Privacy Policy

1. Information We Collect

Account Data

• Anonymous authentication: When you first open the app, an anonymous account is created automatically. No personal information is required.
• Optional sign-in: If you choose to sign in with Apple or Google, we receive your email address (or a relay address for Apple) and display name. This is used solely to link your account for recovery across devices.

App Usage Data

• Settings and preferences (theme, language, notifications, categories)
• Verse history and favorites (with optional personal notes)
• Prayer sessions (duration and timestamps)
• Streaks (daily usage tracking)
• Letters: encrypted on-device (AES-256-CTR) before storage or sync. Only encrypted content reaches our servers.
• Profile information: name, username, bio, avatar — all voluntarily provided
• Profile photo: if you choose to upload a profile photo, we access your device's photo library (not camera). The photo is stored on our servers.

Social & Community Data

• Profile visibility: You can set your profile to public or private in the Profile Edit screen.
  • Public: Your full profile is visible to other users (username, avatar, photo, bio, daily intention, favorite quote, featured verse, points, rank, streak, stats).
  • Private: Your profile remains discoverable — your username, avatar, photo, points, rank and stats appear in community browsing, search and the leaderboard so other users can find and add you. Your detailed content (bio, daily intention, favorite quote, featured verse, external link) is only visible to users you have accepted as friends.
• Friends: Friend requests and accepted friendships are stored on our servers. You can remove friends at any time.
• Leaderboard: Your username, avatar, points and rank are visible on the leaderboard regardless of your visibility setting.
• Community browse: Other users can discover your profile via community search regardless of your visibility setting; the level of detail visible to them depends on your visibility setting and friendship status.
• You can hide your stats from your profile via the “Hide stats” toggle in Profile Edit.
• Reports: If you submit a report about another user, we collect the report details (the reported user's identifier, the reason selected, and any additional information you provide). This information is used solely to review and act on potential violations of our Terms of Service.

Device Permissions

• Photo Library: Used only for profile photo upload. We do not access your camera or other photos.
• Notifications: Local notifications for verse reminders and alarms. Push notifications for social features (friend requests, accepted requests).
• Audio: Background audio playback for ambient sounds during meditation and alarms.
• Haptics: Vibration feedback during letter animations. No data is collected.

What We Do NOT Collect

• We do not collect location data.
• We do not use biometric data (Face ID, fingerprint).
• We do not access your contacts, calendar, or microphone.

Analytics

We use Mixpanel to collect anonymized usage data such as screen views, feature usage, and session events. Mixpanel collects certain device identifiers (such as an anonymized device ID) to distinguish sessions and measure feature usage. These identifiers are not used to track you across other apps or websites. This data does not include personal content (verses, prayers, notes) and is used solely to improve the app experience. For more information, see Mixpanel's Privacy Policy at mixpanel.com/legal/privacy-policy.

We do not use Apple's advertising identifier (IDFA) or App Tracking Transparency.

2. Legal Basis for Processing (GDPR)

If you are located in the European Economic Area (EEA), we process your personal data on the following legal bases under GDPR Article 6:

• Contract performance (Article 6(1)(b)): Processing necessary to provide the app's features, sync your data, manage your account, and process your subscription.
• Legitimate interests (Article 6(1)(f)): Anonymized analytics (Mixpanel) to improve the app. Our legitimate interest is improving the product for all users. You may object to this processing at any time by contacting us.
• Consent (Article 6(1)(a)): Optional features such as profile photo upload, social features (friends, community, leaderboard) and push notifications. You may withdraw consent at any time by adjusting your settings or deleting your account.

For special category data under GDPR Article 9 (specifically, content that may reveal your religious beliefs, such as prayer journal entries): we rely on your explicit consent, given at the time you choose to use the prayer journaling feature. You may withdraw this consent at any time by deleting your prayer history within the app or deleting your account.

3. How We Use Your Information

• To provide and maintain the app's features
• To sync your data across devices
• To process subscriptions
• To send scheduled verse notifications (local notifications only)
• To improve the app based on anonymized usage analytics
• To enable social features (friends, leaderboard, community) if you opt in

4. Data Storage & Security

• Your data is stored locally on your device and synced to the cloud via Supabase (hosted on AWS) for backup and multi-device access.
• Cloud data is protected with Row Level Security (RLS), ensuring users can only access their own data.
• Letters are encrypted on-device using AES-256-CTR before being stored or synced. Only encrypted content reaches our servers.
• Encryption keys are stored in your device's secure storage (Keychain on iOS, Keystore on Android) and never leave your device.

• All communications with our servers use HTTPS encryption.
• We do not sell, share, or transfer your personal data to third parties, except as described in Section 7 (Third-Party Services).

