Privacy Policy

Last updated: 21.02.2026

1. Data Controller

BetterQualities is the data controller responsible for your personal data.

BetterQualities
[email protected]

2. Data We Collect

  • Email address
  • Encrypted password
  • User-created content (qualities, approaches, notes)
  • Subscription status and transaction identifiers
  • Technical data necessary to operate the Service (e.g., session data)
  • Messages you send to us

We do not store your payment card details. Payments are processed securely by our payment provider.

Because the Service relates to mental wellbeing, content you create may reflect aspects of your mental state. You choose what information you enter into the Service.

3. Legal Basis for Processing

  • Contract performance – to provide and operate the Service
  • Legal obligation – to comply with accounting and tax requirements
  • Legitimate interests – to secure, maintain, and improve the Service
  • Consent – where required (e.g., optional communications or analytics)

4. How We Use Your Data

  • Create and manage your account
  • Provide access to free and paid features
  • Process subscriptions and manage billing
  • Send essential service communications (e.g., email verification)
  • Maintain security and prevent misuse
  • Improve the Service

5. Service Providers

We use trusted service providers to operate the Service:

  • Hosting provider (Hetzner Online GmbH, Germany)
  • Payment processor (Stripe Payments Europe, Ltd.)
  • Email delivery provider (Brevo)

These providers process personal data on our behalf under data processing agreements and appropriate safeguards.

6. International Transfers

Some providers (such as Stripe) may process data outside the European Economic Area. Where this occurs, appropriate safeguards such as Standard Contractual Clauses are in place.

7. Analytics

We currently do not use third-party analytics tools. If analytics are introduced in the future, we will update this Privacy Policy and, where required, request your consent before activating non-essential tracking technologies.

8. Data Retention

We retain your personal data for as long as your account is active.

If you delete your account, your personal data will be deleted or anonymised within a reasonable period, except where retention is required by law (e.g., accounting obligations).

9. Your Rights

Under the GDPR, you have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Request deletion of your data
  • Restrict or object to processing
  • Data portability
  • Withdraw consent at any time (where applicable)
  • Lodge a complaint with a supervisory authority

In Finland, the supervisory authority is the Office of the Data Protection Ombudsman (Tietosuojavaltuutettu).

10. Cookies

We use essential cookies necessary for authentication and secure operation of the Service. These cookies cannot be disabled without affecting functionality.

11. Security

We implement appropriate technical and organisational measures to protect personal data. Passwords are stored as secure hashes and data is transmitted over encrypted connections (HTTPS).

12. Changes to This Policy

We may update this Privacy Policy from time to time. If changes are material, we will provide notice through the Service or by email.