Privacy Policy

Last updated: 2026-04-05

Introduction

GratLog (the "Company," "we," "us," "our," or "Service") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website located at gratlog.com (the "Website") and use our services (collectively, the "Service"). Please read this Privacy Policy carefully. If you do not agree with our policies and practices, please do not use our Service. If you have any questions or concerns about our privacy practices, please contact us at the information provided at the end of this policy.

Information We Collect

We collect information in various ways, including information you provide directly to us and information collected automatically through your use of our Service.

Information You Provide Directly

Account Registration: When you create a GratLog account, we collect information such as your name, email address, password, profile information, and any other details you choose to provide. You may optionally provide additional information including your photograph, biography, and preferences.

Communication: When you communicate with us through email, support forms, chat features, or other messaging channels, we collect the content of your messages, attachments, and any other information you choose to share.

Payment Information: If you make a purchase or subscribe to paid services, we collect payment information including credit card numbers, billing address, and transaction history. Payment processing is handled by third-party payment processors who adhere to industry-standard security practices.

User-Generated Content: We collect any content you create, upload, or publish on the Service, including gratitude logs, entries, comments, images, and any other materials you submit.

Survey and Feedback: We may collect information when you participate in surveys, feedback forms, contests, or promotional activities offered through the Service.

Information Collected Automatically

Device and Usage Information: We automatically collect information about your device and how you interact with our Service, including device type, operating system, browser type, IP address, mobile device identifiers, pages visited, time spent on pages, links clicked, and the referring URL.

Location Information: We may collect general location information based on IP address and, with your permission, precise geolocation data from your device. You can control location sharing through your device settings.

Cookies and Tracking Technologies: We use cookies, web beacons, pixels, and similar tracking technologies to collect information about your browsing activities, preferences, and interactions with our Service.

Analytics: We collect analytics data regarding your use of the Service to understand user behavior, improve our offerings, and enhance user experience.

How We Use Your Information

We use the information we collect for a variety of purposes, including but not limited to:

Service Delivery: To provide, maintain, and improve our Service and your user experience; to process transactions; to manage your account; and to provide customer support.

Communication: To send you service-related announcements, updates, and support messages; to respond to your inquiries and requests; to provide information about changes to our policies or terms; and to send marketing communications and promotional materials (with your consent where required by law).

Personalization: To customize your experience; to provide recommendations and personalized content; and to remember your preferences and settings.

Analytics and Improvement: To analyze usage patterns; to understand user preferences and trends; to conduct research and analytics; to improve the functionality, performance, and security of our Service; and to develop new features and services.

Security and Fraud Prevention: To detect, investigate, and prevent fraudulent transactions, security incidents, and other prohibited activities; to enforce our Terms of Service and other agreements; and to protect the rights, property, and safety of GratLog, our users, and the public.

Legal Compliance: To comply with applicable laws, regulations, legal processes, and governmental requests; to establish, exercise, or defend legal claims; and to fulfill other legal obligations.

Marketing and Advertising: To develop marketing strategies; to conduct targeted advertising campaigns; to measure advertising effectiveness; and to understand which services and features are of most interest to our users.

Data Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. However, we may share your information in the following circumstances:

Service Providers: We share information with third-party service providers who perform services on our behalf, including web hosting providers, payment processors, email service providers, customer support platforms, analytics providers, and marketing partners. These service providers are contractually obligated to use your information only to provide the specified services and to maintain the confidentiality and security of your information.

Business Transfers: If GratLog is involved in a merger, acquisition, bankruptcy, dissolution, reorganization, or similar transaction, your information may be transferred as part of that transaction. We will provide notice before your information becomes subject to a different privacy policy.

Legal Requirements: We may disclose your information when required by law, court order, subpoena, or other legal process; to respond to lawful requests from government authorities; or when we believe in good faith that disclosure is necessary to comply with applicable law, enforce our policies, or protect the safety, rights, or property of GratLog, our users, or others.

User Consent: We may share your information with third parties when you provide explicit consent to do so, either through your account settings or through direct authorization.

Aggregated and De-identified Information: We may share aggregated, anonymized, or de-identified information that cannot reasonably be used to identify you with third parties for research, marketing, analytics, and other purposes.

Public Information: Any information you choose to make public on the Service, such as a public profile or publicly shared content, may be viewed and accessed by anyone, including search engines and other third parties.

