Bu gizlilik politikasını Türkçe okuyun →
Summary — at a glance
- Website (cosmirai.com) calculator: no account, no email required. The birth details you enter are computed on the fly and are never saved to any database. There is no tracking cookie, ad network, or visitor analytics.
- Cosmir mobile app: to store your charts, generate your personal daily sky, send reminders, and manage your purchases, an account and birth details are required. This data is yours: you can export it from within the app and delete your account entirely.
- Under no circumstances do we sell your personal data, share it for advertising, or use it for profiling without your knowledge.
1. Who we are (data controller)
This policy applies to the cosmirai.com website and the Cosmir mobile app, operated under the Cosmir brand (“Cosmir”, “we”). The service is operated from the Republic of Türkiye. Cosmir is the data controller under Turkey's Personal Data Protection Law No. 6698 (KVKK) and, for users in the European Economic Area, under the GDPR. For any privacy question or request: [email protected] or [email protected].
2. Data processed in the web calculator
Using the free birth-chart calculator on the website requires no account and no email. The birth date, time, and place you enter to draw your chart travel in the address bar of the result page (as URL parameters) and are used on the server only to perform that one calculation. When it is done, nothing about you stays with us: there is no user account, profile, or chart archive kept on the web side.
A note of technical honesty: like any web server, ours records incoming requests in short-lived technical logs (access logs). These logs exist for system health, abuse prevention, and security; they are not used to build an identity profile and are deleted on a regular schedule. If you share the link to your result page with someone, your birth details are visible inside that link — who you share it with is your choice.
3. Cookies and tracking (web)
- No tracking cookies. No ad network, retargeting, or fingerprinting.
- No analytics. No visitor analytics run on the site today. If we ever add measurement, we will update this page and choose a privacy-respecting method.
- Your preferences never leave your device. Visual preferences such as theme are kept only in your browser and are not sent to us.
4. Data we process in the Cosmir app
The mobile app offers a persistent account and chart library, so — unlike the web — we store some data. We collect only what is needed to provide the service:
a) Account and identity data
Email address, a name or nickname, a securely hashed password (for email sign-up), email verification status, and account timestamps. If you use Sign in with Apple or Google, the identity id the provider passes to us, your name, and (if shared) your profile picture. If you choose Apple's private email relay, your real email may never reach us at all. We never see or store your password in plain text.
b) Birth profiles (charts)
The birth profiles you create for yourself and, if you wish, for people close to you: profile label/name, birth date, birth time, birthplace (city text plus latitude/longitude), time zone, and the reliability of the birth time (exact / approximate / unknown / rectified). This information is the foundation of a chart and can be sensitive. You must only add another person's birth details with their knowledge and consent (see the Terms of Service).
c) Astrology and AI content
The natal interpretations, daily readings, compatibility (synastry) analyses, and rectification results you generate are stored with your account, so you can revisit your history and identical content is not re-generated needlessly. Any life events you enter for rectification are used solely to refine the birth time. Each AI generation's model, token, and cost metadata is kept for service health and abuse prevention.
d) Purchases and subscriptions
Credit packs and subscriptions (Yıldız / Kozmos) are purchased through the Apple App Store or Google Play. Payment is processed by Apple or Google; your card or bank details never reach us. What we keep is the transaction/receipt identifiers from the store, your subscription status and period, your credit balance, and a ledger of credit movements. This data is needed to verify entitlements, prevent double charging, and unlock what you bought.
e) Notifications
If you opt in to daily reminders and notifications, your device's push token, platform, time zone, and notification preferences are stored. These are used to deliver the notification to the right device at your local time; you can turn them off at any time from the app or device settings.
f) Invitations / referrals
If you invite a friend or join with an invite code, we record the referral relationship (who invited whom, and whether the reward has been granted) to credit the right parties.
g) Feedback and support
If you send us a bug report or suggestion, we store the content of your message, the contact email you provide (if any) for a reply, and the app version, platform, and language that help us reproduce the issue.
h) Technical and log data
Like any network service, our servers keep your IP address, request time, and basic device/app information in short-lived technical logs for security, debugging, and abuse prevention. Today the app takes a no-advertising-id approach and embeds no third-party advertising or tracking SDKs.
