Privacy Policy

Last updated: April 2026

Overview

Sigils ("we", "us", or "our") is a mobile application that helps users gamify personal development through quests, stats, and AI mentor feedback. This Privacy Policy explains how we collect, use, and protect your information when you use Sigils.

Information We Collect

We collect the following information when you use Sigils:

  • Account information: your email address and name, provided during sign-up.
  • Quest logs: text entries you submit describing your real-world actions.
  • Stat data: your progress across the five Sigils stats (VIT, STR, DEX, INT, CHA) derived from your quest activity.
  • Usage data: anonymised analytics events (e.g. feature usage, session length) collected via PostHog.

We do not collect payment card details directly — payments are handled by our payment processor.

How We Use Your Information

  • To create and manage your account.
  • To process your quest logs through our AI backend and return personalised mentor feedback.
  • To display and persist your stats and quest history.
  • To improve the app using aggregated, anonymised analytics data.
  • To communicate with you about your account or important updates.

Third-Party Services

Sigils relies on the following third-party services to operate:

  • Supabase — database and authentication. Your account data, quest logs, and stat data are stored on Supabase infrastructure.
  • Anthropic API — powers AI mentor responses. Quest text you submit is sent to the Anthropic API for classification and feedback generation. Anthropic's data handling is governed by their own privacy policy.
  • PostHog — product analytics. We collect anonymised usage events to understand how the app is used. No personally identifiable information is attached to analytics events.
  • Vercel — cloud hosting for the web front-end and API routes.

We do not sell, rent, or share your personal data with third parties for marketing purposes.

Data Retention

We retain your data for as long as your account is active. You may request deletion of your account and all associated data at any time by emailing hello@sigils.app. We will fulfil deletion requests within 30 days.

Security

We take reasonable technical measures to protect your data, including encrypted connections (HTTPS/TLS) and access controls on our database. No system is perfectly secure; please use a strong, unique password for your account.

Children

Sigils is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.

Your Rights

You have the right to:

  • Access the personal data we hold about you.
  • Request correction of inaccurate data.
  • Request deletion of your data.
  • Opt out of analytics collection.

To exercise any of these rights, contact us at hello@sigils.app.

Governing Law

This Privacy Policy is governed by the laws of Malaysia. Any disputes arising from this policy shall be subject to the jurisdiction of the Malaysian courts.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting a notice in the app or sending an email to the address on your account. Continued use of Sigils after changes take effect constitutes acceptance of the revised policy.

Contact

Questions or concerns about this Privacy Policy? Email us at hello@sigils.app.