Privacy Policy

Effective July 2, 2026

Chiari Companion ("the app") is built as a private, local-first journal for people living with Chiari malformation and the people who care for them. This policy explains what data the app handles, where it stays, and what choices you have.

Short version. Everything you write stays on your phone. We do not run an account system or a server that stores your health journal. We do not use advertising or analytics SDKs.

1. Information you enter

The app stores only the information you choose to enter, including:

2. Where your data lives

Your journal is stored in the app's private storage on your device. The iOS app uses SwiftData. The Android app uses Room and excludes its database, preferences, attachments, and reports from cloud backup and device transfer. iCloud backup may include iOS data only if you enable device backup; Apple then handles that backup under its terms.

The app does not transmit your journal to us. We do not operate a backend server that stores it.

3. Permissions the app asks for

Apple Health and Health Connect

Health access is optional. On iOS, the app may read the health types listed in the Apple permission screen. On Android, the app requests only steps, sleep sessions, and resting heart rate from Health Connect. These values are shown as descriptive context inside the app, remain on your device, and are not sent to Creative Factory, RevenueCat, Open-Meteo, or any advertising or analytics service. You can revoke access in Apple Health or Health Connect settings.

Location (when in use)

If you grant access, the app requests approximate location no more than once per day to obtain local barometric pressure. iOS uses Apple WeatherKit; Android sends rounded approximate coordinates to Open-Meteo over HTTPS. The returned pressure reading is stored on your device. The app does not store your coordinates, and Creative Factory does not receive them.

Notifications

Used only for medication-record, appointment, and daily check-in reminders that you enable. Android uses generic private lock-screen text; notification content stays on your device.

Camera & Photo Library

Used only when you choose to attach a report or image to a record. Android uses the system document picker and does not request broad photo-library access. Attached files are copied into the app's private local storage.

Face ID / Touch ID

If you enable app lock, authentication is performed by the operating system using biometrics or your device credential. The app never receives or stores biometric data.

4. Weather providers

iOS weather requests are governed by Apple's Weather privacy notice. Android weather requests are governed by Open-Meteo's terms and privacy information. Weather context is optional and the rest of the app works without location.

5. Purchases (RevenueCat, App Store & Google Play)

Optional Pro features are sold through the Apple App Store or Google Play. The applicable store processes payment. RevenueCat verifies entitlement status and may receive an app-generated anonymous identifier, store product identifier, purchase status, and diagnostic information needed to operate purchases. See RevenueCat's privacy policy. We do not receive your health journal, name, email, or payment-card details from RevenueCat or the stores.

6. Analytics & tracking

The app does not include third-party analytics SDKs, advertising SDKs, or trackers. We do not collect usage telemetry about which screens you visit.

7. Children

The app is not directed to children under 13. We do not knowingly collect personal information from children.

8. Sharing & exports

You can generate a visit summary (PDF) from your own logs. The summary is created on your device. Any sharing of that PDF, by email, AirDrop, print, or other means, is initiated by you and uses the system share sheet. We do not receive a copy.

9. Deleting your data

Settings → Delete all local data removes journal entries, profile and preference data, attachments, generated reports, and scheduled local notifications from the device. It does not delete store purchase history or revoke operating-system permissions; manage those in Apple, Google Play, Apple Health, Health Connect, or device settings. Uninstalling also removes app-private on-device data. Any iOS device-backup copy remains subject to Apple's backup controls.

10. Changes to this policy

We may update this policy as the app evolves. Material changes will be reflected in the "Effective" date at the top.

11. Contact

Privacy questions: hi@creativefactory.tr