Privacy Policy

Last updated: December 2024

Overview

Shadow is a self-awareness tool that helps you track emotional patterns. We built Shadow with privacy as a core principle. Your emotional data is sensitive, and we treat it that way.

Data We Collect

Account Information

  • Email address (required for account creation)
  • Name (optional, from Apple Sign-In)
  • Username (optional, user-created)

Content You Create

  • Emotional logs (mood, intensity, timestamps)
  • Brain dump entries (free-form text)
  • Streak and achievement data

Usage Data

  • App opens and feature usage
  • Device type and app version
  • Crash reports and error logs

What We Don't Collect

  • Location data
  • Contacts or calendar
  • Photos or camera access
  • Health or fitness data
  • Data from other apps

How We Store Your Data

Shadow uses an offline-first architecture. Your entries are stored locally on your device and synced to secure cloud storage when connected.

  • Local storage: Core Data on your device
  • Cloud storage: Firebase Firestore with SSL encryption
  • Sensitive data: Stored in iOS Keychain (device-only, not backed up to iCloud)

Third-Party Services

We use the following services to operate Shadow:

  • Firebase (Google) - Authentication, cloud database, push notifications, crash reporting
  • PostHog (EU-hosted) - Product analytics to improve the app. We track feature usage, not content.
  • Apple - Sign-in authentication and in-app purchase processing via StoreKit

We do not sell your data. We do not share the content of your entries with any third party.

Analytics

We use PostHog (hosted in the EU) to understand how people use Shadow. We track actions like "app opened" or "entry created" but we do not track the content of your entries. Analytics helps us improve the app and fix bugs.

Your Rights

  • Access: View all your data within the app
  • Export: Download your data at any time
  • Delete: Delete your account and all associated data
  • Portability: Your data belongs to you

To exercise these rights, go to Profile → Settings in the app, or contact us at ritual@joinshadow.app

Data Retention

Your data is retained until you delete it or close your account. When you delete your account, all data is permanently removed from our servers within 30 days. Local data on your device is deleted immediately.

Security

  • All data transmitted over SSL/TLS encryption
  • Sensitive credentials stored in iOS Keychain
  • Firebase security rules restrict data access to account owners
  • Optional biometric authentication (Face ID/Touch ID)

Children's Privacy

Shadow is not intended for children under 13. We do not knowingly collect data from children under 13. If you believe a child has provided us with personal data, please contact us.

Changes to This Policy

We may update this policy from time to time. Significant changes will be communicated via the app or email. Continued use after changes constitutes acceptance.

Contact

Questions about this policy? Contact us at ritual@joinshadow.app