Datana StudiosContact
Applies to all applications published by Datana Studios LLC.
  • Privacy Policy
  • Terms of Service
  • EULA
  • Acceptable Use
  • Copyright & DMCA
  • Data Deletion
  • Prior Versions

Privacy Policy

Last Updated: July 4, 2026

Introduction

Datana Studios LLC, a New Jersey limited liability company located at 971 US Highway 202N, Ste R, Branchburg, NJ 08876, USA ("Datana Studios", "we", "our", "us"), operates mobile applications and related services (the "Services"), including Jot, Form Filler, Game Set Match, Trak, Daily Morals, and Museum Mode. This Privacy Policy explains how we collect, use, disclose, and safeguard your information. For the Services, we are the data controller.

We grant the rights described in this policy to all users, regardless of where you live.

Information We Collect

Information You Provide

  • Account information: Name, email address, and profile details when you create an account.
  • User content: Messages, posts, notes, photos and other media, documents you upload for AI-assisted filling, and other content you create within our apps.
  • Payment information: Purchases through the Apple App Store or Google Play are processed by those stores; web purchases are processed by Stripe or Paddle. We receive transaction records (product, amount, status) but never your full card number.
  • Communications: Messages you send to us for support or feedback.

Information Collected Automatically

  • Device information: Device type, operating system, app version, unique device identifiers.
  • Usage data: Features used, actions taken, time and duration of use.
  • Log and diagnostic data: IP address, access times, crash reports and performance data (collected via Sentry).
  • Location data: Some features (for example, attaching a location to a photo or note) use your device's GPS. Location is collected only when you explicitly enable the feature and grant the OS-level permission, and you can revoke it at any time in your device settings.

We do not collect information from third-party data brokers, and we do not use third-party advertising SDKs.

How and Why We Use Your Information

| Purpose | Data used | Legal basis (GDPR) | |---|---|---| | Provide and operate the Services (accounts, content storage and sync, social features) | Account info, user content | Performance of a contract | | Process AI Features you invoke (tagging, summaries, document analysis, agents) | The content you submit to the feature | Performance of a contract | | Process payments and manage subscriptions | Payment/transaction records | Performance of a contract | | Send service notifications (account, security, activity) | Account info, usage data | Performance of a contract; legitimate interests | | Understand usage and improve the Services | Usage data, diagnostics | Legitimate interests | | Detect and prevent fraud, abuse, and security incidents | Log data, usage data | Legitimate interests; legal obligation | | Comply with law and enforce our terms | As required | Legal obligation; legitimate interests | | Send marketing communications (if we ever do) | Email address | Consent (opt-in, revocable) |

We do not use your personal information for automated decision-making that produces legal or similarly significant effects.

AI Features and Model Providers

Some features send the content you submit to third-party large-language-model providers — currently OpenAI — to generate the response. What you should know:

  • Content is sent only when you use an AI Feature, and only the content needed for that feature.
  • We access OpenAI via its API. Under OpenAI's API terms, API content is not used to train OpenAI's models, and is retained by OpenAI for a limited abuse-monitoring period before deletion.
  • Some AI features run entirely on your device (on-device models); content processed this way does not leave your phone.
  • AI usage is metered by us (request counts, token counts, costs) to enforce budgets and rate limits; the metering records reference your account.

When We Share Information

We do not sell your personal information, and we do not share it for cross-context behavioral advertising. We share information only with:

  • Service providers (processors) acting on our instructions:

| Provider | Function | Location | |---|---|---| | Amazon Web Services | Hosting, storage, content delivery | United States | | OpenAI | AI model inference (API) | United States | | Stripe | Web payment processing | United States | | Paddle | Web payment processing (merchant of record) | United Kingdom | | RevenueCat | In-app purchase management | United States | | Sentry | Crash and error reporting | United States |

  • Other users, when you choose to share content through social features (posts, shared collections, chat).
  • Legal requirements: When required by law, subpoena, or legal process, or to protect the rights, safety, and property of our users or the public.
  • Business transfers: In connection with a merger, acquisition, or sale of assets, in which case this policy will continue to apply to your data and we will notify you of any change of controller.

International Data Transfers

We are based in the United States and process data there. Where we transfer personal data from the European Economic Area, United Kingdom, or Switzerland, we rely on the European Commission's Standard Contractual Clauses (and UK/Swiss equivalents) with our processors, and on the EU–US Data Privacy Framework where the recipient is certified.

Data Retention

| Data | Retained | |---|---| | Account information | Until you delete your account | | User content | Until you delete the content or your account | | Payment/transaction records | 7 years (tax and accounting obligations) | | Diagnostic and crash data | 90 days | | Usage analytics | Up to 24 months, then deleted or aggregated | | Backup copies | Purged on a rolling basis within 14 days of deletion |

See our Data Deletion page for how to delete your account and what happens when you do.

Data Security

We protect your information with industry-standard measures, including encryption in transit (TLS) and at rest, per-tenant data isolation, least-privilege access controls, and audit logging. No method of transmission or storage is 100% secure; if we learn of a breach affecting your personal data, we will notify you and the relevant authorities as required by law.

Your Rights

You may, at any time:

  • Access the personal data we hold about you
  • Correct inaccurate data
  • Delete your data (see Data Deletion)
  • Export your data in a portable format
  • Object to or restrict certain processing
  • Withdraw consent where processing is based on consent

To exercise any right, use the in-app settings or email support@datana.ltd. We will respond within 30 days and will not discriminate against you for exercising your rights. If you are in the EEA/UK, you may also lodge a complaint with your supervisory authority.

California Residents (CCPA/CPRA)

In the last 12 months we have collected the categories of personal information described in "Information We Collect": identifiers, user content, commercial information, internet activity, approximate and (with permission) precise geolocation, and inferences for feature functionality. We collect them from you and your devices, for the purposes described above, and disclose them only to the service providers listed. We do not sell personal information or share it for cross-context behavioral advertising, and we have no actual knowledge of selling or sharing the personal information of consumers under 16. We honor Global Privacy Control signals for the browser contexts in which they apply. You may exercise your CCPA rights (know, delete, correct, portability, non-discrimination) through the channels above, including via an authorized agent.

Cookies and Analytics

Our marketing websites are static and set no tracking cookies; we do not use advertising trackers or third-party analytics cookies. Our mobile apps use device identifiers for crash reporting and usage analytics as described above. Because we do not use non-essential cookies, we do not display a cookie banner; if that changes, we will update this policy and request consent where required.

Children's Privacy

Our Services are not directed to children under 13 (or the higher applicable age of digital consent), and we do not knowingly collect personal information from them. If we learn we have collected such information, we will delete it promptly. Parents who believe their child has provided us personal information may contact support@datana.ltd.

Changes to This Policy

We may update this Privacy Policy from time to time. If a change is material, we will notify you by email or in-app notice before it takes effect. Prior versions are available in our legal archive. The "Last Updated" date at the top reflects the current version.

Contact Us

Privacy questions or requests: support@datana.ltd

Datana Studios LLC, 971 US Highway 202N, Ste R, Branchburg, NJ 08876, USA

© 2026 Datana Studios LLC
PrivacyTermsEULAData Deletion