Cookies and Tracking Technologies

GratLog uses cookies and similar tracking technologies to enhance your experience, understand user behavior, and provide personalized content and advertising.

Types of Cookies: We use both session-based and persistent cookies. Session cookies expire when you close your browser, while persistent cookies remain on your device until deleted or until they expire.

Cookie Uses: We use cookies for authentication and account management, remembering your preferences and settings, tracking your activities and usage patterns, personalizing content and recommendations, measuring the effectiveness of our marketing efforts, and conducting analytics.

Third-Party Cookies: Third-party service providers, including analytics providers and advertising networks, may place cookies on your device through our Service. These cookies allow these providers to collect information about your browsing activities across multiple websites and applications.

Cookie Management: You can control cookies through your browser settings and can delete cookies at any time. Most browsers allow you to refuse cookies or alert you when cookies are being sent. Please note that disabling cookies may affect the functionality of our Service and your ability to use certain features.

Do Not Track: Some browsers include a "Do Not Track" feature. Our Service does not currently respond to Do Not Track signals, but you can use other tools to control cookies and tracking as described above.

Your Rights and Choices

Depending on your jurisdiction, you may have certain rights regarding your personal information.

Access and Portability: You have the right to request access to the personal information we hold about you and to receive a copy of your information in a portable, machine-readable format.

Correction and Updates: You have the right to request that we correct, update, or amend inaccurate or incomplete information in our records. You can update your account information directly through your account settings.

Deletion: You have the right to request that we delete your personal information, subject to certain legal exceptions. Please note that deletion may not be possible if the information is necessary for us to complete a transaction, comply with legal obligations, or for other legitimate business purposes.

Restriction and Objection: In certain circumstances, you may have the right to restrict our processing of your information or to object to specific uses of your data.

Marketing Communications: You can opt out of receiving marketing and promotional communications from us at any time by following the unsubscribe instructions in our emails or by adjusting your communication preferences in your account settings. Please note that we will continue to send you service-related communications even if you opt out of marketing messages.

Cookie Preferences: You can control cookies through your browser settings as described in the Cookies and Tracking Technologies section above.

California Privacy Rights: If you are a California resident, you have rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA), including the right to know, delete, and opt-out of the sale or sharing of your personal information. You also have the right not to receive discriminatory treatment for exercising your privacy rights. You can exercise these rights by submitting a request to our Privacy Team using the contact information provided below.

European Privacy Rights: If you are located in the European Union, United Kingdom, or Switzerland, you have rights under the General Data Protection Regulation (GDPR) and similar privacy laws, including the right to access, correct, and delete your information; to restrict processing; to data portability; and to object to processing. You have the right to lodge a complaint with your local data protection authority if you believe we have violated your privacy rights.

Exercising Your Rights: To exercise any of these rights, please contact us using the information provided in the Contact Us section below. We will respond to your request within the timeframe required by applicable law. We may need to verify your identity before processing your request.

Data Security

GratLog is committed to protecting your personal information against unauthorized access, alteration, disclosure, and destruction. We implement comprehensive security measures designed to safeguard your data.

Security Measures: We employ industry-standard encryption protocols, secure socket layer (SSL) technology, and other technical safeguards to protect information transmitted over the internet. We use firewalls, intrusion detection systems, and access controls to protect our systems and databases. We regularly update and patch our systems to address known security vulnerabilities.

Access Controls: We limit access to personal information to employees, contractors, and service providers who have a legitimate need to know the information and who are subject to confidentiality obligations.

Data Retention: We retain personal information for as long as necessary to provide our Service, fulfill the purposes outlined in this Privacy Policy, and comply with applicable legal obligations. The retention period may vary depending on the type of information and the purposes for which we use it. When information is no longer needed, we will securely delete or anonymize it.

Limitations: While we implement robust security measures, no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security of your personal information. You are responsible for maintaining the confidentiality of your account credentials and for any activities that occur under your account.

Children's Privacy

GratLog is not intended for children under the age of thirteen (13), and we do not knowingly collect personal information from children under thirteen. If we become aware that we have inadvertently collected information from a child under thirteen, we will take steps to delete such information and terminate the child's account.

Parental Controls: Parents and guardians who believe their child has provided personal information to GratLog are encouraged to contact us immediately using the information provided in the Contact Us section