Privacy Policy

Last updated: December 2025

Overview

This Privacy Policy explains how Slouch AI ("we," "us," or "our") collects, uses, stores, and shares your information when you use our mobile application. We are committed to being transparent about our data practices.

1. Information We Collect

1.1 Account Information

When you create an account using Apple Sign-In or Google Sign-In, we collect:

Email address
Name (if provided by the sign-in service)
Unique user identifier from Firebase Authentication

1.2 Profile Information

You may optionally provide:

Gender
Height and weight
Age
Activity level
Daily posture check-in goals

1.3 Posture and Health Data

The app collects the following posture-related data:

Daily Check-ins: Records of your posture check-ins, including dates and completion counts
Streaks: Your consistency tracking data (current and best streaks)
Exercise Data: Completed exercises and timestamps
Headset Posture Sessions: If using AirPods for posture monitoring, motion data and posture scores from your sessions
Posture Analysis Results: Scores, summaries, identified issues, and recommendations from AI analysis (images are not stored - see Section 1.4)

1.4 Camera and Image Data

When you use the posture analysis feature:

The app captures photos using your device camera
Images are sent to our servers for AI-powered posture analysis
Our servers forward images to OpenAI's GPT-4 Vision API for analysis
Images are not stored permanently - they exist only in memory during the analysis process
Only the analysis results (scores, text descriptions, recommendations) are saved

1.5 Device and Motion Data

If you use AirPods posture monitoring:

Head motion data from compatible AirPods (AirPods Pro, AirPods Max, AirPods 3rd gen)
This data is used to calculate posture scores during monitoring sessions

1.6 Usage and Analytics Data

We automatically collect:

App feature usage and engagement metrics
Session information
Device type and operating system version
Crash reports and performance diagnostics
Subscription and purchase events

1.7 Advertising and Tracking Data

If you grant tracking permission, we may collect:

Device Identifier (IDFA): Apple's Identifier for Advertisers, used to measure ad effectiveness
Purchase Events: Information about in-app purchases for ad campaign optimization
App Events: Interactions such as viewing the paywall, initiating checkout, and completing purchases

This data is shared with Meta (Facebook) to measure and optimize advertising campaigns. You can control this through the App Tracking Transparency prompt or your device's privacy settings.

2. How We Use Your Information

We use your information to:

Provide posture monitoring and analysis features
Generate personalized exercise recommendations
Track your progress, streaks, and achievements
Sync your data across devices when you're signed in
Send posture check-in reminder notifications
Process subscription payments
Improve app performance and fix bugs
Provide customer support

3. Data Storage and Synchronization

3.1 Local Storage

Your data is stored locally on your device using:

Core Data for structured information (check-ins, exercises, profile data)
Secure Keychain for sensitive credentials

3.2 Cloud Synchronization

Important: When you sign in to Slouch AI, your data is automatically synchronized to our cloud servers (Firebase Firestore). This includes:

All check-in records
Streak data
Exercise completion history
User profile information
Headset posture session data
Saved posture analysis results (excluding images)

Cloud sync enables you to access your data across multiple devices and prevents data loss if you change devices.

3.3 Data Security

Data is encrypted in transit using TLS/SSL
Cloud data is stored in Firebase Firestore with security rules that restrict access to your own data
Authentication is handled through Firebase Authentication

4. Third-Party Services

We use the following third-party services that may receive your data:

4.1 Firebase (Google)

Firebase Authentication: Manages user sign-in and identity
Firebase Firestore: Stores your synchronized data
Firebase Analytics: Collects anonymous usage statistics
Firebase Crashlytics: Collects crash reports for debugging

4.2 OpenAI

Posture images are sent to OpenAI's GPT-4 Vision API for analysis
AI coaching conversations are processed by OpenAI's ChatGPT
Requests include your Firebase user ID for rate limiting purposes

4.3 Anthropic

Some AI coaching features may use Anthropic's Claude API

4.4 RevenueCat

Manages subscription purchases and entitlements
Receives purchase transaction data from Apple

4.5 Meta (Facebook)

Facebook SDK: Used for advertising measurement and optimization
Aggregated Event Measurement (AEM): Privacy-preserving framework for measuring ad effectiveness on iOS
Receives purchase events and app interaction data when tracking is permitted
Data is used to optimize advertising campaigns and measure return on ad spend

4.6 Apple and Google

Sign-In services for authentication
App Store for purchases and subscriptions
SKAdNetwork for privacy-preserving ad attribution

5. Your Rights and Controls

5.1 Access Your Data

You can view all your data within the app, including check-in history, streaks, and saved posture reports.

5.2 Delete Your Data

Delete individual saved posture reports from within the app
Delete your entire account, which removes all your data from both your device and our cloud servers

5.3 Camera and Motion Permissions

You can revoke camera access through your device's Settings app
You can revoke motion access for AirPods through your device's Settings app
The app will still function with limited features if permissions are revoked

5.4 Notifications

You can disable posture check-in reminders through the app settings or your device's notification settings.

5.5 Advertising Tracking

App Tracking Transparency (ATT): When you first open the app, you will be prompted to allow or deny tracking. You can change this decision at any time.
Device Settings: Go to Settings → Privacy & Security → Tracking to manage which apps can track your activity
Limit Ad Tracking: Go to Settings → Privacy & Security → Apple Advertising to limit personalized ads
If you deny tracking, your device identifier will not be shared with advertising partners, but you may still see ads (they just won't be personalized)

6. Data Retention

Local data: Retained on your device until you delete the app or clear app data
Cloud data: Retained while your account is active
Account deletion: All cloud data is deleted when you delete your account
Posture images: Not retained - processed in memory and immediately discarded
Analytics data: Retained according to Firebase's data retention policies

7. Children's Privacy

Slouch AI is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us so we can delete that information.

8. International Data Transfers

Your data may be transferred to and processed in the United States where our servers and third-party service providers are located. By using Slouch AI, you consent to this transfer. We use services that comply with applicable data protection requirements for international transfers.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by:

Posting the updated policy on this page
Updating the "Last updated" date
Providing notice within the app for material changes

10. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us at:

Email: support@slouchai.com

False Summit Solutions LLC
Developer of Slouch AI