← Back to Home

Privacy Policy

Last updated: March 24, 2026

1. Introduction

Welcome to pact0 ("we," "our," or "us"). The company is committed to protecting privacy and personal data. This Privacy Policy explains how information is collected, used, disclosed, and safeguarded when using the pact0 mobile application and website at pact0.app, collectively called the "Service."

By using the Service, you agree to the information collection and use practices outlined in this policy. Disagreement with the policy means you should not use the Service.

2. Information We Collect

2.1 Information You Provide

  • Account Information: Name, email address, and password collected during account creation. If you sign in via Apple or Google, we receive your name and avatar URL from the provider.
  • Habit Data: Created habits, tracking logs, completion status, streaks, skip reasons, and personal notes or journal entries.
  • Mood Data: Daily mood scores (on a 1–5 scale) and free-text journal entries voluntarily recorded in the app.
  • Onboarding Preferences: During setup, you may provide your personal identity type, primary goal, biggest blocker, and preferred coaching style. These are used to personalize AI-powered insights.
  • Profile Information: Optional details like display name or preferred name.
  • Notification Preferences: Whether push notifications are enabled and your preferred reminder time.
  • Support Communications: Correspondence and feedback provided to the support team.

2.2 Information Collected Automatically

  • Device Information: Device type, operating system, and platform (iOS, Android, or web).
  • Usage Data: App usage patterns, feature interactions, and session information.
  • Local Device Storage: We store habit data, mood entries, and preferences on your device using browser storage for offline functionality. This data is not encrypted at rest on the device and is cleared upon logout.
  • Log Data: IP address, browser type, access times, and referring URLs from website visits.

2.3 Information from Third Parties

We receive authentication information from sign-in providers you choose to use, such as Apple Sign-In or Google Sign-In. We only access the data you explicitly authorize (name, email, and avatar). We do not integrate with Apple Health, Google Fit, or any health data platforms.

3. How We Use Your Information

The collected information is used to:

  • Provide, maintain, and improve the Service
  • Track habits and generate streaks, momentum scores, resilience metrics, and AI-powered insights
  • Personalize experiences and provide smart coaching
  • Send opted-in notifications and reminders
  • Respond to support requests and communications
  • Analyze usage trends to improve app performance and user experience
  • Detect, prevent, and address technical issues and security threats
  • Comply with legal obligations

4. AI-Powered Features

pact0 uses artificial intelligence for smart coaching, resilience scoring, and habit insights. To generate personalized recommendations, the following data is sent to our AI processing services:

  • Your habit names, completion history, and skip patterns (last 7–14 days)
  • Your daily mood scores and journal entries
  • Your onboarding preferences (name, identity type, goal, blocker, coaching style)

This data is processed by third-party AI providers, specifically OpenAI and/or Anthropic, via secure server-side API calls. These providers may retain data in accordance with their own privacy policies:

AI-generated insights are cached on our servers to reduce repeated processing.

5. Data Sharing and Disclosure

Personal data is not sold. Information is shared only in these circumstances:

  • Service Providers: Trusted third-party vendors assisting with operations are contractually bound to protect data. The specific services we use are listed below.
  • Legal Requirements: When required by law, regulation, legal process, or governmental request.
  • Safety and Rights: To protect the rights, property, or safety of pact0, users, or the public.
  • Business Transfers: During mergers, acquisitions, or asset sales; data remains subject to this Privacy Policy.
  • With Your Consent: When explicit consent is given for a specific purpose.

Third-Party Services

We use the following services to operate pact0:

ServicePurposeData Shared
SupabaseCloud database, authentication, and server functionsAll account data, habits, mood entries, and profile information
RevenueCatSubscription and in-app purchase managementYour anonymous user ID, device platform, and purchase/subscription status
OpenAI / AnthropicAI-powered coaching insightsHabit data, mood data, and onboarding preferences (see Section 4)
Apple / GoogleAuthentication and payment processingOAuth identity data; payment details are handled directly by Apple/Google and never touch our servers

You can review the privacy policies of these providers:

6. Data Storage and Security

Data is stored securely using industry-standard encryption in transit (TLS/SSL) and at rest. Reputable cloud infrastructure providers and appropriate technical and organizational measures protect personal data against unauthorized access, alteration, disclosure, or destruction.

No electronic storage or transmission method is 100% secure. While absolute security cannot be guaranteed, the company commits to promptly addressing breaches per applicable laws.

7. Data Retention

Personal data is retained as long as your account is active or as needed to provide the Service. The app does not currently offer a self-service account deletion feature. If you wish to have your account and associated data deleted, please contact us at privacy@pact0.app and we will process your request within 30 days.

Third-Party Retention: RevenueCat retains subscription and purchase history per their own retention policies. AI providers (OpenAI, Anthropic) may retain processed data per their respective policies. We cannot guarantee removal of data already processed by third-party services.

8. Your Rights

Depending on jurisdiction, you may have these rights:

  • Access: Request a copy of personal data held about you.
  • Correction: Request correction of inaccurate or incomplete data.
  • Deletion: Request deletion of your account and personal data by contacting us (see Section 7).
  • Portability: Request data in structured, machine-readable format.
  • Objection: Object to or restrict certain data processing.
  • Withdraw Consent: Withdraw consent where processing is consent-based.

Contact privacy@pact0.app to exercise these rights. Responses will be provided within 30 days.

9. Age Requirement

The Service is intended for users aged 18 and older. By creating an account or using the Service, you confirm that you are at least 18 years of age. We do not knowingly collect personal data from anyone under 18. If we become aware that a user is under 18, we will promptly terminate their account and delete all associated personal data.

10. Third-Party Links and Services

The Service may contain links to third-party websites or services. The company is not responsible for their privacy practices. Review their privacy policies before providing personal data.

11. International Data Transfers

Information may be transferred to and processed in countries other than your country of residence, which may have different data protection laws. Appropriate safeguards, such as standard contractual clauses, are implemented to protect data during transfers.

12. Changes to This Policy

The Privacy Policy may be updated periodically. Material changes are notified by posting the updated policy and updating the "Last updated" date. Continued Service use after posting changes constitutes acceptance of the revised policy.

13. Contact Us

For questions, concerns, or requests regarding this Privacy Policy or data practices:

pact0

Email: privacy@pact0.app

Website: pact0.app