Mind Sanctuary Privacy Policy
Effective date: April 22, 2026
Last updated: April 26, 2026
App: Mind Sanctuary
Package: com.atc.meditation
Developer / Data Controller: Unapologetic Studio ("we", "us", "our")
Privacy contact: to2000bv@gmail.com
Support contact: to2000bv@gmail.com
IMPORTANT — PLEASE READ CAREFULLY
By installing, opening, or otherwise using Mind Sanctuary (the "App") you confirm that you have read, understood, and agree to this Privacy Policy and to our Terms of Service. If you do not agree, do not use the App and uninstall it from your device.
This policy describes, in plain English, what data Mind Sanctuary collects, how we use it, who we share it with, and the choices you have. It applies to all users worldwide, including users in the European Economic Area (EEA), the United Kingdom, Switzerland, California, Brazil, and other jurisdictions with local privacy laws.
────────────────────────────────────────────────────────────────────────
1. SUMMARY
────────────────────────────────────────────────────────────────────────
• Mind Sanctuary is designed to keep your meditation history, journal entries, streaks, preferences, and most other app data ON YOUR DEVICE.
• You may use the App as a guest. If you sign in with email or Google, Firebase Authentication stores the minimum account data needed to identify you.
• Current public builds do NOT send Firebase crash, analytics, or performance diagnostics by default.
• The App is currently free and contains NO in-app purchases, NO subscriptions, and NO third-party advertising.
• Mind Sanctuary is a self-guided wellness app, not a medical, crisis, or safety-monitoring service.
• We do NOT sell your personal data. We do NOT use the Android Advertising ID.
• You can delete your local data and delete your account at any time from Settings.
• We may update this Privacy Policy and our Terms of Service periodically. Where required by law, we will provide advance notice of material changes. Continued use after a change is published means you accept it.
────────────────────────────────────────────────────────────────────────
2. DATA WE PROCESS
────────────────────────────────────────────────────────────────────────
2.1 Data stored LOCALLY on your device (default)
The following data is stored locally using Android Room (SQLite) and Jetpack DataStore. It is NOT uploaded to us by default and stays inside Android's app-private storage, which other apps on a non-rooted device cannot read:
• meditation session history (start time, duration, completion state)
• journal entries, mood notes, mood-before / mood-after check-ins
• streaks, achievements, experience points (XP), level, and progress data
• sound mixer presets, sleep timer choices, and session preferences
• alarms, reminders, breathwork routines, Digital Wellbeing configuration
• background images, themes, fullscreen, language, and accessibility preferences
• favourites, saved affirmations, and saved meditation reads
Because this data remains local by default, we generally cannot access it, monitor it, restore it, or export it for you unless you deliberately send us information yourself (for example in a support email).
If you uninstall the App, this data is removed from your device. On-device backup (per our backup rules) excludes personal meditation/journal data.
2.2 Account data (optional — only if you sign in)
If you choose to sign in with email/password or with Google, Firebase Authentication processes the following:
• your email address
• your Firebase user ID (a random string)
• your optional display name
• your authentication tokens (short-lived, used to keep you signed in)
We never see, store, or receive your password. Firebase Authentication is operated by Google LLC and acts as our processor.
You may continue by choosing the guest path instead of email/Google sign-in. Guest content still stays local on your device, but Firebase Authentication creates an anonymous account with a random user ID so the App can keep a stable identity for your local progress and later account deletion.
2.3 Diagnostics and analytics
Current public release builds do NOT send Firebase Crashlytics, Analytics, or Performance Monitoring data by default.
The App still writes usage events to its local on-device analytics database so the in-app Analytics screen can work, but those local events do not leave your device.
We deliberately do NOT collect the Android Advertising ID (AAID / AD_ID) and the permission is explicitly removed from the App's manifest. We have no advertising SDK.
If diagnostic data was collected in an internal or beta build before this public release, Google Firebase may retain that historical data for its standard retention windows (for example, roughly 90 days for Crashlytics/Performance and up to 14 months for Analytics user-level records).
