Privacy Policy for Until

Until is designed with privacy as a core principle. All reminder data you create in the App - including text, dates, times, locations, and conditions - is stored locally on your device in a SQLite database. We do not sync or store your reminders on external servers.

Sensitive data such as subscription entitlements and location coordinates for saved places are stored in the iOS Keychain, which provides hardware-level encryption.

To improve the App and fix issues, we use the following third-party services:

PostHog (Analytics)

We use PostHog to collect anonymous usage analytics. This helps us understand which features are used, identify problems, and improve the experience. Data collected includes:

• Anonymous user identifier (randomly generated, not tied to your Apple ID or personal identity)
• App events (e.g., reminder created, permission granted, feature used)
• Device type, operating system version, and app version
• Country-level location derived from IP address (no precise location)

PostHog does not receive your reminder content, location coordinates, or any personal data. You can learn more at posthog.com/privacy.

Sentry (Crash Reporting)

We use Sentry to detect and fix crashes and errors. When an error occurs, the following information may be sent to Sentry:

• Error name, message, and stack trace
• Device type, operating system version, and app version
• Session replay data (a visual recording of app screens at the time of the crash, with no personal text content captured)

Sentry does not receive your reminder content or personal data. You can learn more at sentry.io/privacy.

What We Do NOT Collect

• Your reminder titles, descriptions, or notes
• Your precise location or saved places
• Your voice recordings or transcriptions
• Your Apple ID or personal identity
• Your contacts, photos, or other personal data

The App requests the following device permissions, each of which serves a specific function within the App. You may grant or deny any of these permissions through your device settings at any time.

Notifications

The App uses local notifications to deliver reminders at the times and conditions you specify. These notifications are generated entirely on your device. No push notification server or external service is involved.

Location Services

The App uses Location Services to enable location-based (geofence) reminders. When you create a reminder tied to a specific location, the App monitors your proximity to that location so it can alert you at the right time. Location data is processed on-device and is never transmitted to any external service.

Microphone

The App requests microphone access to allow you to create reminders using your voice. Audio input is used solely for the purpose of converting your speech into text for reminder creation. Audio recordings are not stored, saved, or transmitted.

Speech Recognition

The App uses on-device speech recognition to convert your spoken words into text when creating voice reminders. This processing occurs locally on your device. No audio or transcription data is sent to external servers.

Screen Time (DeviceActivity)

The App uses the Screen Time API (DeviceActivity framework) to detect when specific apps you choose are opened on your device. This enables context-aware reminders that can be triggered by your app usage patterns. You explicitly select which apps to monitor. Screen Time data is processed on-device and is never collected, stored, or shared by us.

The App does not display advertisements and does not integrate with any advertising networks.

We do not sell, rent, or trade your personal data to third parties. The only data transmitted from the App is:

• Anonymous analytics events to PostHog
• Crash/error reports to Sentry

Both services process data in accordance with their own privacy policies and applicable data protection regulations.

All reminder data remains on your device for as long as you choose to keep it. You can delete individual reminders or all data within the App at any time.

Anonymous analytics data is retained by PostHog and Sentry according to their standard retention policies. Since this data is anonymous, it cannot be linked back to you.

Uninstalling the App will remove all locally stored data from your device.

Your reminder data is protected by your device's own security mechanisms, including device passcode, Face ID, Touch ID, and iOS data protection. Sensitive data (subscription entitlements, location coordinates) is stored in the iOS Keychain, which provides hardware-level encryption.

We recommend keeping your device software up to date and using a strong passcode to protect your data.

The App is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child under 13 is using the App in a way that raises concerns, please contact us at the address below.

We may update this Privacy Policy from time to time. Any changes will be reflected in a revised version of this document, and the "Effective Date" at the top will be updated accordingly. We encourage you to review this Privacy Policy periodically. Continued use of the App after any changes constitutes your acceptance of the updated policy.

You have full control over your data. You can:

• Delete any reminder or data within the App at any time
• Export your reminder data from Settings
• Revoke any permission (location, microphone, speech recognition, notifications, Screen Time) through your iOS device settings at any time
• Uninstall the App to remove all locally stored data from your device

If you have questions, concerns, or requests regarding this Privacy Policy or the App's privacy practices, please contact us at: