Privacy Policy
This Privacy Policy explains what information VowLoop ("we", "our", "the app") collects when you use the VowLoop mobile app or this website, how we use it, who we share it with, and the choices you have. We've tried to write it in plain English; the legal terms are in the Terms of Service.
1. What we collect
1.1 Information you give us
- Account details — your email address and display name when you sign in with Apple or Google.
- Agreement data — goal title, schedule, stake amount and currency, criteria text, and whether a proof or partner confirmation is required.
- Partner relationships — when you accept or send an invite, we link your account to the other user.
- Check-ins and resolutions — timestamps, status (valid / pending / missed / disputed), and any proof note or photo you attach.
- Reminder preferences — the days, time windows, and frequency you've chosen for push reminders.
1.2 Information we collect automatically
- Authentication tokens — stored securely on your device (iOS Keychain / Android Keystore) so you stay signed in.
- Push notification tokens — issued by Apple / Google / Expo, used to deliver reminders and event notifications.
- Crash and error reports — collected via Sentry to help us fix bugs. Includes device model, OS version, and a stack trace. We do not attach your email or display name to crash reports.
- Anonymous product analytics — when enabled, aggregate event data (e.g., "user opened check-in screen") is sent via PostHog. We do not track you across other apps or websites.
1.3 What we don't collect
- We do not collect contacts, calendar, microphone audio, precise location, or health data.
- We do not collect or store payment card information. Subscriptions are handled by Apple, Google, and RevenueCat.
- We do not move real money between you and your partner. Settlement is recorded as a ledger entry only; how you actually settle is between the two of you.
2. Who we share data with
We use a small number of service providers to operate VowLoop. Each only receives the data they need to do their job:
| Provider | What they receive | Why |
|---|---|---|
| Supabase | All app data: profiles, agreements, check-ins, proofs, ledger entries | Database, authentication, and file storage |
| Expo Push / Apple APNs / Google FCM | Push tokens, neutral notification copy, structured metadata (agreement id, period key) | Deliver reminders and event alerts |
| RevenueCat | An anonymized app-user ID, subscription status | Manage Pro subscriptions across iOS and Android |
| Sentry | Crash reports, device model, app version, stack trace | Detect and fix bugs |
| PostHog (optional) | Anonymous product event names, screen views | Understand which features get used so we can improve them |
| Apple / Google | Email address (only if you sign in with Apple or Google) | Authenticate you |
We do not sell personal data, and we do not share it with advertisers.
3. Your partner
When you create an agreement and a partner accepts your invite, the two of you can see the agreement details, each other's check-ins, the ledger, and any proof you attach. That's the entire point of accountability — but you should treat the partner you choose as someone you've genuinely consented to share this data with.
4. How long we keep your data
- Active accounts — we keep your data as long as your account is active.
- Proof photos — automatically purged after the retention window your agreement specifies.
- Push tokens — removed when invalidated by Apple, Google, or Expo.
- Crash reports — Sentry retains for 90 days by default.
- Deleted accounts — when you delete your account in-app, your profile and personally-identifying rows are removed from the database within 24 hours. Aggregate ledger entries belonging to an agreement with another user remain visible to that partner (they have a vested interest in the historical record).
5. Your rights and choices
- Access — you can see your data inside the app: profile, agreements, check-ins, wallet, ledger.
- Delete — Profile → Delete account permanently removes your account. There is no recovery.
- Correction — edit your display name and reminder preferences in Profile.
- Opt out of analytics — coming in a future build; until then, decline notifications and PostHog will not associate device-level activity with an identified user.
- EU / UK / California residents — you have additional rights under GDPR / UK GDPR / CCPA, including the right to data portability and to object to processing. Email privacy@vowloop.app and we'll respond within 30 days.
6. Security
Authentication tokens are stored in the iOS Keychain or Android Keystore. Database access is protected by row-level security policies — only you and the partner you invite can read your agreement data. Webhooks and scheduled jobs are signed and verified. Despite our best efforts, no system is perfectly secure; if we discover a breach affecting your data, we will notify you promptly and in accordance with applicable law.
7. Children
VowLoop is not directed at children under 13 and we do not knowingly collect personal information from anyone under 13. If you believe a child has provided us with personal information, please contact us and we will delete it.
8. International transfers
Our database and most service providers operate in the United States. By using VowLoop you consent to your data being processed there. Where required, we use standard contractual clauses or equivalent safeguards.
9. Changes to this policy
If we make material changes we'll update the "Last updated" date above and, where appropriate, notify you in-app. Continuing to use VowLoop after a change means you accept the updated policy.
10. Contact
Questions or requests: privacy@vowloop.app. General support: support@vowloop.app.