5. Why we process your data (purposes and legal bases)
- Providing the service — managing your account, computing your chart, generating and storing your interpretations. Basis: performance of a contract.
- Processing purchases — granting and verifying credit and subscription entitlements. Basis: performance of a contract and legal obligations.
- Communication — email verification, password reset, transactional messages, and support. Basis: performance of a contract and legitimate interest.
- Notifications — daily sky reminders. Basis: your consent (given when you enable notifications), which you can withdraw at any time.
- Security and abuse prevention — fighting fraud and misuse. Basis: legitimate interest and legal obligation.
- Legal obligations — accounting, tax, and lawful requests from authorities.
Personal content such as birth data is handled with particular care, and entering it into the app constitutes your explicit consent for the related processing; you can withdraw that consent at any time by deleting the relevant profile or your account.
6. AI generation
Personal interpretations are produced by an AI model that also takes the real sky events of the day into account. For this generation, the AI provider that performs the work (Anthropic) receives the computed data of your chart (planetary positions, aspects, houses) and — if you entered one — the namein the profile. The provider uses this data only to produce that one piece of text and (under the provider's API terms) does not use it to train its models. Your email, password, or payment data is never sent to the AI provider. The general daily horoscopes on the home page are per-sign; they are not generated from your personal data.
7. Who we share with (service providers)
We do not sell your data. We share only what is necessary to run the service, with contractually bound providers:
- Apple and Google— for the app store, in-app purchases, and (if you choose) “Sign in with Apple/Google.” Payment is processed by these providers.
- Anthropic — for AI interpretation generation (within the scope of section 6 above).
- Expo — for push notification delivery and app-update infrastructure.
- OpenStreetMap / Nominatim — for city/place matching when you search for a birthplace (only the text you search is sent).
- Email delivery provider — for verification, password reset, and transactional emails.
- Hosting and content delivery network (CDN) — server infrastructure; sees your IP as a technical necessity.
- Authorities — only where there is a valid request required by applicable law.
Some of these providers may be located abroad, so your data may be transferred internationally to the extent needed to deliver the service. We carry out such transfers within the safeguards required by applicable law (explicit consent, contractual protections).
8. How long we keep your data
We keep account and profile data for as long as your account is open. When you delete your account, the birth profiles, interpretation history, and personal content tied to it are deleted from our systems, or irreversibly anonymized, within a reasonable period. Purchase and billing records may be retained for the duration of statutory (accounting/tax) retention periods. Technical logs are short-lived and deleted on a regular schedule.
9. Your rights over your data
Under the KVKK (Art. 11) and — where in scope — the GDPR, you have the right to access, rectify, and erase your data, to object to processing, and to withdraw consent. You can exercise most of these instantly from within the app:
- Export: obtain a copy of the data tied to your account via the in-app export option.
- Rectification: update your profile and account details from within the app.
- Erasure: delete your account entirely from within the app; this also removes the linked birth profiles and personal content.
You can also write to [email protected]for any data request; we respond as soon as possible and, in any case, within statutory time limits. If you are not satisfied with the outcome of a KVKK request, you also have the right to lodge a complaint with Turkey's Personal Data Protection Authority (or your local supervisory authority in the EEA).
10. Security
We take reasonable technical and organizational measures to protect your data: encryption in transit (HTTPS), secure password hashing, access restrictions, and regular updates. Still, no system is 100% secure, so it matters that you protect your account with a strong, unique password. If a serious security breach affecting your data occurs, we will notify you as required by law.
11. Children's privacy
Cosmir is not directed to children under 13, and we do not knowingly collect data from anyone under that age. Users under 18 should use the service only with a parent's or guardian's consent. If we learn that we have collected data belonging to a child under 13, we will delete it as soon as possible.
12. Changes to this policy
We may update this policy as the product evolves. The date above is refreshed on every meaningful change, and we also announce significant changes in the app or by email. We do not make surprise changes that retroactively protect your data less.
13. Contact
For questions and requests: [email protected] · [email protected]. The rules under which we provide the service live on a separate page: Terms of Service.