2.4 Push notification token (optional, future use)
Remote push notifications are not part of the current public build. The App uses only local on-device notifications, alarms, and reminders that you configure yourself.
2.5 Data we do NOT collect
We do not collect or access: your contacts, your photos and media library, your precise location, your microphone input, your calendar, your SMS or call history, your financial information, your health records, your biometric identifiers, your web-browsing history outside the App, or your Android Advertising ID.
────────────────────────────────────────────────────────────────────────
3. HOW WE USE DATA
────────────────────────────────────────────────────────────────────────
We use data to:
• operate the App's core features (timers, sessions, journaling, reminders, streaks)
• authenticate you when you sign in or continue as a guest
• send the notifications and alarms YOU schedule inside the App
• keep your local analytics/history available inside the App's Analytics screen
• comply with legal obligations, enforce our Terms of Service, detect abuse, and respond to security incidents
We do not monitor your journal entries, breathing sessions, or use of the Emergency Calm tools in real time, and we cannot intervene in emergencies based on your in-app activity.
Legal bases (EEA/UK, GDPR Art. 6):
• our legitimate interests in running, improving, and securing the App (local usage logs, abuse prevention, product QA) — Art. 6(1)(f)
• performance of a contract (when you sign in and use the App) — Art. 6(1)(b)
• compliance with legal obligations — Art. 6(1)(c)
────────────────────────────────────────────────────────────────────────
4. WHO WE SHARE DATA WITH
────────────────────────────────────────────────────────────────────────
We do NOT sell or rent your personal data. We share data only with:
• Google LLC / Google Ireland Ltd (Firebase Authentication) — acts as our processor to run sign-in, guest authentication, and account deletion;
• Google Play / Google LLC — delivers the App and (in future) any optional paid features; also presents an in-app review prompt at certain session milestones via the Google Play In-App Review API. When this prompt is shown, Google Play Services is invoked; no personal data beyond what Google already holds for your Play Store account is sent by this call, and the App does not receive or retain your review text or rating;
• law-enforcement, regulators, courts, and other authorities — only when we are required to do so by law, or when we believe in good faith that disclosure is necessary to protect our legal rights, your safety, or the safety of others;
• a successor entity — in the event of a merger, acquisition, reorganisation, or sale of substantially all our assets, subject to this Privacy Policy.
We do not share your data with data brokers, marketers, or advertising networks.
────────────────────────────────────────────────────────────────────────
5. INTERNATIONAL TRANSFERS
────────────────────────────────────────────────────────────────────────
Firebase services are operated by Google and may process data on servers in the United States and other countries. When data from the EEA, UK, or Switzerland is transferred outside those regions, Google relies on Standard Contractual Clauses (SCCs) and other safeguards approved by the European Commission. By using the App, you acknowledge this transfer.
────────────────────────────────────────────────────────────────────────
6. PAYMENTS, SUBSCRIPTIONS, AND BILLING
────────────────────────────────────────────────────────────────────────
The App is currently offered free of charge and contains no in-app purchases or subscriptions. We may introduce paid features in a future release; if we do, we will update this section and purchases will be processed through Google Play Billing. In that scenario Google Play (not us) would receive your payment credentials — we would only receive the product ID, purchase token, and entitlement status needed to deliver the paid feature.
────────────────────────────────────────────────────────────────────────
7. NOTIFICATIONS, ALARMS, AND DEVICE PERMISSIONS
────────────────────────────────────────────────────────────────────────
Mind Sanctuary uses the following Android permissions strictly for the features that need them:
• POST_NOTIFICATIONS — send reminders, streak nudges, alarm alerts, and focus / mindful-break transitions you have configured.
• SCHEDULE_EXACT_ALARM — fire alarms at the exact time you set after you grant Android's exact-alarm access.
• USE_FULL_SCREEN_INTENT — display the alarm screen over the lock screen so you can dismiss or snooze.
• FOREGROUND_SERVICE / FOREGROUND_SERVICE_MEDIA_PLAYBACK / FOREGROUND_SERVICE_SPECIAL_USE — keep audio playback and focus/alarm timers alive while the screen is off.
