented as a named persona, Arabella or James) — not a human. You receive a clear in-product disclosure of this, spoken and on-screen, at the start of your first session and on a recurring cadence thereafter. Your voice and text are processed by:

  • ElevenLabs — voice transport (speech-to-text and text-to-speech) and conversation orchestration; and
  • Anthropic Claude (Haiku 4.5) — the conversational model, accessed through ElevenLabs. The Claude leg is governed by the ElevenLabs Data Processing Agreement, which holds the Anthropic sub-processor contract.

AI-generated session recaps are marked “AI-generated” in-app.

(Soul Blueprint) Your birth details are processed by AI (Anthropic Claude, via Anthropic’s direct API) to generate personalized interpretations of your numerological, astrological, and Soul Diamond profiles. Anthropic does not use API inputs for training. Generated reports are stored temporarily to enable delivery and re-download (see section 8).

5. How We Use Your Data

  • Coaching delivery and continuity (Coach) — to run your live voice session and carry context forward, the AI generates session recaps and updates your Client Graph so the next session builds on the last.
  • Report generation (Soul Blueprint) — to generate and deliver your Soul Blueprint report.
  • Safety — to surface crisis or self-harm signals and direct you to appropriate support resources.
  • Security and fraud prevention — to protect accounts and detect abuse.
  • Billing — subscription billing via Apple / Google in-app purchase (Coach) and one-off payment via Stripe (Soul Blueprint).
  • Legal compliance — to meet our obligations under applicable law.

We do not sell your personal data, and we do not use your coaching content for advertising.

6. Third Parties / Recipients

We share data only with the recipients below, scoped per product. Each link is to that recipient’s own privacy policy.

Coach recipients (the live coaching-data set)

  • AWS — hosting (DynamoDB + S3), all coaching data at rest, in eu-west-3 (Paris) (Privacy Policy)
  • ElevenLabs — voice transport + conversation orchestration (and the Claude-via-ElevenLabs leg) (Privacy Policy)
  • Cognito (AWS) — authentication, including Apple / Google federated sign-in (Privacy Policy)
  • Apple — in-app purchase billing + Sign in with Apple (Privacy Policy)
  • Google — Play Billing + Sign in with Google (Privacy Policy)

Soul Blueprint recipients

Forthcoming (planned, not yet live): RevenueCat (subscription-entitlement management) and Sentry (crash reporting with transcript / PII scrubbed) are planned recipients. They are disclosed here as planned; they do not process your data today. This policy will be updated before either goes live.

7. International Transfers

All coaching data at rest resides in the EU — AWS eu-west-3 (Paris). The data controller is established in the UAE, and engineering and maintenance access to the EU-hosted data is performed from the UAE. That remote access is itself an EU → UAE third-country transfer (remote access to data is a transfer even when no copy is made).

Because we collect personal data directly from EU users while established outside the EU, our processing of EU users’ data is also governed by GDPR by virtue of Article 3(2).

The UAE has no EU adequacy decision, so an Article 46 transfer safeguard applies to the EU → UAE leg. The exact Article 46 instrument is a counsel decision tracked in our vendor-DPA checklist. In the interim we operate on a GDPR-aligned contractual posture (data processing agreements binding each recipient to equivalent protection).

8. Data Retention

We state our actual retention behavior:

  • (Coach) Transcripts and consent / signature audit (S3), and your coaching records (DynamoDB) have no automatic expiry — they are retained until you delete your account. S3 object versioning is enabled so the consent / signature record is tamper-evident for audit.
  • (Coach) ElevenLabs — Zero-Retention Mode on production. In production, ElevenLabs operates in Zero Retention Mode: it keeps no copy of your voice or your transcript. Our own systems are the sole place your coaching content is stored.
  • (Coach) Voice audio is processed live and is never written to a recording file — there is no audio store anywhere in our system. Only the text transcript persists.
  • (Soul Blueprint) Reports are stored for 30 days after generation, then automatically deleted. Payment records are retained as required by law.
  • (Coach) Content-report evidence (our content-moderation store). When you report AI content, we keep a pseudonymized copy of the report and the reported conversation for up to 12 months for safety and legal review, then it is automatically deleted. This evidence is keyed outside your account and may survive account deletion as a record of the reported content — it contains no name, email, or account identifier. The lawful basis is the establishment, exercise or defence of legal claims together with our platform-safety legitimate interest. Your account deletion is never blocked or delayed by a report (see section 9).
  • Account-deletion-request records are kept as a deletion audit (a retention policy for these records is under review; see section 9).

9. Deletion & Your Rights

Two deletion paths (Coach)

  • In-app — Settings → Delete my account. This runs an authenticated cascade that (a) revokes your Apple / Google provider tokens, (b) deletes every record in your account partition in DynamoDB, (c) deletes your files in S3, and (d) deletes your Cognito sign-in identity last.
  • Public request page — /delete-account. If you cannot sign in, you can request deletion here; we record the request and action it after verifying your email.

An important caveat (we will not overstate this): two records may survive the cascade, both keyed outside your account partition: (1) an account-deletion-request audit record (keyed to your email) — a record that a deletion was requested, for which a retention policy is under review; and (2) content-report evidence — if you (or another user) reported AI content, a pseudonymized copy of the report and the reported conversation is kept for up to 12 months for safety and legal review, then auto-deleted (section 8). It contains no name, email, or account identifier, and its lawful basis is the establishment, exercise or defence of legal claims plus our platform-safety legitimate interest. We therefore do not claim “everything is removed” — these two records can remain (the second only ever pseudonymized and time-bound). Your right to delete is never blocked, delayed, or conditioned on an open report — we preserve the evidence, not the account, and your in-app deletion always runs immediately and in full. On production, the ElevenLabs processor holds no copy of your data to delete (Zero Retention Mode).

Your GDPR / UK rights. You have the right to: access, rectification, erasure, data portability, restriction of processing, objection, and to withdraw consent. Because your special-category processing rests on explicit consent (section 3), deleting your account withdraws that Article 9 consent and stops the associated processing.

US state rights. If you are a Washington resident, your consumer-health-data rights (My Health My Data Act) — including the right to withdraw your collection or sharing consent and to have consumer health data deleted — are described in our separate Consumer Health Data Privacy Policy, where California residents’ rights are also cross-referenced. To exercise any right, contact office@dailybebetter.com.

10. Children

Both products are for adults 18 and over only. Coach enforces a self-declared 18+ age gate at signup. We do not direct either product to, or knowingly collect personal data from, anyone under 18. If you believe a minor has provided us data, contact us and we will delete it.

11. Changes & Contact

We may update this policy; we will post the new version with an updated Last updated date and, for material changes, notify you (e.g. by email or in-app notice).

Questions, requests, or complaints: office@dailybebetter.com. EU and UK users have the right to lodge a complaint with their local supervisory authority.

Last updated: June 2026 (draft — pending counsel review and entity incorporation).