Privacy Policy

Last Updated: January 2026

Introduction

StreakWalk ("we," "our," "us," or "Company") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and otherwise process personal information when you use our mobile application ("StreakWalk" or the "App"), available on iOS and Android platforms.

We understand that health and fitness data is sensitive, and we're committed to being transparent about our practices. Please read this policy carefully.

1. Information We Collect

1.1 Step Count Data (Primary Health Data)

StreakWalk reads step count data from your device's health system:

  • Apple Health (iOS): Step data synced from Apple Health via the Health framework
  • Google Health Connect (Android): Step data accessed through Health Connect
  • Daily Step Count: Number of steps walked each day
  • 7-Day History: Step data from the last 7 days used during initial onboarding
  • Real-time Updates: Steps synced throughout the day (every 60 seconds when app is open, every 15 minutes in background)

Important: We read step count only. We do NOT access, request, or store:

  • Heart rate or other biometric data
  • Weight or body measurements
  • Sleep data
  • Nutritional information
  • Medical conditions or diagnoses
  • Any health data beyond daily step counts

1.2 User Account Information

When you create a StreakWalk account, we collect:

  • Email Address: For authentication and account recovery
  • Display Name: Your chosen username in the app
  • Password: Securely hashed (we never store plain text passwords)
  • Avatar Selection: Which avatar character you've chosen to represent yourself
  • Daily Step Goal: Your target daily step count (ranges from 3,000 to 15,000 steps)

1.3 Activity and Progress Data

We track your engagement with the app:

  • Daily Step Records: Steps walked each day, goal completion status, and timestamps
  • Streak Data: Your current streak count, longest streak, and streak history
  • Shield Usage: When and whether you've used a weekly shield to protect a streak
  • Grace Day Usage: First week only - whether you've used your one grace day
  • Mission Progress: Your progress through the 7-day first-week mission series
  • Goal Completion Records: Timestamps and metadata for each day you complete your goal

1.4 Challenge and Social Data

When you participate in challenges:

  • Challenge Participation: Which challenges you've joined or created
  • Challenge Steps: Your step count during active challenges
  • Challenge Metadata: Challenge names, types (friend or public), duration, and timestamps
  • Join Codes: Unique codes used to invite friends to private challenges
  • Winner Information: Records of challenge results and winners

1.5 Gamification Data

We track your progress through our achievement system:

  • Badge Achievements: Which badges you've earned and when
  • Unlocked Content: Which avatar characters and frame designs you've unlocked
  • Achievement Timestamps: When specific milestones were reached

1.6 Push Notification Tokens

For sending notifications, we store:

  • Device Tokens: Unique identifiers for your device to receive push notifications
  • Platform Type: Whether you're on iOS or Android
  • Token Timestamps: When tokens were created or updated

1.7 Notification Preferences

Your opt-in/opt-out choices for:

  • Daily Reminders: Your preferred time for daily goal reminders
  • Streak Risk Alerts: When your streak is at risk of breaking
  • Challenge Updates: New challenge invitations and results
  • Achievement Notifications: Badge unlocks and milestones
  • Marketing Communications: Newsletter and feature announcements

1.8 Premium Subscription Data

If you subscribe to premium:

  • Subscription Status: Whether your subscription is active
  • Expiration Date: When your premium access expires
  • Subscription Type: Duration and pricing tier of your plan
  • Purchase Records: Managed through RevenueCat (our payment processor)

1.9 Device and Technical Data

  • Device Information: Device model, OS version, app version
  • Unique Device Identifier: For tracking app-level data (not linked to phone ID)
  • Crash Reports: Technical errors and performance issues
  • App Analytics: Which features you use and how often
  • Timestamps: When you use the app and perform actions

1.10 Communication Data

If you contact us:

  • Support Messages: Content of any support requests or feedback
  • Email Communications: Your email and the text of messages you send us

2. How We Collect Information

2.1 Direct Collection

  • App Registration: Email and display name when you create an account
  • Onboarding: Goal setting, avatar selection, and health permission approval
  • App Usage: Automatically recorded as you interact with StreakWalk

2.2 Automatic Collection

  • Health Data: Directly from Apple Health or Google Health Connect when you grant permission
  • Device Sensors: Step detection from your device's motion sensors (via Health frameworks)
  • Analytics: Aggregated app usage patterns
  • Push Tokens: Generated by your device OS when you enable notifications

