Privacy Policy

Last updated: March 2026

Vyomio ("we", "us", "our") operates mobile applications and web services. This Privacy Policy explains how we collect, use, and protect your information when you use our products.

1. Information We Collect

Account information: When you create an account, we collect your email address and display name. If you sign in with Google or Apple, we receive your name and email from the provider.

App data: Data you create within our apps (habits, completions, notes, settings) is stored locally on your device. If you enable cloud sync, this data is stored on our servers (Supabase) to sync across your devices.

Usage analytics: We may collect anonymous, aggregated usage data (e.g., feature usage counts, crash reports) to improve our products. This data cannot identify you personally.

Payment information: Payments are processed by Apple (App Store), Google (Play Store), or Stripe (web). We do not store your credit card details. We receive subscription status and transaction identifiers from these providers via RevenueCat.

2. How We Use Your Information

• To provide and maintain our services
• To sync your data across devices (when you enable cloud sync)
• To send transactional emails (account confirmation, password reset)
• To send product updates and tips (you can unsubscribe anytime)
• To improve our products based on aggregated, anonymous usage patterns

3. Data Storage & Security

Your data is stored on servers provided by Supabase (hosted on AWS) in regions compliant with applicable data protection laws. We use encryption in transit (TLS) and at rest. Access to your data is protected by Row Level Security — only you can access your data through authenticated requests.

4. Third-Party Services

We use the following third-party services:

• Supabase — Authentication and cloud database
• RevenueCat — Subscription management
• Stripe — Web payment processing
• Firebase Cloud Messaging — Push notifications
• Resend — Transactional emails

Each service has its own privacy policy. We only share the minimum data necessary for each service to function.

5. Your Rights

You have the right to:

• Access your data — all your data is visible within the app
• Export your data — use the CSV/JSON export feature in settings
• Delete your account and all associated data — available in app settings
• Opt out of marketing emails — one-click unsubscribe in every email

Account deletion has a 30-day grace period, after which all data is permanently removed.

6. Children's Privacy

Our services are not directed to children under 13. We do not knowingly collect personal information from children. If we learn that we have collected data from a child under 13, we will delete it promptly.

7. Data Retention

We retain your data for as long as your account is active. When you delete your account, your data is permanently deleted after a 30-day grace period. Anonymous, aggregated analytics data may be retained indefinitely.

8. International Data Transfers

Your data may be processed in countries other than your own, including Australia and the United States. We ensure appropriate safeguards are in place for any cross-border data transfers.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or in-app notification. Continued use of our services after changes constitutes acceptance of the updated policy.

10. Contact Us

If you have questions about this Privacy Policy or your data, contact us at:

Email: support@vyomio.com

Location: Sydney, Australia