Privacy
Plain English. The same words you'll find inside the app and on the Play Store listing.
Last updated: see the git history at the source repo for the canonical revision date.
What's stored on your phone
- Your gratitude entries and intentions.
- Your anchor statement, protected value, and prompt preferences.
- Which apps you've gated and how the gate is configured.
- Each gate attempt: which app, when, completed or skipped.
- Weekly recaps and unlocked achievements.
Stored locally in an encrypted Room database on your device. Not synced anywhere unless you explicitly enable Cloud AI.
What we never collect
- Your contacts, photos, files, location, or device IDs.
- Which apps you open. The accessibility service only checks against the apps you've gated, and only on your device.
- Your name, email, or any account info. There is no account.
Cloud AI (off by default)
If you turn on Cloud AI in Settings, your gratitude entry text and the source app name are sent to the Gratitude Gate proxy to generate a personalized reflection. The proxy does not store entries.
Off by default. Private mode disables Cloud AI even if it was previously on.
Analytics
We log event names and short categorical labels (e.g. "gate_completed", "friction=normal"). Never your entry text. Never your anchor statement. Never your contact list or other personal data.
Events route through PostHog (privacy-friendly product analytics) when the Analytics toggle is on. The PostHog SDK does not capture screen views, deep links, or auto-collect device identifiers beyond what we explicitly send.
Turn analytics off any time in Settings. Private mode disables analytics regardless of the toggle.
Crisis routing
If your entry trips a keyword-based crisis classifier, we don't unlock any app. We save your entry locally with a flag and show crisis resources (988, Crisis Text Line, findahelpline.com). Nothing about the flag leaves your device.
Billing
Premium tiers are billed through Google Play. The app never receives or stores your payment information. We see only the entitlement status that Play returns ("active subscription", "lifetime owned", "none") and we store that on your device.
Your controls
- Export every entry as plain text from Settings.
- Delete every entry, attempt, and achievement from Settings.
- Turn off Cloud AI, notifications, or analytics at any time.
- Uninstalling the app removes everything stored on your phone.
Contact
Questions about this policy or about data we hold for you? Email hello@gratitudegate.com or visit our Support page.
Gratitude Gate is published independently. This document describes the app's current behavior. If a future version starts collecting anything new, this page changes first.