dev-zen Privacy Policy
Effective Date: September 6, 2026 Last Updated: March 22, 2026 App Version: 1.0
β οΈ Note: This is a draft privacy policy for planning purposes. It should be reviewed by a qualified privacy attorney before the app's public launch..
1. Introduction
Welcome to dev-zen ("we", "our", or "us"). We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, and protect your information when you use the dev-zen mobile application ("App").
dev-zen is designed with privacy-first principles: your personal health and wellness data is stored locally on your device and is never sold or shared with third parties for advertising purposes.
If you have questions about this policy, please contact us at privacy@devzen.app.
2. Data We Collect
2.1 Information You Provide Directly
When you set up your dev-zen profile, you may provide:
- Name (optional)
- Age (optional β used to personalise recommendations)
- Weight (optional β used for exercise personalisation)
- Job role (e.g., Frontend Developer, QA Engineer)
- Work setup (remote/hybrid/office)
- Personal health challenges (e.g., back pain, burnout, sleep issues)
- Wellness goals
2.2 Health & Wellness Data You Log
As you use the App, you may log:
- Mood ratings (1β5 scale and emotion tags)
- Energy and stress levels
- Water intake (glasses per day)
- Sleep data (bedtime, wake time, quality ratings)
- Exercise sessions (type, duration, completion)
- Focus session logs (Pomodoro timer usage)
- Habit completion records
- Journal entries (Thought journal / CBT reflection tool)
- Gratitude logs
2.3 Data Imported From Other Sources
With your explicit permission (iOS only):
- Apple Health β sleep data may be read from HealthKit if you grant permission. This data is stored locally on your device.
2.4 Anonymous Usage Analytics
We collect anonymous, non-identifiable analytics to improve the App:
- Feature usage events (e.g., "exercise completed", "mood logged")
- Crash reports and error logs
- App performance metrics (startup time, screen load time)
What we do NOT collect in analytics:
- Your name, email, or any identifying information
- The content of your journal entries
- Specific health values (only anonymous events like "sleep logged")
- Your location or IP address (PostHog is configured to discard IP addresses)
We use PostHog for analytics. PostHog processes anonymous event data. You can opt out of analytics entirely in Settings β Data & Privacy β Analytics: OFF.
2.5 Payment Information
If you subscribe to dev-zen Premium, payment is processed by Apple App Store (iOS) or Google Play Store (Android) and managed via RevenueCat. We do not receive or store your credit card or payment details. RevenueCat's privacy policy applies to subscription management data.
3. How We Use Your Data
Your data is used solely to provide and improve the dev-zen experience:
| Purpose | Data Used | Legal Basis |
|---|---|---|
| Personalised dashboard and recommendations | Profile, challenges, wellness logs | Consent |
| Burnout risk calculation | Mood, sleep, stress, activity data | Consent |
| Exercise recommendations | Health challenges, exercise history | Consent |
| Habit and streak tracking | Habit completions, dates | Consent |
| Progress reports and charts | All logged wellness data | Consent |
| App improvement | Anonymous analytics events only | Legitimate interests |
| Subscription management | Purchase receipt (handled by RevenueCat) | Contract |
We do not use your data for:
- Advertising or marketing targeting
- Sale to third parties
- Building marketing profiles
- Training AI models with your personal data
4. Where Your Data Is Stored
On Your Device (Primary Storage)
All personal health and wellness data is stored locally on your device using an encrypted local database (WatermelonDB). This data never leaves your device unless you explicitly use the backup feature.
Cloud Backup (Optional)
If you enable the backup feature:
- iOS users: Data is backed up to your personal iCloud account. This is your own Apple iCloud storage β we do not have access to it.
- Android users: Data is backed up to your personal Google Drive account. This uses your own Google OAuth scope β we do not have access to your Google Drive.
AI Features (Premium β Optional)
If you use AI-powered features (premium subscribers):
- Weekly AI Insights: We send anonymised aggregate statistics (e.g., "average mood: 3.2/5, average sleep: 6.4 hours") to Anthropic's Claude API to generate personalised insights. We never send your name, journal text, or identifying information.
