Privacy Policy
1. Data Controller
Vectorate LLC
2108 N St Ste N
Sacramento, CA 95816
USA
Email: support@digitalfasting.app
Vectorate LLC is based in the United States. Since the app does not transmit any personal data from your device, no data is transferred to the US or any other third country (see Section 12).
2. Summary
Digital Fasting stores all data exclusively on your device. No personal data is transmitted to us or any third party. We do not operate servers, use analytics tools, or employ tracking technologies.
3. What Data Does the App Process?
3.1 Data Stored Locally (on Your Device)
The app stores the following data exclusively on your iPhone:
| Category | Examples | Purpose |
|---|---|---|
| Fasting logs | Start time, end time, duration, goal | Recording and displaying your fasting sessions |
| Settings | Fasting goal, reminder time, color theme | Personalizing the app |
| Progress | Current streak, longest streak, shield data | Calculating streaks and milestones |
| Usage counters | Number of completed fasts, number of shared results | Internal statistics; never leaves your device |
This data is stored using Apple’s SwiftData framework and the app’s own UserDefaults. Both storage locations reside exclusively on your device and are not synced, not backed up to the cloud, and not transmitted to us.
Important: When switching devices, your data is only transferred if you use the iOS “Direct Transfer” feature (device-to-device) or restore from an iCloud or iTunes backup. Without a backup, all data is permanently lost when switching devices or uninstalling the app. The app does not currently offer its own export or sync feature.
3.2 Data We Do NOT Collect
- No device identifiers (no IDFA, no UUID)
- No location data
- No contacts, photos, or health data
- No usage analytics or behavioral profiles
- No advertising IDs
- No IP addresses
- No keyboard inputs
- No access to other apps or Screen Time data
4. Permissions
4.1 Notifications (Optional)
The app asks for your permission to send local notifications (morning reminder, weekly summary). These notifications are scheduled and delivered locally on your device. No push notifications are sent via a server. No device token is transmitted to us.
You can disable notifications at any time in iOS Settings.
4.2 Live Activity / Dynamic Island
The app displays a real-time timer on the Lock Screen and in the Dynamic Island using Apple’s ActivityKit framework. This works entirely locally. No data is sent to a server.
5. In-App Purchase (Pro Version)
The app offers a one-time in-app purchase via Apple’s StoreKit. The purchase is processed entirely by Apple:
- We receive no payment details (no credit card number, no bank information).
- We receive no Apple ID or personal account information.
- The purchase receipt is verified cryptographically on the device — without our own server.
- Apple processes the transaction in accordance with the Apple Privacy Policy.
Your Pro status is automatically restored via your Apple account when switching devices (use “Restore Purchases” in Settings).
6. Sharing Feature
When you share your fasting result, the app creates an image locally on your device and opens the iOS share sheet. The app has no control over which app you choose to share with and receives no information about whether or where you sent the image.
7. Links to External Websites
The app contains links to:
digitalfasting.app/privacy(this privacy policy)digitalfasting.app/terms(terms of use)
These are opened in an in-app browser (SFSafariViewController). The in-app browser is isolated from the app — we cannot see any browsing data.
The website digitalfasting.app may be subject to separate privacy notices from the web hosting provider.
8. Apple Crash Reports
The app itself does not include any crash reporting services. However, Apple may collect anonymized crash reports as part of App Store operations and make them available to the developer via App Store Connect. These reports contain technical information about the crash (e.g., device type, iOS version, stack trace) but no personal data. You can control the sharing of analytics data with developers in iOS Settings under “Privacy & Security > Analytics & Improvements.” This processing is carried out by Apple in accordance with the Apple Privacy Policy.
9. Children
The app is not directed at children under 16 and does not knowingly collect data from children. Since the app does not collect any personal data, there is no specific risk to minors.
10. Data Security
The SwiftData database is protected with Apple’s file protection level completeUntilFirstUserAuthentication. This means:
- Data is encrypted while the device is locked (before the first unlock after a restart).
- Only the app itself has access to the stored data.
- Uninstalling the app permanently deletes all data.
11. Data Sharing with Third Parties
No data is shared — neither with Vectorate LLC nor with any third party. The app contains:
- No analytics SDKs (no Firebase, no Google Analytics, no Amplitude)
- No advertising SDKs
- No crash reporting services (no Crashlytics, no Sentry)
- No social media SDKs
- No embedded trackers
- No proprietary servers or API endpoints
12. Transfer to Third Countries
Although Vectorate LLC is based in the United States, no personal data is transferred to the US or any other third country. All data remains on your device. Vectorate LLC has no access at any time to your data stored in the app.
Purchase processing via Apple’s StoreKit is subject to Apple’s own privacy policy; Apple may use servers outside the EEA for this purpose. Apple crash reports (Section 8) are also subject to Apple’s privacy policy.
13. Legal Basis (Art. 6 GDPR)
The GDPR applies because the app is specifically offered to users in the European Economic Area (Art. 3(2) GDPR).
| Processing | Legal Basis |
|---|---|
| Local data storage | Art. 6(1)(b) GDPR (contract performance — necessary for app functionality) |
| Notifications | Art. 6(1)(a) GDPR (consent — you are actively asked) |
| In-app purchase | Art. 6(1)(b) GDPR (contract performance — purchase contract via Apple) |
14. Your Rights (Art. 15–22 GDPR)
You have the right to:
- Access (Art. 15): What data is processed. Answer: All data is stored locally on your device. You can view it in the app.
- Rectification (Art. 16): Via the app’s settings.
- Erasure (Art. 17): Via “Delete All Fasting Data” in settings or by uninstalling the app.
- Restriction of processing (Art. 18): By disabling notifications or uninstalling.
- Data portability (Art. 20): Not applicable, as no data is transmitted to us. For device transfers, see Section 3.1.
- Objection (Art. 21): Not applicable, as no data is transmitted to us.
- Withdrawal of consent (Art. 7(3)): Notifications can be revoked at any time in iOS Settings.
15. Right to Complain
You have the right to lodge a complaint with a data protection supervisory authority (Art. 77 GDPR). The relevant authority depends on your place of residence. A list of German supervisory authorities can be found at bfdi.bund.de.
16. Retention and Deletion
All data is stored locally on your device. You can delete it at any time:
- Fasting data: Via “Delete All Fasting Data” in the app settings.
- All data: By uninstalling the app. This permanently removes all stored data.
There is no server-side retention, as no data is transmitted to us.
17. Changes to This Privacy Policy
Changes will be published at digitalfasting.app/privacy. Since we do not have your contact details, we cannot notify you directly of changes. In the event of material changes, the date at the top of this page will be updated.
18. Contact
For questions about privacy:
Vectorate LLC
Email: support@digitalfasting.app
This privacy policy describes the actual technical state of the app. The app contains no network calls, no analytics tools, and no data transmission to third parties. All data processing takes place exclusively on your device.