HabitFlow – Privacy Policy
Last Updated: October 2025
Introduction
HabitFlow ("HabitFlow", "our", "us" or "we") values your privacy and is designed with transparency and minimal data handling.
This Privacy Policy explains how your data is managed within our mobile app and related services ("Service").
IMPORTANT: HabitFlow stores all habit and mood data securely on your device.
We do not collect, sell, or transmit your personal information to any external servers.
By using HabitFlow, you agree to this Privacy Policy and acknowledge that your data stays local unless you explicitly choose to use optional services such as iCloud sync or RevenueCat subscription management.
1. Collection of Information – We Collect Nothing
What We Do NOT Collect
Personal identification (name, email, phone number)
Device identifiers (IDFA, IMEI, MAC address)
Location data or GPS
Network/IP information
Usage statistics or analytics
Crash reports or diagnostics
Bank/financial account details
Your Habit/Progress details beyond your device
Local Data Storage Only
All data stored locally using iOS Core Data
Secure app sandbox ensures privacy
No servers, databases, or cloud storage
Data never leaves your device
Third-Party Services
RevenueCat: Only for subscription verification (anonymous identifiers)
Apple StoreKit: Only for payment processing
No analytics SDKs, no ads, no trackers
Cookies and Tracking
No cookies or tracking
No cross-site tracking or fingerprinting
No user profiling
2. Use of Personal Data – No Data Use
Local Processing Only
All calculations and reports happen locally
No server-side computations or analysis
No Data Utilization
No spending pattern analysis
No personalized recommendations
No syncing across devices (you manage this)
No backups on our servers
Subscription Management
Apple handles payments and receipts
RevenueCat verifies subscription anonymously
3. Sharing of Personal Data – Zero Sharing
We cannot share what we don’t have
No third-party data agreements
No marketing or partnerships involving data
Services involved:
Apple App Store (distribution only)
Apple StoreKit (payments only)
RevenueCat (subscription verification only)
Legal Compliance:
If requested, we can only reply "no data available"
4. Legal Basis for Data Processing – Not Applicable
No contract, consent, or legal requirement needed
Automatically compliant with GDPR, CCPA, COPPA, PIPEDA
5. Your Rights – Complete Control
Access: View all your data in the app
Edit: Modify or correct entries
Delete: Remove individual or all data anytime
Export: Export CSV backups
Control: Enable biometric lock, clear data, uninstall app
6. Children’s Privacy – Automatic Protection
No data collection = no risk
COPPA compliant by default
Safe for educational use
7. International Data Transfers – None
No servers = no data transfers
Compliant in EU, US, Canada, Asia-Pacific
Data never leaves your device
8. Policy Updates and Contact
Updates posted in the app and App Store notes
Core principle (“no data collection”) will never change
Contact:
Via App Store developer support
Subscription issues handled by Apple
9. Response to Privacy Requests
Response within 30 days for standard requests
Emergency concerns addressed within 24 hours
10. App Store Compliance
Complies with Apple’s App Store Guidelines
Subscriptions handled via Apple’s secure payment system
RevenueCat (subscriptions), Apple iCloud (optional sync), App Store (distribution)
11. California Privacy Rights (CCPA)
Right to Know, Delete, Opt-Out, Non-Discrimination
All exercisable via in-app features
12. European Privacy Rights (GDPR)
Rights: Access, Rectify, Erase, Restrict, Portability, Object
Legal Basis: Minimal data use (subscriptions only)
Authority: Users can contact their regional data protection authority
Summary
HabitFlow is built with zero data collection at its core.
Your Habits data always stays only on your device.
We cannot access, share, or misuse your personal information.