Privacy Policy – BondLock

BondLock is designed with privacy first. All your data is stored locally on your device. We do not operate servers, collect personal information, or sell any data.

1. Introduction

BondLock ("we", "us", "our") is a mobile application developed to help families spend quality time together. This Privacy Policy explains how information is handled when you use the BondLock app ("App") on iOS or Android.

By using BondLock, you agree to the practices described in this Policy. If you do not agree, please discontinue use of the App.

2. Information We Collect

2.1 Data Stored Locally on Your Device

BondLock stores all of the following exclusively on your device using AsyncStorage (local device storage). This data never leaves your device and is not transmitted to us or any third party:

Family member names and relationship types you enter
Daily time goals and progress records
Streak counts and achievement badges
Photo memories you choose to add (stored locally)
QR pairing codes and device linking status
Mood check-ins and scheduled family time entries
App settings and theme preferences
Therapist/coach session notes (if used)

2.2 Camera and Photo Library

The App requests access to your device's camera and photo library solely for:

Camera: Scanning QR codes to pair family devices and capturing photo memories
Photo Library: Saving and accessing family photo memories within the App

Photos are stored locally on your device. We do not upload or transmit your photos to any server.

2.3 In-App Purchase Information (RevenueCat)

BondLock uses RevenueCat, a third-party subscription management service, to handle premium subscriptions. When you make a purchase:

Payment processing is handled entirely by Apple (App Store) or Google (Play Store)
RevenueCat receives anonymized transaction identifiers to validate your subscription
RevenueCat does not receive your name, email, or payment details
RevenueCat's Privacy Policy: revenuecat.com/privacy

2.4 Information We Do NOT Collect

We do not collect your name, email address, or phone number
We do not collect location data
We do not use analytics or tracking SDKs
We do not use advertising networks
We do not have access to any content stored in the App

3. How We Use Information

Since all data is stored locally on your device, we do not process or use your personal data. The only external data flow is through RevenueCat for subscription validation as described above.

4. Data Sharing and Third Parties

We do not sell, trade, rent, or share your personal information with third parties, except as follows:

Apple App Store / Google Play: Handles all payment processing for subscriptions. Subject to their respective privacy policies.
RevenueCat: Receives anonymized subscription transaction data only. See Section 2.3.
Legal requirements: We may disclose information if required by law, court order, or government authority.

5. Data Retention and Deletion

All App data is stored on your device and is controlled entirely by you.

To delete all App data: Uninstall BondLock from your device. This permanently removes all locally stored data.
To delete subscription data: Manage or cancel your subscription through your Apple ID or Google Play account settings.

6. Children's Privacy

BondLock is designed for use by adults and families. The App is not directed to children under the age of 13 (or 16 in the European Union). We do not knowingly collect personal information from children under these ages.

Because all data is stored locally on the user's device and we collect no personal information, BondLock does not require parental consent mechanisms. Parents and guardians are encouraged to supervise their children's use of the App.

7. Security

Since BondLock does not transmit personal data to external servers, your data is as secure as your device itself. We recommend using your device's built-in security features (passcode, Face ID, Touch ID) to protect your data.

8. International Users

BondLock is available globally. As we do not collect or store personal data on our servers, there are no international data transfers to concern yourself with beyond RevenueCat's data practices (see their privacy policy for details).

For EU/EEA users (GDPR): Since we do not process personal data, GDPR does not impose data processing obligations on us. RevenueCat acts as a data processor for subscription transactions.

For California residents (CCPA): We do not sell personal information. We do not collect personal information as defined by the CCPA.

9. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date at the top of this page. We encourage you to review this Policy periodically. Continued use of the App after changes constitutes your acceptance of the updated Policy.

10. Contact Us

If you have any questions or concerns about this Privacy Policy, please contact us:

Email: privacy@bondlock.app
Website: bondlock.app/contact