- Journal Reflection (Reframe): If you use the AI-assisted journal reframe feature, the text you write in the "What did you think?" field is sent to Anthropic's Claude API for processing. This is disclosed at the point of use. The AI feature can be disabled in Settings β Wellness β AI Features: OFF.
Anthropic processes this data in accordance with their Privacy Policy and Usage Policy.
5. Data Sharing
We do not sell your personal data. Ever.
We share limited data only with the following service providers, solely to operate the App:
| Service Provider | Purpose | Data Shared |
|---|---|---|
| RevenueCat | Subscription management | Purchase receipts, subscription status |
| Sentry | Error monitoring | Anonymised crash reports (no PII) |
| PostHog | Analytics | Anonymous usage events (no PII) |
| Anthropic (Claude API) | AI insights (premium, optional) | Aggregate wellness statistics only |
| Apple / Google | App delivery and payments | Standard platform data |
6. Data Retention
- On-device data: Retained until you delete it (Settings β Data & Privacy β Delete Account)
- Cloud backups: Retained in your personal iCloud/Google Drive account. Managed by you.
- Analytics data: PostHog retains anonymous event data for up to 12 months. No personal identifiers.
- Crash reports: Sentry retains for 90 days.
- RevenueCat: Subscription data retained per RevenueCat's policy.
7. Your Rights
Depending on your location, you may have the following rights regarding your personal data:
All Users
- Access: Export all your data as JSON from Settings β Data & Privacy β Export Data
- Delete: Delete all your data from Settings β Data & Privacy β Delete Account
- Correct: Edit your profile and any wellness data directly in the App
- Portability: Export your data in machine-readable JSON format
European Union / UK Users (GDPR)
- Right to erasure: Delete all data at any time via Settings β Delete Account
- Right to object: Opt out of analytics via Settings β Data & Privacy β Analytics: OFF
- Withdraw consent: You can disable any data collection at any time
- Lodge complaint: You have the right to complain to your national data protection authority
California Users (CCPA/CPRA)
- We do not sell your personal information
- You have the right to know what personal information we collect
- You have the right to delete your personal information
- You will not be discriminated against for exercising your rights
To exercise any of these rights, contact us at: privacy@devzen.app
8. Apple HealthKit
If you grant permission for dev-zen to read data from Apple Health (HealthKit):
- We only read sleep data to display it in your dashboard
- HealthKit data is never shared with third parties
- HealthKit data is never used for advertising
- HealthKit data is stored only on your device
- You can revoke HealthKit access at any time in iPhone Settings β Privacy & Security β Health
9. Children's Privacy
dev-zen is not intended for children under the age of 13 (or 16 in the European Union). We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us at privacy@devzen.app and we will promptly delete it.
10. Third-Party Links
The Discover tab in dev-zen displays links to third-party articles and resources. When you tap a link, you will leave the App and be subject to that third party's privacy policy. We are not responsible for the privacy practices of external sites.
The App may display a card for BetterHelp, an online therapy platform. This is clearly labelled as sponsored/affiliate content. If you click through to BetterHelp, their separate privacy policy applies.
11. Security
We take reasonable measures to protect your information:
- All data is stored in an encrypted local database on your device
- All API communications use HTTPS/TLS 1.3 encryption
- API keys and secrets are never stored in the app binary
- iCloud and Google Drive backups are encrypted by Apple and Google respectively
No method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security, but we use industry-standard practices.
12. International Data Transfers
dev-zen's anonymous analytics (PostHog) may be processed on servers in the European Union. For premium AI features (Anthropic Claude API), data is processed in the United States. By using these features, you consent to this transfer. We take steps to ensure appropriate safeguards are in place as required by applicable law.
13. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of significant changes by:
- Displaying a notice in the App
- Updating the "Last Updated" date above
Your continued use of the App after the effective date of a new Privacy Policy constitutes your acceptance of the updated policy.
14. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or your personal data:
Email: privacy@devzen.app App: Settings β Support β Send Feedback
For EU/GDPR inquiries specifically, please include "GDPR Request" in your subject line.
Developer: Noor Mohamed dev-zen App India
This privacy policy was last reviewed: March 22, 2026 Effective upon app launch: September 6, 2026