bebored – Terms of Service & Privacy Policy

Quick summary (non-binding)

  • bebored is for users 16+, not medical advice, not therapy, and not for emergencies.

  • bebored includes an AI journaling buddy (“moss”). moss is not a therapist and cannot provide crisis support.

  • We collect: name, email, avatar from Apple/Google sign-in; device IDs and push tokens; usage/progress; crash/analytics events; and AI journaling summaries you create with moss.

  • No third-party ads or cross-app tracking in the app. The website may use analytics/marketing cookies (e.g. for performance marketing) with your consent.

  • Data is primarily stored in the EU (eur3) on Firebase, plus other providers like OpenAI/ElevenLabs/Vercel for AI features and OneSignal for communications.

  • You can delete your account in-app; backups/logs are cleared within ~90 days. You can delete individual moss entries yourself.

  • Subscriptions (“Boredom Pass”) are handled by Apple/Google. You manage billing and cancellations via the app stores.

  • For anything else: support@beboredapp.com.


Effective date: Nov 11, 2025

Company / Data Controller: Hitaya Kollektiv ApS
CVR / Registration no.: 45890899
Email (support & privacy): support@beboredapp.com

This document contains three parts:

  1. Terms of Service (ToS)

  2. Privacy Policy

  3. Cookie Policy (website)

1) Terms of Service

1. Who we are

BeBored is a mobile app provided by Hitaya Kollektiv ApS (the “Company”, “we”, “us”). These Terms apply to your use of the BeBored app on iOS and Android (together, the “Service”).

2. Eligibility & age

You must be 16 years or older to use BeBored. If you are under the age of 16, you may not use the Service. By using the Service, you confirm you meet this requirement.

3. Not medical advice; no emergencies; AI is not therapy

BeBored offers mindfulness and boredom-training experiences, including an AI journaling buddy called moss.

  • The Service and moss do not provide medical advice and are not a substitute for professional healthcare or mental health services.

  • Using the Service does not create a therapist-patient or doctor-patient relationship.

  • AI-generated responses (from moss or other AI features) may be incomplete, inaccurate, or inappropriate in some situations. You are responsible for how you use that information.

Do not use the Service in emergencies or crisis situations. If you believe you are experiencing an emergency or may harm yourself or others, contact your local emergency number or crisis hotline immediately and seek professional help.

4. Your account

You can sign in with Apple or Google. You are responsible for safeguarding your device and your sign-in credentials. You agree that the information you provide to us is accurate and kept up to date.

5. License & acceptable use

We grant you a personal, limited, non-exclusive, non-transferable, revocable license to use the Service for your personal, non-commercial use, subject to these Terms. You agree not to:

  1. Copy, modify, or create derivative works of the Service;

  2. Reverse engineer or decompile the app except as permitted by law;

  3. Interfere with or disrupt the Service;

  4. Use the Service in any unlawful manner; or

  5. Circumvent security or access controls.

6. User content & AI journaling

The Service may allow you to create private content, including:

  • Your progress (minutes, streaks, badges, etc.); and

  • AI journaling summaries and logs created with moss (e.g. what you noticed in a session: thoughts, feelings, body sensations).

We treat this as private user content, not public posts. You remain responsible for the content you provide.

You can:

  • Delete your account (which will delete associated content as described in the Privacy Policy), and

  • Delete individual moss entries in the app.

We do not actively monitor your private content, but we may access it as needed for debugging, support, security, or legal reasons, as described in the Privacy Policy.

You agree not to upload or share content that is illegal, abusive, or infringes third-party rights, and not to share personal data of others without their permission.

7. AI features

Some features of the Service use AI models operated by third-party providers (for example, for moss, voice interactions, and pattern spotting in your journaling).

By using these features, you understand and agree that:

  • AI responses may be generated automatically and may be inaccurate or misleading. You should not rely on them as professional advice (medical, legal, financial, etc.).

  • We send your journaling summary or conversation text to AI providers to generate responses. We aim to minimize what is sent and do not attach direct identifiers like your email.

  • You should not share highly confidential information in moss or AI chats (for example, full names of other people, passwords, or highly sensitive details that are not necessary for your use of the app).

More details about data processing for AI features are provided in the Privacy Policy.

8. Changes, availability & updates

We may modify or discontinue parts of the Service at any time, including features, content, or availability. We may push updates, fixes, or new versions. Where required by law, we will provide notice of material changes to these Terms or the Service.

9. Fees, purchases & Boredom Pass

BeBored offers optional paid features, including Boredom Pass, which may include:

  • Access to all boredom modes (all five modes, 100+ sessions as available),

  • Unlimited access to moss (your AI journaling buddy),

  • Features such as extended sessions when you are “in flow”, and

  • Other premium functionality we may introduce from time to time.

Purchases and subscriptions are handled by the Apple App Store and Google Play Store, and the applicable store terms (including refund policies and price change rules) apply.

Key points:

  • Subscriptions may be available on a monthly and annual basis.

  • We may offer a 7-day free trial for the annual plan (or other trials/intro offers from time to time). Trials typically convert to a paid subscription unless cancelled before the trial ends; details are shown in the app store at the time of purchase.

  • Subscriptions auto-renew until you cancel in your Apple/Google account settings.

  • You can manage or cancel your subscription directly via the app store. We generally do not control app store billing and refund flows; any statutory rights or cooling-off periods you have are handled by the store.

We may change prices or offerings in accordance with app store rules. Where required, you will receive notice via the store, and you can choose to cancel before changes take effect.

10. Push notifications & communications

We may send you:

  • Service notifications (e.g., streak nudges, reminders, important account updates) based on our legitimate interests in providing the Service; and

  • Optional marketing or product update messages (e.g., tips, new feature announcements) if you have given consent (for example, by ticking a checkbox on account creation).

You can control push notifications via your device OS settings and, where available, in-app settings. You can withdraw consent to marketing communications at any time, for example via unsubscribe links or by adjusting your preferences.

11. Third-party services

The Service relies on third-party services (for example, Apple Sign-in, Google Sign-in, Firebase, AI providers, messaging providers). Your use of those services may be subject to their own terms and policies, in addition to ours.

12. Intellectual property

All rights, title, and interest in and to the Service (including text, graphics, logos, software, and content) are owned by us or our licensors and are protected by law. Except for the license granted above, no rights are transferred to you.

13. Feedback

If you submit ideas, suggestions, or feedback, you grant us a worldwide, royalty-free, irrevocable, sublicensable license to use and incorporate them without obligation or restriction.

14. Disclaimers

The Service is provided on an “as is” and “as available” basis. To the maximum extent permitted by applicable law, we disclaim all warranties, express or implied, including fitness for a particular purpose and non-infringement. We do not warrant that the Service will be uninterrupted, error-free, or secure.

AI features and moss are experimental and may produce incorrect or inappropriate outputs. You are responsible for how you use those outputs.

15. Limitation of liability

Nothing in these Terms limits liability that cannot be limited under mandatory law (including liability for death or personal injury caused by negligence, or for intentional misconduct).

To the fullest extent permitted by law, we will not be liable for:

a) Indirect or consequential losses;
b) Loss of profits or data; or
c) Any amount exceeding the greater of EUR 50 or the amounts you paid to us (if any) in the 12 months before the event giving rise to liability.

16. Termination

You may stop using the Service at any time. You can delete your account in the app (Profile → Delete Account). We may suspend or terminate your access if you breach these Terms, if required by law, or for security/operational reasons. Upon termination, the license granted to you ends.

17. Governing law & venue

These Terms are governed by the laws of Denmark, without regard to conflict-of-law rules. Any dispute will be brought in the courts of Copenhagen, Denmark, unless mandatory law gives you the right to bring actions elsewhere as a consumer.

18. Changes to these Terms

We may update these Terms from time to time. If we make material changes, we will provide notice (e.g., in-app). Your continued use after the effective date constitutes acceptance of the updated Terms.

19. Contact

Questions? support@beboredapp.com

2) Privacy Policy

1. Who is the controller?

Hitaya Kollektiv ApS is the controller for personal data processed via the BeBored app.

2. Scope

This Privacy Policy applies to our mobile apps (iOS and Android). Our website is covered by the Cookie Policy below and any website-specific notices.

3. What data we collect

We collect the following categories of personal data:

Category – Account data
Examples: full name (when available from Apple/Google), email, profile photo/avatar
Source: Sign in with Apple / Google

Category – Device & app data
Examples: device model/OS version, device identifiers, push notification tokens, app version, language/locale
Source: Your device / app

Category – Usage & progress
Examples: session durations, minutes, streaks, badges, in-app actions and feature usage (non-sensitive)
Source: Generated during your use of the app

Category – AI journaling & moss summaries
Examples: text summaries or notes you provide when interacting with moss, including what you noticed in a session (e.g., thoughts, feelings, body sensations you choose to describe)
Source: Provided by you in the app

Category – Diagnostics
Examples: crash logs, performance events
Source: App/OS; Firebase Crashlytics and similar tools

We do not request you to upload public user-generated content (e.g., public posts or forums) in the app. Your content is private within your account unless we clearly say otherwise in a future feature.

We do not use third-party advertising SDKs or cross-app tracking in the app.

4. Purposes and legal bases (GDPR)

We process your data for the following purposes and legal bases:

Provide and operate the Service

  • Account creation and sign-in

  • Syncing your progress, minutes, streaks, badges

  • Running moss and other AI features based on your prompts and journaling

  • Managing your subscription status (e.g., whether you have Boredom Pass)
    Legal basis: Contract (Art. 6(1)(b) GDPR) – necessary to provide the Service.

Analytics & product improvement

  • Understanding aggregate usage trends (which modes are used, session lengths, feature adoption)

  • Improving the Service and its performance
    Legal basis: Legitimate interests (Art. 6(1)(f)) – to understand and improve the Service; analytics is not used for third-party ads or cross-app tracking.

Crash reporting & diagnostics

  • Monitoring stability, errors, and performance

  • Troubleshooting issues
    Legal basis: Legitimate interests (Art. 6(1)(f)) – to maintain stability and security.

Push notifications & direct communications

  • Service messages (streak nudges, reminders, important account information)

    • Legal basis: Legitimate interests (Art. 6(1)(f)).

  • Optional marketing or update communications (where enabled) via email or push (e.g., using OneSignal)

    • Legal basis: Consent (Art. 6(1)(a)), obtained e.g. via a checkbox on account creation.

Security & fraud prevention

  • Protecting accounts and the Service

  • Preventing misuse or abuse
    Legal basis: Legitimate interests (Art. 6(1)(f)).

Legal compliance

  • Responding to lawful requests, fulfilling legal obligations (e.g., tax, accounting, consumer rights)
    Legal basis: Legal obligation (Art. 6(1)(c)).

Where we rely on legitimate interests, we balance our interests against your rights and expectations. You can object to processing based on our legitimate interests (see “Your rights”).

5. AI providers & data flows

For moss and other AI features, we use third-party providers such as:

  • OpenAI – for generating AI responses based on your journaling summaries or prompts.

  • ElevenLabs – for voice features (e.g., text-to-speech or voice interactions).

  • Vercel (and similar hosting/cloud providers) – for running backend code that connects the app to AI providers.

What is sent:

  • We send the text you provide (e.g., the summary of what you noticed in a session or what you type/say to moss) to AI providers to generate responses.

  • We aim to avoid attaching direct identifiers such as your email address to these requests. We may use technical or pseudonymous identifiers as needed to operate the feature reliably.

Retention and provider policies:

  • Your journaling summaries and moss entries are stored in our systems and kept until you delete them or delete your account (see Retention).

  • AI providers process your data under their own terms and privacy policies, which may include limited retention for safety, abuse prevention, or service improvement. We do not control their internal retention/training policies. For details, please refer to the providers’ documentation.

We do not use AI providers in the app for third-party advertising or cross-app tracking.

6. Sub-processors & international transfers

We use trusted providers to process data on our behalf, including (non-exhaustive list):

  • Google LLC / Google Ireland Limited – Firebase (Authentication, Firestore/Database in eur3 multi-region within the EU, Crashlytics, Analytics), Cloud Functions, Cloud Messaging.

  • Apple Inc. – Sign in with Apple (authentication). Apple may act as an independent controller for sign-in data.

  • OpenAI – AI model provider for moss and related features.

  • ElevenLabs – Voice/AI audio provider for voice-based features.

  • Vercel – Hosting and backend infrastructure to connect our app to AI providers and other services.

  • OneSignal – Communications provider for push notifications and, where enabled, email or in-app messaging.

Data is primarily stored in the EU (eur3) via Firebase. Where data is transferred internationally (for example, to the US or other countries for support or provider operations), we rely on appropriate safeguards such as the EU Standard Contractual Clauses (SCCs) or equivalent mechanisms where required by law.

7. Data retention

We keep data only as long as necessary for the purposes above:

Data – Account & profile (name, email, avatar, subscription status)
Retention: Kept while your account is active; deleted upon account deletion (subject to backup periods below).

Data – Usage & progress
Retention: Kept while your account is active; deleted upon account deletion.

Data – AI journaling & moss summaries
Retention: Kept while your account is active, unless you delete specific entries. Deleted when you delete the entry or when you delete your account.

Data – Crash logs & analytics events
Retention: Short to moderate periods needed for diagnostics/improvements (e.g., ~90–180 days), then aggregated or deleted.

Data – Backups & system logs
Retention: Deleted within 90 days after account deletion, subject to technical constraints.

