Last updated · May 11, 2026

Privacy Policy

30K is a personal diary. Your entries belong to you — we built the app around that principle. This page explains, in plain language, what we collect, why, and who else touches it.

30K is operated by Andrei Blokhin, an individual based in Cyprus (“we”, “us”). This policy covers the 30K iOS app and related services. By using 30K you agree to what’s described here.

What we collect

Account. When you sign in we store an account identifier. If you use Sign in with Apple, we receive the relay email Apple gives us (we don’t see your real address unless you share it). You can also use 30K anonymously — in that case we generate a random ID with no personal info attached.

Your entries. The diary content you write — text, dates, voice notes — is stored in your account so it can sync across your devices. We do not read it manually. It is used only to power the app’s features for you.

Opt-in AI features. The three features below — voice transcription, photo recognition, and entry analysis (reflections, chapters, summaries) — are turned on or off by you. During onboarding you’re asked explicitly for each one, and you can change your choices at any time in Settings. If a feature is off, nothing is sent to OpenAI for it.

Voice notes. If voice transcription is enabled and you record audio, the audio file is sent to OpenAI for transcription and then stored alongside your entry. If it’s disabled, the audio still gets saved with your entry, but it isn’t transcribed.

Photos. If photo recognition is enabled and you attach photos to an entry, the image files are uploaded to your account and sent to OpenAI so the app can read text in the image, describe what’s on it, and tie it into your entry. We also read the photo’s metadata (EXIF) — image size, capture date, device, and GPS coordinates if the photo file contains them — and use it as context for the same purpose. Photos and their metadata are stored alongside the entry. If photo recognition is off, photos are still stored with your entry but aren’t sent to OpenAI.

Device & usage data. App version, OS version, device model, language, crashes, and product analytics events (which screens you open, which buttons you tap). We use this to fix bugs and improve the app. No diary content is included in analytics events.

Purchases. Subscription status comes from Apple via StoreKit. We don’t receive your card details — Apple handles payment.

Push tokens. If you enable notifications, we store an APNs token to deliver them.

What we don’t collect

No contacts, no health data, no advertising IDs. We don’t track your device’s location — the only location data we ever see is the GPS coordinates baked into a photo’s EXIF, if you choose to attach a photo that has them. The only iOS permission 30K asks for is the microphone, and only when you record a voice note. Photos are picked through Apple’s system picker, which only hands us the files you explicitly select.

How we use your data

  • Run the app’s core features (writing, syncing, search, reminders).
  • Power AI features you’ve enabled — reflections, chapter generation, summaries.
  • Transcribe voice notes you record, if voice transcription is enabled.
  • Read and describe photos you attach so they become part of the entry, if photo recognition is enabled.
  • Send you push notifications you’ve opted into.
  • Diagnose crashes and understand which features are used.
  • Process subscriptions and prevent abuse.

We do not sell your data, and we do not use the content of your entries for advertising or to train AI models.

Third parties

We keep this list short on purpose.

  • Apple — Sign in with Apple, In-App Purchases, push notifications (APNs).
  • OpenAI — used only for the AI features you’ve enabled: reflections/chapters/summaries (entry analysis), voice transcription, or photo recognition. The relevant entry content, audio, or image is sent to OpenAI’s API to produce a response. If a feature is off, nothing goes to OpenAI for it. We use OpenAI’s API with their no-training policy for API traffic; OpenAI may retain data briefly for abuse monitoring per their terms.
  • PostHog — product analytics and crash reporting. Receives device/usage events as described above. Diary content is never sent.

Our backend (database, sync, auth) runs on infrastructure we control — Supabase and PowerSync, both self-hosted on our own servers. Your data is not shared with Supabase Inc. or PowerSync Inc.

Security

Data is encrypted in transit (TLS) between your device and our servers. Our servers run on encrypted disks and access is limited to the developer operating the service. We do our best, but no system is perfectly secure — if you spot something, please email us.

Data retention and deletion

You can delete your account at any time from within the app (Settings → Delete account). Deletion is immediate and permanent — your entries, audio, and account record are removed from our database. Backups roll off within 30 days.

You can also export everything as a ZIP archive from the app at any time, and import an archive back later.

If you stop using 30K without deleting the account, we keep the data so you can come back to it.

Your rights

You can:

  • See your data — it’s all in the app, or exportable as a ZIP.
  • Correct or delete any entry, individually or all at once.
  • Delete your account and all associated data.
  • Ask us a question about your data — email below.

If you live in the EU/UK, you have rights under GDPR (access, rectification, erasure, portability, objection). The above features cover all of them; if you’d rather we handle it manually, email us.

Children

30K is intended for users 16 and older. We don’t knowingly collect data from anyone younger. If you believe a child has created an account, email us and we’ll delete it.

Changes to this policy

We may update this policy as the app changes. The “updated” date at the top reflects the latest version. Significant changes will be announced in-app.

Contact

Questions, requests, or anything about your data — email hi@30k.app.