Privacy Policy

1. Introduction

At Kaizen, protecting your privacy is a priority. This Privacy Policy explains what data we process when you use the Kaizen application (hereinafter "the Application"), why we process it, and what your rights are.

The data controller is Paolo ("we", "Kaizen"). For any question, contact us at kaizenapp.contact@gmail.com.

In short: the content you create (journal, habits, moods, notes) stays on your device. A limited set of account, referral and subscription data is stored securely in the cloud (Firebase) so you can sign in, subscribe and use the referral program. We never sell your data and never use it for advertising.

2. Data We Process

a) Stored only on your device (never sent to us): • Journal entries, notes, thoughts and reflections. • Habits, challenges and progress. • Moods and daily well-being assessments. • App preferences (theme, language, notifications). • Screen time and the list of apps you choose to block, processed locally via Apple's Screen Time APIs.

b) Stored in the cloud (Firebase) once you sign in: • An account identifier created when you use Sign in with Apple. • The email address provided by Apple (which may be a private relay address) and, if you share it, your first name. • A referral code, a device identifier and anti-fraud data used to run the referral program. • Your subscription / VIP status. • Technical timestamps (account creation, last sign-in).

We never ask for a password — authentication is handled entirely by Apple.

3. Where Your Data Is Stored

• Your personal content (journal, habits, moods, notes, preferences) is stored exclusively on your device. It never leaves your iPhone or iPad and is permanently erased when you delete the Application.

• Your account, referral and subscription data is stored on Google Firebase (Firebase Authentication and Cloud Firestore), our authentication and database provider. These data may be processed on servers located outside your country, including in the United States; appropriate safeguards (such as the European Commission's Standard Contractual Clauses) govern such transfers.

Legal bases (GDPR): performance of our contract with you (sign-in, subscriptions, referral features) and our legitimate interest in preventing fraud and abuse. We keep your account data for as long as your account exists; you can delete it at any time (see "Your Rights").

4. Sharing & Service Providers

We never sell or rent your data, and we never use it for advertising.

We only share data with the providers strictly necessary to run the Application, which act as our processors and may only use the data on our instructions: • Apple — Sign in with Apple and in-app purchases. • Google Firebase — authentication, database (Firestore) and hosting. • RevenueCat — subscription validation and management.

No one — including us — can read your journal or personal content: it stays on your device and is never sent to us.

5. Analytics & Diagnostics

The Application does not use any third-party analytics tools (no Google Analytics, Firebase Analytics, Amplitude, etc.).

The only diagnostic data potentially transmitted is that automatically collected by Apple via the App Store, in accordance with the privacy settings you have configured in your iOS settings (Settings > Privacy > Analytics & Improvements). Kaizen has no control over this data.

6. Third-Party Services

The Application relies on the following third-party services:

Sign in with Apple (Apple): Used to create and access your account. Apple provides us with an account identifier and your email (possibly a private relay address). You can manage Sign in with Apple in your Apple ID settings.

Google Firebase — Authentication & Cloud Firestore: Used to authenticate you and to store the account, referral and subscription data described above. See Google's privacy policy: https://firebase.google.com/support/privacy.

RevenueCat: Validates your purchases and links your subscription status to your account identifier. See https://www.revenuecat.com/privacy.

Apple HealthKit: If you grant access, the Application may read and write health data (e.g. mindfulness). This data is handled in accordance with Apple's guidelines and is never used for advertising or data mining.

Screen Time API (Family Controls / Device Activity): If you enable app blocking, the identity of blocked apps and screen time data remain on your device and are never shared.

Apple In-App Purchases (StoreKit): Purchase transactions are processed by Apple under Apple's terms.

7. Your Rights (GDPR)

In accordance with the General Data Protection Regulation (GDPR) and Swiss data protection law (nFADP), you have the following rights:

• Access: you can view your local data directly in the Application; for your cloud account data, contact us. • Rectification: you can edit your data in the Application at any time. • Erasure: use "Delete account" in the profile to permanently delete your cloud account and associated data (Firebase Authentication and Firestore). Deleting the Application also erases all local data. • Portability: your local data is already in your possession; for your cloud data, contact us. • Objection & restriction: you can object to or ask us to restrict certain processing. • Withdraw consent: you can revoke HealthKit and Screen Time permissions in your iOS settings at any time.

You also have the right to lodge a complaint with your local data protection authority. For any request: kaizenapp.contact@gmail.com.

8. Children

The Application is intended for users aged 13 and over (see our Terms of Service for details). We do not knowingly collect personal data from children under 13. If you believe a child under 13 has provided us with personal data, contact us and we will delete it.

9. Changes to this Policy

We reserve the right to modify this Privacy Policy at any time. Changes will be published in the Application and will take effect immediately.

Your continued use of the Application after the publication of changes constitutes your acceptance of the revised policy.

10. Contact

For any questions regarding this Privacy Policy or the protection of your data, you can contact us at:

kaizenapp.contact@gmail.com