3. How We Use Your Information

3.1 Core App Functionality

  • Track Progress: Calculate daily step counts and display in your dashboard
  • Streak Management: Track your current streak, longest streak, and calculate streak resets
  • Goal Completion: Determine if you've met your daily goal and when
  • Challenges: Match you with other users in challenges and track standings
  • Gamification: Award badges, unlock avatars, and track achievements
  • First Week Experience: Deliver your personalized 7-day onboarding journey

3.2 Account Management

  • Authentication: Verify your identity and keep your account secure
  • Account Recovery: Send password reset links and account recovery emails
  • Data Sync: Sync your progress across devices and to our servers
  • Settings: Store your preferences and notification choices

3.3 Notifications

  • Daily Reminders: Send motivational reminders to hit your daily goal
  • Streak Alerts: Notify you when your streak is at risk of ending
  • Challenge Updates: Inform you about challenge invitations and results
  • Achievement Notifications: Celebrate badge unlocks and milestones

3.4 Service Improvement

  • Usage Analytics: Understand which features are popular and how users interact with the app
  • Error Tracking: Identify and fix crashes and bugs
  • Performance Monitoring: Optimize app speed and reliability

3.5 Communications

  • Service Updates: Notify you of new features or important changes
  • Premium Offers: With your consent, inform you about subscription options
  • Customer Support: Respond to your questions and help troubleshoot issues

4. Where We Store Your Data

4.1 Server Storage (Supabase)

Your account data and progress are stored on secure Supabase servers:

  • Location: Encrypted cloud storage in secure data centers
  • Encryption: End-to-end encryption for data in transit and at rest
  • Access Control: Row-level security ensures you can only access your own data
  • Backup: Automatic daily backups for disaster recovery

4.2 Local Device Storage

Step count and health data remain primarily on your device:

  • Apple Health: Steps stay in your Apple Health app (we only read from it)
  • Google Health Connect: Steps stay in your Health Connect system
  • Local Cache: The app stores recently synced steps locally for offline access

5. Data Security

5.1 Protection Measures

  • Password Security: Your password is hashed with bcrypt; we never store the raw password
  • Encryption in Transit: All data sent to our servers uses TLS/SSL encryption
  • Database Encryption: Sensitive data is encrypted at rest
  • Access Control: Only necessary staff can access your data under strict confidentiality agreements
  • Secure Authentication: Industry-standard OAuth 2.0 authentication
  • Regular Audits: We conduct security reviews and penetration testing

5.2 Data Retention

  • Account Data: Retained as long as your account is active
  • Step Records: Stored indefinitely for your historical progress
  • Deleted Accounts: Permanently deleted within 90 days of account deletion
  • Backup Data: Older backups are purged after 30 days

5.3 Limitations

While we implement strong security measures, no system is 100% secure. We commit to industry-standard protection but cannot guarantee absolute security.

6. Sharing Your Information

6.1 What We Do NOT Share

We do NOT sell, rent, or trade your personal information to third parties.

6.2 Limited Sharing

We may share data in these limited circumstances:

Service Providers:

  • Supabase: Database and backend hosting
  • RevenueCat: Payment processing for premium subscriptions
  • Expo: Notifications service and app hosting

These partners are bound by confidentiality agreements and use your data only to provide services.

Legal Requirements:

  • To comply with law enforcement requests
  • To enforce our Terms of Service
  • To protect user safety and prevent fraud

Public Challenges:

  • Your display name and steps appear on public challenge leaderboards (only if you join a public challenge)
  • Your avatar and step count are visible to other challenge participants
  • You can opt for private/friend-only challenges instead

7. Your Privacy Rights

7.1 Access Your Data

You have the right to request all personal information we hold about you. Contact us at support@streakwalk.app to submit a request.

7.2 Correct Your Data

You can update your account information directly in the app (display name, goal, preferences) or contact us for corrections.

7.3 Delete Your Data

You can delete your account and all associated data at any time:

  • In App: Through Settings → Account → Delete Account
  • By Email: Contact support@streakwalk.app with your request
  • Timeline: Your data is permanently deleted within 90 days

7.4 Opt-Out Options

  • Notifications: Turn off all notifications in Settings
  • Health Sync: Revoke StreakWalk's access in your device health settings
  • Marketing: Unsubscribe from emails using the link in any email
  • Analytics: Disable analytics in app settings (if offered)

7.5 Portability

You can request your data in a portable format (JSON) at support@streakwalk.app. We'll provide:

  • Your user profile
  • All daily step records
  • Challenge history
  • Badge achievements

7.6 Regulatory Rights

For California Residents (CCPA): You have the right to know, delete, opt-out, and access your personal information.

For EU Residents (GDPR): You have rights including access, rectification, erasure, restriction, portability, and objection.

