Contact: privacy@getspoons.app or hello@getspoons.app
Plain-Language Summary (≈60 seconds)
In the Spoons app: We collect ZERO data. Nothing. Your spoon logs stay on your device. We never see them.
On the website (getspoons.app):
- Email address (only if you join the waitlist)
- Basic website stats (which pages people visit - no personal tracking)
What we DON'T do:
- No selling data (ever)
- No ads or tracking in the app
- No account required
- No cloud storage of your spoons
Your rights:
- Unsubscribe from emails anytime (one click)
- Export your spoon logs anytime (CSV/JSON in the app)
- Delete your data anytime (uninstall app)
Questions? privacy@getspoons.app
1) Overview
Spoons is built privacy-first and offline-first.
In the app:
- We collect ZERO data
- Your spoon logs are stored only on your device
- We never see your logs, cannot access your logs, and do not transmit your logs anywhere
On the website:
- We collect minimal data to operate the waitlist and understand what content is helpful
- You choose whether to share your email address
This Privacy Policy works with our Terms of Service at getspoons.app/terms.
2) What Data We Collect
A) In the Spoons App: ZERO
We do NOT collect:
- ❌ Your spoon logs (stored on your device only)
- ❌ Your location
- ❌ Your device information
- ❌ Your usage patterns
- ❌ Any analytics or tracking data
- ❌ Any personal information whatsoever
The app works completely offline and never sends data to any server.
B) On the Website: Minimal
1. Email Address (Optional - Waitlist Only)
When: If you sign up for the waitlist at getspoons.app
What we collect:
- Your email address
- Signup date
How we use it:
- Send app launch announcement
- Send optional weekly updates (unsubscribe anytime)
Where stored: Mailchimp
Your control: Click "unsubscribe" in any email or email privacy@getspoons.app
2. Website Usage (Privacy-Respecting)
When: When you visit getspoons.app
What we collect:
- Pages visited
- Country/region (general location, not precise)
- Device type (mobile/desktop)
- Referral source (e.g., came from Google or Reddit)
What we DON'T collect:
- ❌ Your IP address (not stored)
- ❌ Personal identifiers
- ❌ Cross-site tracking
- ❌ Advertising profiles
How we use it:
- Understand which pages are helpful
- Fix technical issues
- Improve website design
Provider: Webflow Analytics (or [specify if you use something else])
3. Support Emails
When: If you email hello@getspoons.app or privacy@getspoons.app
What we collect:
- Your email address
- Your message content
- Any attachments (e.g., screenshots)
How we use it:
- Answer your question
- Fix bugs
- Improve the app
Where stored: Proton Mail (encrypted)
Retention: 2 years, then deleted
4. Subscription Data: We Don't Collect It
Billing is handled by Apple and Google:
- They collect your payment info (we never see it)
- They tell us only: "This anonymous user has an active subscription"
- We never know your name, payment method, or personal details
For Apple's privacy: https://www.apple.com/legal/privacy/
For Google's privacy: https://policies.google.com/privacy
3) How We Use Your Data
Email addresses:
- Send waitlist updates
- Respond to support requests
- That's it. Nothing else.
Website analytics:
- Understand which blog posts are helpful
- Fix broken pages
- That's it. Nothing else.
We will NEVER:
- ❌ Sell your data
- ❌ Use it for advertising
- ❌ Share it (except with service providers: Mailchimp, Webflow, Proton)
- ❌ Track you across other sites
- ❌ Build profiles about you
4) How We Protect Your Data
In the app:
- Your logs never leave your device = nothing to protect on our end
- No account = no password to steal
- No cloud = no cloud breaches
Email & website:
- HTTPS encryption
- Mailchimp security (industry standard)
- Proton Mail encryption (end-to-end for support emails)
What we can't protect:
- Exports you share with others
- Device backups (iCloud/Google Drive) if you enable them
- Your device security (use a passcode!)
5) Third-Party Services
App Distribution:
Website & Email:
Important: These services have their own policies. None of them see your spoon logs (because we don't have them either).
6) Your Rights
Access Your Data
Email privacy@getspoons.app with subject: "Data Access Request"
We'll send you:
- Your email address (if you joined waitlist)
- Signup date
- Any support emails you sent
Note: Your spoon logs aren't included because we don't have them
Delete Your Data
- Waitlist email: Click "unsubscribe" in any email
- Everything: Email privacy@getspoons.app with subject: "Delete My Data"
- Spoon logs: Uninstall the app (they're only on your device)
Timeline: Within 30 days (usually 48 hours)
Export Your Data
- Spoon logs: Tap "Export" in app settings (CSV/JSON)
- Email data: Email privacy@getspoons.app with subject: "Export My Data"
Regional Rights
European Union / UK (GDPR):
- Right to access, delete, export (covered above)
- Right to restrict processing
- Right to object to processing
- Right to complain to your Data Protection Authority
California (CCPA):
- Right to know, delete, opt-out of sale
- We don't sell data, so opt-out is automatic
Brazil (LGPD):
- Right to access, correct, delete
- Right to data portability
Australia:
- Right to access and correct
- Complaint to OAIC if needed
All regions:
7) Data Retention
Spoon logs: On your device until you delete them
Email addresses: Until you unsubscribe (then deleted within 30 days)
Support emails: 2 years, then deleted
Website analytics: Aggregate data for 2 years (no personal identifiers)
8) Children's Privacy
Age requirement: 13+ (16+ recommended; 13-15 needs parental permission)
We don't knowingly collect data from under-13s.
If we discover a child under 13 provided data, we delete it immediately.
Parents: Contact privacy@getspoons.app if concerned.
9) International Users
Where data is stored:
- Spoon logs: Your device (your country)
- Emails: Mailchimp servers (US/EU)
- Support: Proton servers (Switzerland)
EU users:
- GDPR applies fully
- Standard Contractual Clauses for US transfers
- Can request EU-only storage
UK users:
- UK GDPR applies
- Same protections as EU
10) Cookies
In the app: No cookies
On website:
- Essential cookies only (e.g., language preference if we add translations)
- Privacy-respecting analytics (no personal tracking)
- No advertising cookies
You can disable cookies in browser settings - site still works.
11) Security Incidents
If there's a data breach:
- We investigate immediately
- Notify you within 72 hours
- Report to authorities as required
- Fix the issue
How we notify:
- Email
- Website announcement
- In-app (if applicable)
Good news: Your spoon logs are on your device, so they can't be breached through our systems.
12) Changes to This Policy
We may update this policy.
When we do:
- New effective date at top
- Material changes announced via email + website
Material changes:
- Collecting new data types
- New third-party sharing
- Reducing privacy rights
Your options:
- Stop using the service before changes take effect
- Unsubscribe from emails
- Continued use = acceptance
13) Contact
Privacy questions:
Response time: Within 30 days (usually 48 hours)
Mailing address: [Add after company formation]
14) What Makes Spoons Privacy-First
✅ Zero data collection in the app
✅ Your logs never leave your device
✅ No tracking, no ads, no analytics in app
✅ Minimal website data (email + basic stats only)
✅ Export anytime, delete anytime
✅ No data selling, ever
Privacy isn't a feature - it's how we built Spoons.
