dorima

← Back to Dorima

Privacy Policy

Last updated: March 6, 2026

Introduction

Dorima is a personal intelligence service designed to help you understand your life with clarity and calm. This Privacy Policy explains how we collect, use, store, and protect your information. We aim to use as little data as possible, store it safely, and give you meaningful control over it at all times.

Dorima is not a medical service and does not provide medical advice, diagnosis, or treatment.

Information We Collect

We collect information in the following categories, only as needed to provide the service:

  • Account Information: Email address, authentication credentials, and account creation date.
  • Content You Create: Tasks, notes, reflections, goals, and conversations that you choose to store in your personal timeline.
  • Integration Data: Data from third-party services you explicitly connect, such as Google Calendar, Oura Ring, or Garmin.
  • Preferences: Timezone, display settings, notification preferences, and AI provider configuration.

AI Processing and Third-Party Data Sharing

Dorima uses AI to provide intelligence features including chat conversations, weekly narrative synthesis, ambient observations, and pattern extraction from your reflections. These features require sending some of your data to Anthropic, a third-party AI provider, for processing.

When you use AI-powered features, the following categories of data may be included in requests to Anthropic's API:

  • Reflections and journal entries: The text you write in reflections, which may contain personal thoughts, experiences, and observations.
  • Tasks, goals, and commitments: Your current tasks, projects, and goals extracted from your reflections.
  • Calendar events: Titles and times from connected calendar services.
  • Health data: If you connect Oura Ring, sleep scores, readiness scores, HRV, and activity data may be included in AI context to inform observations about your wellbeing patterns.
  • People and relationships: Names and relationship context extracted from your reflections.
  • Chat messages: Your conversation history within each chat session.

This data is sent to Anthropic solely to generate responses and insights for you. Anthropic's data handling is governed by their Privacy Policy and Terms of Service. Dorima does not control how Anthropic processes data once received.

Beta credits: New users receive a limited amount of free AI credits using Dorima's system API key. When using beta credits, your data is processed through Dorima's Anthropic account. When you provide your own Anthropic API key, your data is processed through your personal Anthropic account instead.

You may remove your API key or stop using AI features at any time from Settings. Removing your key immediately disables AI-assisted features. Core features (tasks, reflections, calendar, habits) function without AI processing.

API Key Storage

If you provide an API key for Anthropic, it is encrypted at rest using AES-256-GCM before storage. The key is used only to process your AI requests. It is never logged, analyzed, shared, or used for any other purpose.

How We Use Your Information

We use your information solely to operate Dorima for your personal benefit, including to:

  • Display your tasks, reflections, goals, and calendar events
  • Provide optional summaries and reflections based on your data
  • Synchronize with connected services you authorize
  • Support AI-assisted features when configured by you

Dorima does not sell personal data, aggregate user data across accounts, or provide analytics or insights to third parties.

Garmin Data Use

If you connect your Garmin account, Dorima may import activity, sleep, and daily wellness data from Garmin.

Garmin data is used solely to provide personal context, historical summaries, and reflection tools within Dorima. Garmin data is displayed only to the user who authorized access.

Dorima does not:

  • Sell, license, or redistribute Garmin data
  • Aggregate Garmin data across users
  • Use Garmin data for profiling, eligibility determination, or automated decision-making
  • Use Garmin data to provide medical advice, diagnosis, or treatment

All Garmin data remains associated only with the individual user who authorized the integration.

Data Storage and Security

Dorima uses an append-only event architecture. Data is encrypted in transit and at rest. Access to user data is restricted to the user and essential system processes.

Dorima employees do not access personal data except when required for support, and only with user consent.

Integrations

Integrations are optional and require your explicit authorization. You may connect or disconnect integrations at any time.

  • Google Calendar: Event titles, times, and metadata for schedule awareness. Dorima's use of Google user data complies with the Google API Services User Data Policy, including the Limited Use requirements.
  • Oura Ring: Sleep, readiness, and activity data for personal context and reflection. When AI features are active, this health data may be included in requests to Anthropic to inform wellbeing-related observations (see “AI Processing” above).
  • Garmin: Activity, sleep, and daily wellness data imported from your Garmin account for personal use only.

Dorima accesses only the data required to provide the integration and nothing more.

Data Retention and Deletion

You may delete your account at any time from Settings. All associated data is deleted within 30 days.

If you disconnect an integration, data imported from that service (including Garmin data) is no longer synchronized and may be deleted as part of normal system cleanup.

Your Rights and Control

You may, at any time:

  • Access and download your data
  • Correct or delete your data
  • Disconnect integrations
  • Remove AI provider keys

All controls are available directly in Settings.

Error Tracking and Analytics

Dorima uses Sentry for error tracking and application monitoring. When an error occurs, Sentry may collect technical information including error messages, stack traces, browser type, and the URL where the error occurred. Personally identifiable information is excluded from error reports.

Dorima does not use advertising trackers, analytics platforms, or tracking pixels.

Children's Privacy

Dorima is not intended for use by anyone under the age of 16. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us at privacy@dorima.app and we will delete it.

International Data Transfers

Your data is stored on Supabase infrastructure and may be processed by Anthropic's API servers. Both services may process data in the United States. By using Dorima, you consent to the transfer of your information to the United States and other jurisdictions where these services operate.

Changes to This Policy

We may update this Privacy Policy periodically. If we make material changes to how we handle personal data, we will notify you through the application or by email. Continued use of Dorima after changes constitutes acceptance of the updated policy.

Contact

For privacy questions or requests, contact us at: privacy@dorima.app