The data controller responsible for the processing of personal data under Article 4(7) GDPR is:
For all privacy-related inquiries, please contact the email address above.
This Privacy Policy applies to the Maxly mobile application (the "App"), available for download from the Apple App Store and Google Play Store.
We process personal data only when necessary to provide the App and its features. Processing is based on your consent or when permitted by law.
The following data is stored exclusively on your device and not transmitted to our servers:
This data does not leave your device, except in cases described in Section 3.2.
When you use the AI coaching feature, the following data is transmitted to our servers:
Content data:
Technical data:
The following data is NOT sent to our servers:
Crash reports and error logs: If the app crashes, technical diagnostic data (stack trace, device model, operating system version) is anonymously transmitted via Sentry. This helps us fix bugs. You can disable this in app settings.
Anonymous usage analytics: We collect anonymized events via PostHog (e.g. "onboarding started", "task completed") to improve the app. No content of your inputs is tracked. You can disable this in app settings.
| Purpose | Legal Basis |
|---|---|
| Providing AI coaching functionality | Art. 6(1)(b) GDPR (contract performance) |
| Improving the app via anonymous analytics | Art. 6(1)(f) GDPR (legitimate interest) |
| Bug fixing via crash reports | Art. 6(1)(f) GDPR (legitimate interest) |
| Responding to your support requests | Art. 6(1)(b) GDPR |
We share your data with third parties only in the following cases:
To generate personalized coaching content, we use the Claude API from Anthropic, PBC (548 Market St, PMB 90375, San Francisco, CA 94104, USA). Your inputs (goal, tasks, reflections) are transmitted to Anthropic for processing.
Anthropic processes this data in accordance with their own privacy policy: https://www.anthropic.com/legal/privacy
Anthropic is certified under Article 46 GDPR via Standard Contractual Clauses (SCCs). Anthropic does not use your data for AI training purposes (see Anthropic Commercial Terms).
We use Cloudflare, Inc. (101 Townsend St, San Francisco, CA 94107, USA) as our backend infrastructure. Requests to our AI services are routed through Cloudflare Workers.
Privacy policy: https://www.cloudflare.com/privacypolicy/
Cloudflare is GDPR-compliant and uses EU data centers where possible.
When you download the app and during crash reporting, data is processed by Apple (App Store) and Google (Play Store) according to their respective privacy policies.
If enabled, we use Functional Software, Inc. (Sentry) for error logging. Privacy policy: https://sentry.io/privacy/
If enabled, we use PostHog Inc. for anonymous usage analytics. Privacy policy: https://posthog.com/privacy
You have the right to:
Competent supervisory authority:
Send requests to exercise your rights to: support@max-ly.app
Maxly is intended for users aged 17 and over. We do not knowingly process data from children under 17. If we become aware that a minor has provided us with data, we will delete it immediately.
We use HTTPS/TLS encryption for all data transmissions between the app and our servers. Local data is stored in your device's protected app sandbox.
Maxly is not a substitute for medical, psychotherapeutic, or other professional advice. AI-generated coaching content is based on general methodologies and is not intended as medical, therapeutic, or legal advice.
We reserve the right to update this Privacy Policy when legal requirements change or the app introduces new features. The current version is always available at https://max-ly.app/privacy
Material changes will be announced within the app.