Overview

AutoGhost ("we", "us", "our") is committed to protecting your privacy. This policy explains what data we collect, how we use it, and your rights.

What We Collect

Motion sensor data: We use your device's Activity Recognition (Android) or Core Motion (iOS) to detect when you are in a vehicle. This data is processed entirely on-device and is never transmitted, stored server-side, or shared with anyone. We never know WHERE you are — only that your device is in motion consistent with being in a vehicle.
App usage data (Android only): When driving is detected, we check if you open apps from your selected block list. This data stays on your device and is never transmitted.
Drive records: Your drive history (timestamps, duration, streaks, badges) is stored locally on your device using encrypted on-device storage.

Name and email address: Collected during registration for customer support purposes. Stored securely in our database (hosted on Supabase with encryption in transit and at rest).
Device identifier: A randomly generated ID (not your device's hardware ID) used to link your support record.
Subscription data: Processed by RevenueCat, our subscription management provider, to manage your subscription. RevenueCat assigns an anonymous subscriber ID — no personal information is shared with RevenueCat beyond what is required for purchase processing.

GPS or location data: AutoGhost never accesses your location. We use motion sensors only.
Contacts, photos, or files: We never access any of your personal files or contacts.
Browsing history: We do not monitor your browsing activity.
Advertising identifiers: We do not collect IDFA, GAID, or any advertising identifiers.

Name and email: To identify your account if you contact customer support, and to cross-reference subscription issues with RevenueCat.
Motion data: To detect driving and activate app blocking. Processed on-device only. Per Apple's guidelines, motion and fitness data is used solely for the direct benefit of the user and is never used for marketing, advertising, or data mining.
App usage data: To count distraction attempts during drives (shown to you on drive completion). Processed on-device only.

RevenueCat: Processes subscription purchases. RevenueCat receives anonymised transaction data from the App Store / Google Play. See RevenueCat's Privacy Policy.
Supabase: Hosts our database. Your name, email, and device ID are stored securely. See Supabase's Privacy Policy.

We do not use any analytics, advertising, or data broker services.

On-device data: Drive records older than 90 days are automatically aggregated into monthly summaries. Individual records are deleted.
Server-side data: Your name and email are retained until you request deletion.

Access: You can view all your data within the app (Settings > Profile, drive history, achievements).
Deletion: You can delete all your data at any time via Settings > Delete My Data. This removes all local data from your device AND deletes your server-side record.
Portability: All your data is visible within the app.

AutoGhost is designed for drivers aged 17 and older. We do not knowingly collect data from children under 17.

We may update this policy from time to time. We will notify you of material changes via the app.

For privacy questions or data requests, contact us at: team@autoghost.org