• RECEIVE_BOOT_COMPLETED — re-schedule your alarms after a device reboot.
• WAKE_LOCK / VIBRATE / MODIFY_AUDIO_SETTINGS — play sessions reliably, trigger vibrations for alarms, and apply audio-focus changes.
• PACKAGE_USAGE_STATS (optional, Digital Wellbeing only) — read which app is in the foreground so Mind Sanctuary can gently remind you to take a break. This permission is never enabled silently: you are taken to Android's Usage Access settings and must grant it yourself. You can revoke it at any time in Android Settings → Apps → Special app access → Usage access.
Disabling any of these permissions only disables the related feature; it does not affect the rest of the App.
────────────────────────────────────────────────────────────────────────
8. DATA RETENTION
────────────────────────────────────────────────────────────────────────
• Local data: remains on your device until you delete it from Settings or uninstall the App.
• Account data (Firebase Auth): retained for as long as your account exists, plus a short grace period to prevent accidental loss. When you delete your account from Settings, the Firebase account is removed and the email is released for re-use.
• Historical diagnostic data from pre-release/internal testing, if any was collected before this public build, may remain in Firebase for the applicable default retention windows and is then deleted or aggregated.
────────────────────────────────────────────────────────────────────────
9. YOUR RIGHTS
────────────────────────────────────────────────────────────────────────
Depending on where you live, you may have the right to:
• access the personal data we hold about you;
• correct inaccurate or incomplete data;
• delete your data ("right to erasure") — you can do this in-app at Settings → Delete all local data / Delete account, or by emailing to2000bv@gmail.com;
• restrict or object to processing;
• request data portability;
• lodge a complaint with your local data-protection authority (EEA/UK).
California residents (CCPA / CPRA): you have the right to know what categories of personal data we collect, to delete that data, to correct it, and to opt out of "sales" and "sharing" (we do neither).
To exercise any right, email to2000bv@gmail.com from the address you used to sign in. We will respond within the timeframe required by law (for the EEA: within one month).
────────────────────────────────────────────────────────────────────────
10. SECURITY
────────────────────────────────────────────────────────────────────────
We store App data in app-private storage on your device. Network traffic uses HTTPS / TLS; cleartext traffic is blocked by the App's network-security configuration. Firebase data is encrypted in transit and at rest on Google's infrastructure.
No system is perfectly secure, and we cannot guarantee absolute security. Rooted or compromised devices, shared devices, and out-of-date operating systems may expose your data to additional risk. You are responsible for keeping your device, PIN/password/biometrics, and Google account secure.
────────────────────────────────────────────────────────────────────────
11. CHILDREN
────────────────────────────────────────────────────────────────────────
Mind Sanctuary is not directed to children under 13 (or the higher age of digital consent in your jurisdiction, e.g. 16 in parts of the EEA). We do not knowingly collect personal data from children. If you believe a child has created an account, email to2000bv@gmail.com and we will delete the account and related data promptly.
────────────────────────────────────────────────────────────────────────
12. CHANGES TO THIS POLICY
────────────────────────────────────────────────────────────────────────
We may update this Privacy Policy periodically. The revised policy becomes effective when we publish it inside the App or at a Mind Sanctuary web URL, and any continued use of the App after that date constitutes your acceptance.
Where applicable law (for example the GDPR or CCPA) requires us to notify you of material changes that affect your rights, we will provide reasonable advance notice via an in-app notification or a prominent update to the "Last updated" date at the top of this policy before those changes take effect.
If you do not agree to a revised Privacy Policy, you must stop using the App and uninstall it.
────────────────────────────────────────────────────────────────────────
13. CONTACT
────────────────────────────────────────────────────────────────────────
Privacy questions, data subject requests, or deletion requests:
to2000bv@gmail.com
General support:
to2000bv@gmail.com
Developer / Data Controller:
Unapologetic Studio
Please do not send unnecessary medical, crisis, or other highly sensitive information by email. Share only the minimum needed for your request.
We will reply within a reasonable timeframe and in any event within the period required by applicable law.