Privacy Policy

Account information. When you create an account, your authentication is handled by Clerk. This includes your name, email address, and any social login details (for example, your Google account name). We receive a user identifier from Clerk to associate your data with your account — we do not store your password.

Wellbeing data. The core purpose of stable. is to help you track your focus, mood, and daily wellbeing. As part of using the app, we store:

• Mood check-in entries: your daily mood rating (1–5 scale) and the date it was logged
• Focus sessions: start/end times, session duration, and any task associated
• Tasks: task names, completion status, categories, and due dates
• Reminders: reminder text and scheduled times

Usage data. We may collect basic technical data to keep the service running and secure — such as your device type, browser version, general location (country level), and pages or features accessed. This data is not sold or used for advertising.

Preferences. Theme preferences (light/dark mode) are stored in your browser's local storage and remain on your device only. We do not transmit these to our servers.

• To provide the stable. service and keep your data accessible across your devices
• To personalise your experience — for example, displaying your mood history and weekly insights
• To send important service notifications (account changes, security alerts)
• To respond to support requests sent to support@stableadhd.com
• To analyse aggregated, anonymised usage trends so we can improve the product
• To comply with applicable legal obligations

We do not sell your personal data. We do not use your wellbeing data for advertising or share it with data brokers.

Your account authentication data is stored and managed by Clerk (clerk.com), a dedicated authentication service. Clerk is SOC 2 Type II certified and applies industry-standard encryption.

Your wellbeing and app data (tasks, mood entries, focus sessions) is stored in a secured Supabase database with row-level security policies, meaning your data is only accessible to your account. Supabase servers are hosted within the European Union.

All data transmission between your device and our servers uses HTTPS/TLS encryption.

stable. uses the following third-party services to operate:

• Clerk (clerk.com) — user authentication and identity management
• Supabase (supabase.com) — database storage for your wellbeing data
• Vercel (vercel.com) — web application hosting and delivery

Future: Stripe. When Pro subscriptions launch, we will integrate Stripe (stripe.com) for payment processing. Stripe handles all payment card data directly — stable. will never store your card details. Stripe's privacy policy and data practices will apply to payment-related information at that point.

Each of these providers operates under their own privacy policies and data processing agreements. We select partners who meet appropriate data protection standards.

stable. uses browser local storage — not advertising cookies — to remember your preferences (such as dark/light mode). We do not use third-party tracking cookies or advertising pixels.

Authentication session tokens set by Clerk are stored securely in cookies to keep you signed in. These are strictly necessary for the service to function.

We retain your account and wellbeing data for as long as your account is active. If you delete your account, we will permanently delete your associated data within 30 days, except where we are required by law to retain it for longer.

Anonymous, aggregated analytics data may be retained indefinitely as it cannot be traced back to any individual user.

Depending on where you are located, you may have the following rights regarding your personal data:

• Right of access — request a copy of the personal data we hold about you
• Right to rectification — request correction of inaccurate or incomplete data
• Right to erasure — request deletion of your personal data ("right to be forgotten")
• Right to data portability — receive your data in a structured, machine-readable format
• Right to object — object to our processing of your data in certain circumstances
• Right to withdraw consent — where processing is based on consent, withdraw it at any time

To exercise any of these rights, please email us at support@stableadhd.com. We will respond within 30 days.

If you are located in the UK or EU, you also have the right to lodge a complaint with your local supervisory authority (in the UK, this is the Information Commissioner's Office — ico.org.uk).

stable. is not directed at children under the age of 13. We do not knowingly collect personal data from children under 13. If you believe a child under 13 has provided us with personal information, please contact us and we will delete it promptly.

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by email or by a prominent notice in the app. The “Last updated” date at the top of this page will always reflect the most recent version.

Continued use of stable. after changes become effective constitutes your acceptance of the revised policy.

If you have any questions about this Privacy Policy or how we handle your data, please contact: