When you create a Gardener Account, we collect the email address you sign up with (or, if you sign in with Google or Apple, whatever they share with us — typically email and display name). We also collect the Seeds you plant — photos, video, audio, and text — and store them encrypted on our servers until they bloom.
If you opt into location-tagged Seeds, we record the location at the moment of planting. We do not track your location continuously, between plantings, or anywhere you didn't plant a Seed.
If you opt into SMS notifications, we collect your phone number to send those messages. You can turn this off at any time from the Gardener Menu.
We hold your Seeds sealed until their bloom condition is met (a date, an age, a location, a recipient). We deliver them to whoever you addressed them to. That's the product.
Before a Seed is encrypted and sealed, we run one automated check for harmful content (in line with what U.S. law requires of platforms hosting user content). Once that check passes, the Seed is encrypted with keys our engineers cannot access. From that moment until bloom, no one — not Ashley, not the engineers, not anyone — can read what's inside.
Sealed Seeds use server-side envelope encryption with keys our engineers cannot access. Authentication uses standard hashing with industry-strength settings. Sessions are scoped per device and rotated regularly. Backups are encrypted at rest. We are working toward a published security architecture document; the working version lives in our internal docs.
You can export, delete, or change your account at any time from the Gardener Menu. You can ask us to delete your account and all associated Seeds — we'll honor that request, with the standard caveat that already-bloomed Seeds delivered to other Gardeners may persist in their accounts (we cannot reach into someone else's account to retract a memory you sent).
If you're in the EU/UK, GDPR-specific rights (access, rectification, erasure, portability) apply. If you're in California, CCPA-specific rights apply. The full versions of these rights will be detailed in the post-legal-review version of this policy.
DandyLine requires Gardeners to be at least 13 years old in the U.S. and at least 16 in the EU (per GDPR Article 8). We do not knowingly collect data from children below those ages. If you believe a child has signed up, please contact us — we'll close the account.
DandyLine includes features for delivering Seeds after the planter has died (Legacy Vaults, Guardian assignments). The mechanics for verifying death and transferring access are governed by our Terms of Service and the locked decisions in our internal Seed Key system documentation. The formal legal framework for cross-jurisdictional posthumous delivery is being developed with counsel.
This is a draft. The post-legal-review version will replace it before public launch. If you're a closed-beta Gardener, we'll notify you when the formal version is published, and you'll have a chance to review the differences.