中文

Privacy Policy

Your data, your call

Last updated: 2026-06-24

This service is operated by an independent developer.

The core principle of this policy: read and forget. Whether you're signed in or not, your reading inputs and AI outputs exist only during the moment of interpretation and are discarded immediately after — never persisted. We don't sell data, and we don't run ad tracking.

1. How we handle your inputs

Whether anonymous or signed in, your birth details, questions, dream descriptions, and other inputs are handled identically:

  • Your inputs exist only in server memory for the moment of the reading, then are immediately discarded.
  • We do not store any reading inputs or AI interpretations — nothing is written to a database, nothing is saved to disk, no history is kept.
  • The only thing we retain is a credit transaction log (how many credits were spent and why), shown in your account page.

2. What you enter

  • Tarot: your question (optional).
  • Bazi: birth date and time, gender, birthplace (province/city, used for true solar time correction), focus question (optional).
  • Dream Echoes: the dream you describe, what's on your mind right now (optional).
  • Yearly Fortune: birth date and time, gender, birthplace (for true solar time correction), target year, focus question (optional).
  • Account (signed-in users only): email (as your login identifier), password (stored encrypted — even we can't see your original password). If you sign in with Google or GitHub, we receive your email, display name, and avatar. You can change your email (requires verifying the new address) or link/unlink third-party accounts in your settings.

3. How account data is stored and protected

  • Account information is stored in a secure cloud database, with all data in transit encrypted.
  • Passwords are stored after encryption — we cannot see your original password.
  • Login sessions use an encrypted credential valid for 30 days; you can sign out at any time to revoke it.
  • Email is used for login identification and security verification (verification email on signup to unlock credit purchases; password reset link; confirmation email when changing your address).
  • Third-party sign-in: you can choose to sign in with Google or GitHub. After authorization, the provider shares your email, name, and avatar over an encrypted channel. We do not receive your password, contacts, or any other data, and we cannot perform any actions on your third-party account. You can link or unlink these accounts anytime in settings.
  • We do not collect phone numbers, real names, or government IDs.

4. We don't store readings

We do not retain any of your reading inputs or AI interpretations. After each reading, both input and output are purged from memory — nothing is written to the database, no history record is created. You have no reading history to view, export, or delete — because it was never saved in the first place. Your account page shows only credit activity (e.g., what credits were spent on and when), never reading content.

5. What's stored on your device

To provide core functionality, we store the following on your device — it never leaves your device:

  • Free-usage counters: how many free uses you've had today (anonymous users get 1 free Tarot/Dream, 3 free YUAN cards daily, 1 free Bazi every 48 hours). Contains only dates and numbers.
  • Consent status: your agreement to this policy (including the age range you selected).
  • For signed-in users, free allowances are managed server-side (1 Tarot/Dream daily, 1 Bazi every 48 hours, 3 YUAN cards daily) — once depleted, credits are used.

To clear: erase site data in your browser settings, or use private/incognito mode.

6. Cookies

  • Login credential: a single encrypted cookie keeps you signed in; signing out invalidates it.
  • Security verification: our security provider may place a technical cookie for bot detection. It's managed by the provider and we cannot read it.
  • Traffic analytics: we use an anonymous stats tool that records only page views — no personal tracking. We also use Google Analytics to understand aggregate visitor sources (country, device, referrer). This service places a cookie on your device. You can block or clear these cookies in your browser settings.

7. IP rate limiting (anti-abuse)

  • To prevent scripted abuse, anonymous users are rate-limited per IP address (a daily cap of ~1 per reading type per IP).
  • IP counters expire and are deleted after 24 hours — they contain only numbers, no personal information.
  • Registration is also IP-limited (max 3 sign-ups per IP per day).

8. Third-party services

To generate readings, the inputs you provide are forwarded once to the following services, used solely for that reading:

  • DeepSeek: provides AI interpretation. Receives your birth details, question, and other inputs for the current reading.
  • Cloudflare: provides hosting and security. Receives your IP address.
  • Google / GitHub (only if you use their sign-in): receive an authorization request and share back your email, name, and avatar. We never send them your reading data.

Beyond these forward-only transmissions, we do not sell, share, or transfer your information to any third party.

9. Protecting minors

  • This service is strictly for users aged 18 and older and is not intended for minors. Users under 18 may not register or use this service.
  • On first use, we ask you to confirm your age. Selecting "under 18" will terminate access. This choice is stored only on your device — never uploaded.
  • If a minor has made a payment, contact [email protected] for a full refund after verification.
  • If input involves self-harm, suicide, or violence, the system automatically intervenes and provides professional crisis resources.

10. Your rights

  • Delete your account: to close your account and erase all associated data (credit balance, transaction history, etc.), contact [email protected].
  • No reading history to delete: we don't store any reading content — there's nothing for you to manage.
  • Clearing your browser data removes any local records this site has on your device.

11. Looking ahead

We're developing more advanced encrypted-computation technology, with the goal of letting the AI complete readings without ever seeing your raw data. That's our long-term commitment to privacy. Any updates to this policy will be noted here.

12. Disclaimer

This service is for entertainment and self-reflection only. Readings are AI-generated and do not constitute predictions of the future or medical, psychological, legal, financial, or investment advice.

13. Changes & contact

If this policy changes materially, we'll update the date at the top of this page; when the policy version changes, you'll see the consent prompt again on your next visit. Questions? Contact [email protected]