If we need to keep specific data longer (for example, to comply with legal obligations or to resolve disputes), we will keep it only for that limited purpose.

8. Account deletion, moss deletion & data export

You can:

  • Delete individual moss entries in the app.

  • Delete your account anytime in the app: Profile → Delete Account.

When you delete your account:

  • Primary records of your account, progress, and moss entries are removed or anonymised in our production systems.

  • Backups and system logs that may still contain data are cleared within approximately 90 days.

Data export:
You can request a copy of your main data (e.g., account details, progress, and journaling summaries) by emailing support@beboredapp.com from your account email. We will respond in line with applicable law.

9. Your rights (EEA/UK)

Subject to conditions and limitations under GDPR, you have the right to:

  • Access your personal data;

  • Rectify inaccurate data;

  • Erase data (“right to be forgotten”);

  • Restrict processing;

  • Data portability (for data you provided to us); and

  • Object to certain processing based on legitimate interests (including some analytics and communications).

You also have the right to lodge a complaint with your local supervisory authority. In Denmark, this is Datatilsynet.

To exercise your rights, contact support@beboredapp.com. We may need to verify your identity.

10. Children’s privacy

BeBored is not for children under 16. If you believe a minor under 16 has created an account, contact us and we will take appropriate steps to delete the account and associated data.

11. Security

We use administrative, technical, and organizational measures appropriate to the risk, including:

  • Secure authentication via Apple/Google;

  • Encrypted transport (e.g., HTTPS);

  • Access controls and least-privilege practices;

  • Limiting access to personal data to a small internal team that needs it for their job, under confidentiality obligations.

No method is 100% secure, but we work to protect your data in line with industry practices.

12. No advertising & tracking in the app

We do not serve third-party ads or use third-party advertising SDKs in the app. We do not engage in cross-app tracking from the app.

Our website may use analytics or marketing pixels for performance marketing (e.g., Meta, TikTok) with your consent; see the Cookie Policy below.

13. Changes to this Privacy Policy

We may update this Policy as we evolve the Service (for example, if we add social features or new AI capabilities). We will notify you of material changes where required (e.g., in-app notice or website banner). Your continued use after the effective date constitutes acceptance of the updated Policy.

14. Contact

For privacy questions or requests: support@beboredapp.com


Cookie Policy (website)

This Cookie Policy explains how we use cookies on our website beboredapp.com (the “Website”). It does not apply to the mobile apps (see Privacy Policy above for app data).

1. What are cookies?

Cookies are small text files placed on your device to make the site work, keep it secure, and help us understand how it’s used. Similar technologies (like local storage or pixels) may be used for the same purposes.

2. How we use cookies

We aim to be minimal and privacy-friendly, while still being able to understand performance and run ethical marketing.

We may use:

Strictly necessary cookies

  • Required for basic site functionality and security (e.g., load balancing, session management, remembering your cookie choices).

  • These cannot be switched off in our systems, though you can block them in your browser (which may break the site).

Analytics cookies (optional)

  • Used to understand visits and improve the Website (e.g., page views, navigation patterns).

  • If used, these will run only with your consent (via a banner) and will not be used to build cross-site advertising profiles.

Marketing / performance cookies (optional)

  • Used to measure and improve the performance of our marketing campaigns (for example, pixels from platforms like Meta or TikTok).

  • These help us understand which campaigns lead to installs or visits, but we aim to avoid unnecessary tracking.

  • These cookies/pixels will only run with your consent via the banner and can be turned off at any time.

3. Your choices

On your first visit, you may see a cookie banner. You can accept or reject:

  • Analytics cookies

  • Marketing/performance cookies

You can change your choice at any time via the banner’s “Cookie settings” link (if available) or your browser settings. Blocking some cookies may impact site performance or limit certain features.

4. Cookies we use (illustrative)

Exact names and lifetimes may change over time. Examples:

  • Necessary:

    • A session cookie to store your cookie preferences (expires at end of session or after a short period).

  • Analytics (if enabled):

    • A first-party analytics cookie with a randomized identifier (e.g., ~6–12 months expiry).

  • Marketing (if enabled):

    • Third-party cookies or pixels from advertising platforms (e.g., Meta, TikTok) with lifetimes as described in their respective policies.

We will keep this section updated (e.g., in the banner or a separate page) with the exact names and lifetimes if/when analytics or marketing tools are enabled.

5. Updates

We may update this Cookie Policy from time to time, for example if we change analytics or marketing providers. Material changes will be communicated via the banner or on this page.

6. Contact

Questions about cookies? support@beboredapp.com