International Data Transfers

Our servers are hosted by Supabase on Amazon Web Services (AWS). If you are located in the EEA, your data may be transferred to and stored on servers outside the EEA, including in the United States. We ensure that such transfers are protected by appropriate safeguards, including Standard Contractual Clauses (SCCs) as approved by the European Commission. We have executed a Data Processing Agreement (DPA) with Supabase that incorporates SCCs. You may request a copy of the relevant safeguards by contacting us at contact@stillmoment.io.

5. Data Retention

We retain your personal data for as long as your account is active. Specific retention periods by data category:

• Account and profile data: Retained for the lifetime of your account. Deleted immediately upon account deletion.
• Verse history, prayer sessions, streaks, favorites: Retained for the lifetime of your account. Deleted immediately upon account deletion.
• Letters (encrypted): Retained until you delete them within the app or delete your account.
• Prayer journal entries and notes: Retained for the lifetime of your account. Deleted immediately upon account deletion.
• Analytics data (Mixpanel): Retained according to Mixpanel's data retention policies (up to 5 years by default on their platform). Mixpanel data is anonymized and cannot be linked back to your account after deletion.
• Backup logs and server logs: Retained for up to 90 days for security and debugging purposes, then automatically deleted.

When you delete your account, all personally identifiable data is permanently removed from our servers within 30 days. We do not automatically delete data due to inactivity.

6. Subscriptions & Payments

Subscriptions are processed by the Apple App Store and Google Play Store via RevenueCat. We do not have access to your payment details. Subscription management is handled entirely by the respective store. RevenueCat receives your app store subscriber ID and subscription status for the purpose of managing your entitlements. For more information, see RevenueCat's Privacy Policy at revenuecat.com/privacy.

7. Third-Party Services

We use the following third-party services to operate the app. Each acts as a data processor on our behalf under a Data Processing Agreement:

• Supabase — Cloud database and authentication (supabase.com/privacy)
• RevenueCat — Subscription management (revenuecat.com/privacy)
• Mixpanel — Analytics (mixpanel.com/legal/privacy-policy)
• Sentry — Crash reporting and error tracking (sentry.io/privacy)
• Expo Push — Push notifications for social features (expo.dev/privacy)
• Apple — Authentication (Sign in with Apple) and app distribution
• Google — Authentication (Sign in with Google) and app distribution

8. Your Rights

All Users

• View your data within the app (profile, favorites, history).
• Delete your account from the Profile Edit screen. This permanently removes all your data from our servers.
• Contact us at contact@stillmoment.io for any privacy-related request.

EEA Residents (GDPR)

If you are located in the EEA, you have the following rights under GDPR:

• Access: Request a copy of the personal data we hold about you.
• Rectification: Request correction of inaccurate data.
• Erasure: Request deletion of your data (“right to be forgotten”).
• Data portability: Request your data in a structured, machine-readable format.
• Restriction: Request that we limit processing of your data in certain circumstances.
• Objection: Object to processing based on legitimate interests (including analytics).
• Withdraw consent: Where processing is based on consent, withdraw it at any time.

To exercise any of these rights, contact us at contact@stillmoment.io. We will respond within 30 days. You also have the right to lodge a complaint with your local data protection supervisory authority. The lead supervisory authority for Still is the Commission Nationale de l'Informatique et des Libertés (CNIL) in France (cnil.fr).

Canadian Residents (PIPEDA and Quebec Law 25)

If you are located in Canada, you have rights under Canada's Personal Information Protection and Electronic Documents Act (PIPEDA) and, if you are in Quebec, under Quebec's Act Respecting the Protection of Personal Information in the Private Sector (Law 25):

• Request access to your personal information held by us.
• Request correction of inaccurate personal information.
• Withdraw consent to the collection or use of your personal information (subject to legal or contractual restrictions), with reasonable notice.
• Lodge a complaint with the Office of the Privacy Commissioner of Canada (OPC) at priv.gc.ca.

Our designated Privacy Officer can be reached at contact@stillmoment.io.

9. Children's Privacy

Still is not directed at children under 13 (or under 16 for users in the EEA). We do not knowingly collect personal information from children under these ages. If you believe a child has provided us with personal information, please contact us at contact@stillmoment.io and we will delete it promptly.

10. Data Breach Notification

In the event of a data breach that creates a real risk of significant harm to users, we will notify affected users and the applicable regulatory authorities (including the OPC in Canada and relevant EEA supervisory authorities) as required by applicable law and within the legally required timeframes.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be reflected by updating the “Last updated” date above. For material changes, we will provide notice within the app. Continued use of the app after changes constitutes acceptance of the updated policy.

12. Contact

Data Controller: Yoann Haubner, on behalf of the Still founding team

Email: contact@stillmoment.io

Website: stillmoment.io