Privacy
In force and effective from 13 July 2026. Last updated: 13 July 2026.
English translation provided for your convenience — in case of any discrepancy, the Czech version is legally binding.
ELASRA is an app for personal astrology, numerology and daily insight. We take your privacy seriously: we process most data only so that we can provide the service you requested. Optional things (analytics, news, extended check-in) are always separate and you turn them on yourself — the app does not depend on them to work.
| Category | Data | Legal basis |
|---|---|---|
| Account | Email, secured password (stored only in hashed form), login session. | Performance of a contract (running your account). |
| Profile | Name, gender, relationship status, focus of your insights. Confirmation of age 18+. | Performance of a contract; legitimate interest (age gate). |
| Data for calculation | Date of birth, optionally time of birth and place of birth (entered manually as a city/country — we do not use your device's precise location). | Performance of a contract (natal chart, daily index, numerology). |
| Mood / check-in | Short non-clinical scales (mood, energy, focus) and an optional note. | Performance of a contract; explicit consent for the extended check-in. |
| AI guide Elas | Your questions and answers in the conversation with Elas (we keep them for the lifetime of your account; only a short window of the last few days enters the AI response). Inputs pass through automatic content-safety screening. | Performance of a contract. |
| Notifications | Your device push token, to deliver the notifications you enabled. | Legitimate interest / consent (depending on device settings). |
| Security and technical operation | IP address and standard server logs (request time, device/browser type) — generated automatically for every request to the server; they cannot be switched off. | Legitimate interest (protection against abuse, security and stability of the service). |
| Analytics, stability and advertising measurement | Anonymized data about app usage and crashes; when advertising measurement is on, also a device advertising identifier (advertising ID) and approximate location derived from the IP address — for usage statistics and measuring the effectiveness of our advertising campaigns. | Consent — you manage analytics and advertising measurement in Settings > Privacy and can turn them off at any time. |
| Payments | Purchase record (Keys / subscription). Payment details are processed by the store (App Store / Google Play). | Performance of a contract; legal obligation (accounting). |
We intentionally do not collect sensitive health data — the check-in runs in a “safe” mode without symptoms, diagnoses or health labels.
All communication between the app and our servers is encrypted (HTTPS/TLS) and we store data on secured servers with restricted access.
During onboarding and in Settings > Privacy you can independently turn on or off:
Each consent is voluntary, separate, and you can withdraw it at any time as easily as you gave it — without affecting the core functioning of the app.
Some features (Resonance, Close ones, synastry, Animal bond) work by you yourself entering another person's data — typically a name and date, and optionally the time and place of birth of a partner, a close person or a pet. We process this data solely for the calculations and interpretations you requested (compatibility, joint readings), and we never use it to contact those people.
We do not share data for the purpose of sale. We work only with the processors we need:
| Processor | Purpose | Location / safeguards |
|---|---|---|
| App hosting (EU) | Running the servers and database. | EU. |
| Google Firebase / Google Analytics | Delivering push notifications, app crash reporting and product analytics (Google Analytics for Firebase). | EU/USA — EU-U.S. Data Privacy Framework, SCC. |
| Meta Platforms Ireland | Measuring and attributing our advertising campaigns and in-app events (app events) — only when advertising measurement is on; on iOS subject to App Tracking Transparency. | USA/EU — EU-U.S. Data Privacy Framework, SCC. |
| PostHog | Product analytics — only with your consent. | EU (data centre in the EU). |
| OpenAI | Generating personalized texts (horoscopes, Elas responses). Data is not used to train models. | USA — EU-U.S. Data Privacy Framework, SCC. |
| RevenueCat | Managing purchases and subscriptions (account identifier and purchase records; neither we nor RevenueCat ever see your payment card). | USA — EU-U.S. Data Privacy Framework, SCC. |
| Apple App Store / Google Play | Processing of the payment itself. | Under the stores' terms. |
| Resend | Sending emails (confirmations, password recovery). | USA — SCC. |
We have a data processing agreement in place with each processor; transfers outside the EU are covered by an adequacy decision (EU-U.S. Data Privacy Framework) or by standard contractual clauses.
We keep data for the lifetime of your account. When you delete your account, we deactivate it immediately and, within 30 days, irreversibly remove all your data (including check-ins, journal, conversations with Elas and the data of close persons). Exceptions: we keep payment records for the period required by accounting and tax regulations, and we keep records of granted consents in anonymized form as proof that they were given.
To the extent of the GDPR you have the right to:
You can handle most of this directly in the app (Settings > Privacy — consent management, export, account deletion). You can also reach us any time at hello@elasra.app.
A step-by-step guide on how to delete your account (in the app or by email) is available on the Delete account & data page.
If you believe we are processing your data contrary to the regulations, you have the right to lodge a complaint with a supervisory authority — in the Czech Republic this is the Office for Personal Data Protection (Úřad pro ochranu osobních údajů, Pplk. Sochora 27, 170 00 Prague 7, uoou.gov.cz). As an EU resident you may also contact the supervisory authority in your own country.
ELASRA is intended for persons aged 18 and over. We do not knowingly create or process accounts of younger persons.
The controller of personal data is the operator of the ELASRA app — TABERNAUS, s.r.o., company ID (IČO) 27841201, VAT ID (DIČ) CZ27841201, registered office at Boženy Němcové 150/5, Nová Ulice, 779 00 Olomouc, Czech Republic, entered in the Commercial Register kept by the Regional Court in Ostrava, file No. C 43252. For privacy matters, contact us at hello@elasra.app — we will handle your questions as well as requests concerning your rights above.
We may update this policy from time to time. We will inform you of material changes in the app, and you will always find the date of the last update here.
© ELASRA · elasra.app · Terms of Service