Privacy Policy

1. General Provisions

This Privacy Policy sets out how MB VIOLETINIS RYTAS (hereinafter "We", "Company" or "Data Controller") collects, uses, stores and discloses information obtained from users of the website feeling.app (hereinafter "Website").

By using our Website, you agree to this Privacy Policy and our data processing practices.

2. What Data We Collect

2.1. Data you provide directly

• Registration data: name, email address, password (encrypted)
• Profile data: birth date, gender, time zone (if provided)
• Communication content: your questions and conversation history with the AI assistant
• Payment data: payment method and transaction ID (card details are stored by the payment processor ThriveCart/Stripe, not by us)

2.2. Automatically collected data

• IP address and approximate geographic location
• Browser type and version
• Device type and identifier (device fingerprint) — used for abuse prevention
• Visit date and time
• Session duration and website interaction
• Meta (Facebook) Pixel data — anonymous conversion tracking
• Google Analytics data — anonymous visitor statistics

3. Purposes of Data Processing

We process your data for the following purposes:

• Service provision: personalizing AI assistant responses based on your name and context
• Account management: login, authentication and security
• Credits system: managing purchases and balance
• Communication: responding to inquiries, notifications about service changes
• Free trial protection: monitoring IP addresses and device identifiers to prevent free trial abuse (repeat registration)
• Marketing analytics: Meta (Facebook) Pixel and Google Analytics for anonymous conversion tracking and service improvement
• Service improvement: anonymous statistics to improve service quality
• Legal compliance: accounting and tax requirements

4. Legal Basis for Data Processing

We process your data based on:

• Contract: data processing necessary to fulfill the service agreement (GDPR Art. 6(1)(b))
• Consent: when you provide additional data or agree to marketing communications (GDPR Art. 6(1)(a))
• Legitimate interests: service improvement, fraud prevention (GDPR Art. 6(1)(f))
• Legal obligation: tax and accounting requirements (GDPR Art. 6(1)(c))

5. Data Retention Period

• Account data: stored while account is active + 2 years after deletion
• Conversation history: stored for 12 months or until you delete it
• Payment records: 10 years (Lithuanian accounting laws)
• Technical logs: 90 days

6. Data Sharing with Third Parties

We may share your data with:

• Payment processors: ThriveCart, Stripe, PayPal (payment processing)
• Server providers: trusted EU data centers
• AI technology providers: OpenAI, Anthropic (conversation processing, anonymized)
• Analytics providers: Meta Platforms (Facebook Pixel), Google (Analytics) — anonymous conversion tracking
• Law enforcement: only upon receiving a lawful request

7. Your Rights (under GDPR)

You have the following rights:

• Right of access: obtain information about processed data
• Right to rectification: request correction of inaccurate data
• Right to erasure: request deletion of data ("right to be forgotten")
• Right to restriction: restrict data processing
• Right to data portability: receive data in a structured format
• Right to object: object to data processing
• Right to withdraw consent: withdraw given consent at any time

To exercise these rights, contact: help@feeling.app

You also have the right to file a complaint with the State Data Protection Inspectorate (www.vdai.lrv.lt).

8. Data Security

We apply the following security measures:

• SSL/TLS encryption for all data transmissions
• Password hashing algorithms (bcrypt)
• Regular security audits
• Access control and authorization
• Database encryption

9. Children's Privacy

Our services are intended for individuals aged 16 and above. We do not knowingly collect data from individuals under 16 years of age. If we learn that we have collected a child's data, we will delete it immediately.

10. Policy Changes

We may periodically update this Privacy Policy. We will inform about significant changes via email or by posting a notice on the Website. We recommend reviewing this policy regularly.

11. Contact

If you have questions about this Privacy Policy or data processing: