Privacy Policy

Effective date: June 14, 2026

Health Simple is a gentle daily wellness check-in app. This policy explains, in plain language, what data the app handles, where it is stored, and why. The short version: your check-ins are backed up to your own private account so you can recover them on a new device, we store that data securely with Google Firebase, we collect a few non-sensitive usage signals and, if you sign in, the email Apple shares, we never sell your data or use it for ads, and the app does not track you.

The short version

Your daily check-in answers, notes, questions, history, and your setup choices (focus areas and the season you're in) are backed up to your own private account so you can restore them if you lose or switch devices. We store this securely with Google Firebase, and we use it to provide that backup and to improve the app.
Your backup is tied to Sign in with Apple, which is what lets us restore your data to a new device. Sign in with Apple is optional - you can use the app without it, and if you don't sign in your check-ins are kept on your device rather than backed up.
We use Firebase Analytics and Firestore to understand how the app is used (e.g. how often you open it, your streak, whether you finished setup). These are non-sensitive usage signals tied to a random, pseudonymous ID, not your name or email.
When you sign in with Apple, we receive the email Apple shares (which can be a private-relay address) and use it for product updates and news about our other apps. You can remove this email by deleting your account.
We do not sell or rent your data, we do not use it for third-party advertising, and we do not track you across other companies' apps or websites.
The app's personalization (questions, microcopy, weekly recaps) and voice transcription are generated on your device using Apple's on-device technology - your check-in content is not sent to Apple for these features. The resulting check-ins are then backed up to your private account as described above.
You're in control: you can delete your account at any time, which removes your backed-up check-ins from our storage.

What data the app handles

Wellness check-ins (backed up to your private account)

Your daily check-in answers, notes, the questions themselves, streaks, history, and your setup choices (your focus areas and the season you're in) are backed up to your own private account with Google Firebase (Firestore). We do this for two reasons:

Backup and recovery - so you can restore your check-ins if you lose, replace, or switch devices.
Improving the app - we use this data to understand how people use Health Simple and to make it better.

This backup is tied to Sign in with Apple (see below), which is what lets us match your data to you when you set up a new device. Because the data is stored on our Firebase backend (and is not end-to-end encrypted), we are technically able to access it as the developer, and we use it for the purposes above. We never sell it, never use it for advertising, and never use it to track you across other apps or companies. If you delete your account, your backed-up check-ins are removed from our storage (see "Your control over your data" and "Data retention").

If you don't sign in with Apple, there is no account to anchor a backup to, so your check-ins are kept on your device rather than backed up - meaning they can't be recovered if you lose the device.

Usage analytics (Firebase, non-sensitive signals)

Separately from your backed-up check-in content, we use Firebase Analytics and Firebase Firestore (Google services) to understand how the app is used so we can improve it. What we collect here:

Product-interaction events: e.g. that a check-in was completed, the app was opened, or setup was finished. These events do not carry the text of your answers or notes.
Derived engagement signals: e.g. your current streak, the last day you were active, and whether you've finished onboarding.
Identifiers: a random, pseudonymous account ID and a Firebase app-instance ID. These are not your name or email and are not advertising identifiers.

This data is linked to that pseudonymous ID but is not used to track you across other apps or websites, and there is no IDFA / advertising identifier. If analytics are unavailable (or you've opted out), the app keeps working.

Email list (from Sign in with Apple, for product updates + our other apps)

When you sign in with Apple, we collect the email address Apple shares (which can be a private-relay address) and use it for product updates and news about other apps we make. This is:

Tied to Sign in with Apple, which is optional. If you never sign in, we collect no email and you receive nothing.
Stored in Firebase (Firestore), used only for product updates and to market the developer's own apps. It is never sold or shared with third parties for their advertising.
Removable: deleting your account removes your email from the list.

Name and email (from Sign in with Apple, optional)

Sign in with Apple is optional, but it is what anchors your backup so your check-ins can be restored on a new device. If you never sign in, we receive no name or email from you (and there is no account to back up your check-ins to).

If you choose to use Sign in with Apple, the app receives your name and email address from Apple.

Your name is used to personalize the app (for example, greeting you by name) and is stored with your account so it carries over when you restore on a new device.
Your email anchors your account and is also used for product updates and news about our other apps. You can use Apple's Hide My Email private relay, in which case Apple gives us a relay address rather than your real one.
This information is not sold, shared, or used for third-party advertising or tracking. Your email is stored in our email list (Firebase) for product updates and news about our other apps.

Device permissions

The app may ask for the following permissions. Each is used only for the stated purpose:

Microphone & Speech Recognition: for voice check-ins. See "On-device speech recognition" below. You can use the app fully without granting these.
Notifications: for gentle daily reminders and interactive check-in actions.
Add to Photos: only when you choose to save a weekly recap card to your photo library.

No tracking, no ads

As of this version, Health Simple:

Does not track you. We do not track you across other companies' apps or websites, and there is no advertising identifier (IDFA).
Shows no ads. There is no advertising in the app.
Never sells your data. We do not sell or rent any of your data, and we do not share it with third parties for their own advertising or marketing.
Uses your data only for backup and product improvement. Your backed-up check-ins are used to provide your cross-device backup and to make Health Simple better. The separate, pseudonymous usage signals (see "Usage analytics" above) are used only for product improvement. Neither is ever used for third-party advertising or cross-app tracking.

On-device AI (personalized questions, microcopy & recaps)

Health Simple uses Apple Foundation Models running entirely on your device to generate personalized check-in questions, supportive microcopy, and your weekly recap.

The generation itself runs on your device - the prompts and content used to produce this personalization are not sent to Apple for the AI features.
If the on-device model is unavailable on your device, the app gracefully falls back to built-in content.
The check-ins these features produce are then backed up to your private account like the rest of your check-in content (see "Wellness check-ins" above).

On-device speech recognition (voice check-ins)

When you use a voice check-in, your speech is transcribed on your device.

Audio is processed on-device and the audio is not sent to Apple's servers for transcription.
The resulting text is treated exactly like any other check-in: it is backed up to your private account as described above.

How the app and its widgets share data

Health Simple includes Home Screen and Lock Screen widgets. The app and its widgets share data through a private on-device App Group container so they show consistent information. This sharing happens entirely on your device; nothing is transmitted off the device for it.

Your control over your data

You are in control of your data at all times:

Export my data: you can export your data from within the app (Profile → Account → Export my data).
Delete this profile / account: you can permanently delete a profile and all of its check-ins and history from within the app (Profile → Delete this profile). This cannot be undone. Deleting your account removes your backed-up check-ins from our Firebase storage, along with the pseudonymous usage signals and any email-list entry associated with your account.
Remove your email from the list: deleting your account (above) removes your email from the list along with the rest of your data.

Deleting the app from your device does not by itself remove your backed-up check-ins from our storage - to remove those, delete your account (in-app or by emailing us).

Third-party processors

Your backed-up check-in content, the usage signals, and the email-list records described above are all stored and processed using Google Firebase (Firestore and Firebase Analytics), which acts as a data processor on our behalf. Google processes this data only to provide these services to us and as described in this policy, not for its own purposes. Firebase provides protection for this data equivalent to the commitments we make here. We do not use any other third-party processor for your data, and we do not share your data with third parties for their own advertising or marketing.

Data retention

We keep data only as long as it is useful for the purposes described above:

Backed-up check-in content (your answers, notes, question history, streaks, and setup choices) is retained for as long as your account exists, so it is available to restore on a new device. When you delete your account, this content is removed from our storage.
Pseudonymous usage signals are retained while your install is active, and we periodically aggregate and prune them so we keep only what we need to understand product trends. Deleting your account removes the signals associated with it.
Email-list records (from Sign in with Apple) are retained for as long as your account exists, or until you ask us to remove you. When you delete your account, or ask us to unsubscribe you, your email is removed from the list.

Your choices and how to withdraw

You can change your mind at any time:

Opt out of analytics: analytics are non-sensitive and pseudonymous, and the app works exactly the same with them disabled. To opt out, you can disable usage analytics in the app (Profile → Privacy) or email us at privacy@healthsimpleapp.com and we will exclude your install.
Unsubscribe from the email list: if you signed in with Apple and want off our product-updates list, email privacy@healthsimpleapp.com with the request. We handle these manually for now and will remove you promptly. (You can also remove your email by deleting your account.)
Request deletion: you can permanently delete a profile and its data from within the app (Profile → Delete this profile), which removes your backed-up check-ins along with the pseudonymous signals and any email-list entry for your account. If you would prefer we action a deletion for you, email privacy@healthsimpleapp.com.

Children

Health Simple is not directed at children under 13 and we do not knowingly collect personal information from children under 13.

Medical disclaimer

Health Simple is for general wellness and self-reflection. It is NOT medical advice, diagnosis, or treatment. It is not a substitute for professional care. If you have a medical concern, or if you are experiencing a crisis, please consult a qualified healthcare professional or your local emergency services.

Future changes

A future version of Health Simple may add features such as server-assisted reminders or other capabilities that handle your data in new ways. If and when those features ship:

This privacy policy and the App Store privacy label will be updated before the features are released, and
Users will be clearly informed about what changes and what new data (if any) would be handled.

Until then, the commitments described above remain in effect: your check-in content is backed up to your private account and stored securely with Google Firebase for backup and product improvement, we collect the non-sensitive, pseudonymous usage signals (and, if you sign in with Apple, the email Apple shares) described above, and we never sell your data, never use it for ads, and never track you across other apps.

Changes to this policy

We may update this policy from time to time. When we do, we will revise the effective date above and, for material changes, inform users within the app. Continued use of the app after an update means you accept the revised policy.

Contact

Questions about this policy or your privacy? Contact us at privacy@healthsimpleapp.com.