For Canadian Residents (PIPEDA): You can access, correct, and request deletion of your personal information.

8. Children's Privacy

StreakWalk is not intended for users under 13. We do not knowingly collect data from children under 13. If we discover a child under 13 has created an account, we will delete that account and all associated data immediately.

For users 13-17, parental guidance is recommended. Parents can contact us to review or request deletion of their child's data.

9. Health Data - Special Considerations

9.1 Not a Medical Device

StreakWalk is a fitness app, not a medical device:

  • Data is for fitness tracking and habit building only
  • Should not be used as medical advice
  • Does not diagnose, treat, or cure medical conditions
  • May not reflect 100% accurate step counts

9.2 Accuracy Limitations

Step count accuracy depends on:

  • Your device's motion sensors
  • How you carry your phone
  • Environmental factors (terrain, walking speed)
  • Sensor calibration

We do not guarantee precision of step counting.

9.3 Consult Healthcare Providers

Before starting any new exercise program, especially if you have health conditions, consult with a healthcare provider. StreakWalk is not a substitute for medical advice.

10. Third-Party Integrations

10.1 Health Systems

We integrate with (not connect to):

  • Apple Health: We read step data only. Apple's privacy policy applies to Apple Health data.
  • Google Health Connect: We read step data only. Google's privacy policy applies to Health Connect data.

You grant permission in your device settings, not through StreakWalk. You can revoke access at any time in:

  • iOS: Settings → Health → Data Access & Devices → StreakWalk
  • Android: Health Connect → Permissions → StreakWalk

10.2 Payment Processing

  • RevenueCat: Handles premium subscriptions securely
  • App Stores: Apple App Store and Google Play Store process payments
  • We do not store credit card information

11. Privacy Controls

11.1 In-App Privacy Settings

  • Notification Preferences: Granular control over what notifications you receive
  • Profile Visibility: Choose if your achievements are public or private
  • Challenge Privacy: Select friend-only or public challenges
  • Data Sync: Enable/disable syncing to our servers
  • Health Permissions: Revoke StreakWalk's health data access

11.2 Device-Level Controls

  • Health App Permissions: Manage StreakWalk's access in Health/Health Connect
  • Notification Permissions: Control when and how you're notified
  • App Permissions: Revoke any permissions through device settings

12. Cookies and Tracking

12.1 No Cookies in the App

The StreakWalk mobile app does not use cookies. (Cookies are only relevant for web browsers.)

12.2 Analytics

We use basic app analytics to understand:

  • Which screens are visited most
  • Which features are used
  • Crash and error rates
  • General usage patterns

This analytics data is anonymized and aggregate—not tied to your personal identity.

13. Data Transfers

If you're outside the US and use StreakWalk, your data may be transferred to and stored in the US. By using StreakWalk, you consent to data transfers to the US, which may have different privacy laws than your country.

If you're in the EU, we take additional measures to protect your data through standard data processing agreements.

14. Changes to This Policy

We may update this Privacy Policy to reflect changes in our practices or legal requirements. We will:

  • Post updated policies on this page
  • Update the "Last Updated" date
  • Notify you of significant changes via email if required by law

Continued use of StreakWalk means you accept the updated Privacy Policy.

15. Data Breaches

In the unlikely event of a data breach:

  • We will notify affected users as soon as practicable
  • We'll explain what data was compromised
  • We'll provide steps for users to protect themselves
  • We'll comply with all legal notification requirements

16. Contact Us

Questions about this Privacy Policy or our privacy practices?

Email: support@streakwalk.app

Response Time: We aim to respond within 30 days

GDPR Requests: Mark your subject line as "GDPR REQUEST" to ensure priority routing

Mailing Address: [Include your company address]

17. California Privacy Rights (CCPA)

If you're a California resident, you have the right to:

  • Know what personal information is collected
  • Know whether personal information is sold or disclosed
  • Say no to the sale or sharing of personal information
  • Access your personal information
  • Request deletion of your information
  • Get equal service and pricing even if you exercise your rights

To submit a request, contact support@streakwalk.app.

18. European Privacy Rights (GDPR)

If you're in the EU, you have the right to:

  • Access your personal data
  • Rectify inaccurate data
  • Erase your data ("right to be forgotten")
  • Restrict processing
  • Data portability
  • Object to processing
  • Automated decision-making rights

For GDPR inquiries, contact dpo@streakwalk.app.

StreakWalk Privacy Policy - Effective Date: January 2026

By using StreakWalk, you acknowledge that you have read and understood this Privacy Policy.