← Back to Peila

Privacy Policy

Effective date: March 5, 2026

This Privacy Policy explains how Peila ("App", "Service"), operated by Jonas Persson ("we", "us", "our"), collects, uses, and protects your information. This policy applies to both the Peila mobile application and the Peila website (peila.se).

1. Information We Collect

Account information

• Email address (used for authentication via OTP, or provided by Google/Apple sign-in).
• Display name (optional).

Goal, habit, and planning data

• Goals you create (name, target hours, importance rating, color, category).
• Habits you create (name, target frequency, estimated duration, color).
• Habit check-ins (weekly completion counts).
• Day plans and logged hours.
• Weekly reset results generated by AI analysis of your goals and schedule.

Calendar data

• If you connect Apple Calendar or Google Calendar, we read your calendar events (titles, start/end times) to identify free time and schedule focus blocks. We do not store your calendar events on our servers beyond the duration of the request. Focus blocks created by Peila are written to your calendar with your permission.

Google Calendar tokens

• If you connect Google Calendar, we securely store OAuth access and refresh tokens on our server to maintain your calendar connection. These tokens are encrypted at rest and are deleted when you disconnect.

Device information

• Push notification tokens (Expo push token), stored to deliver notifications you have opted into.
• Timezone, used to schedule notifications and generate weekly resets at appropriate times.

Website data

• When you visit peila.se, we do not use cookies or tracking scripts. However, the website loads resources from third-party services:
  • Google Fonts — Font files are loaded from Google servers. Google may collect your IP address in accordance with their privacy policy.
  • cdnjs (Cloudflare) — JavaScript libraries are loaded from Cloudflare's CDN. Cloudflare may collect your IP address in accordance with their privacy policy.
• We do not use analytics on the website.

Analytics

• Anonymous usage events (e.g. "weekly_reset_completed", "goal_created") to understand how the App is used. These events do not contain personally identifiable information.

2. How We Use Your Information

• To provide and operate the App's features (goal tracking, weekly resets, calendar sync).
• To send notifications you have opted into (weekly reset reminders, daily check-ins, session reminders).
• To generate AI-powered weekly planning insights based on your goals and calendar.
• To improve the App based on aggregated, anonymous usage patterns.

3. Data Storage and Security

Your data is stored on Supabase (hosted on AWS in the EU). We use row-level security policies to ensure users can only access their own data. Authentication tokens are stored in secure device storage (Keychain on iOS, Keystore on Android).

Google Calendar tokens are stored server-side with row-level security and are only accessible by our server-side functions. They are never exposed to the client app.

4. Data Sharing

We do not sell your personal data. We share data only with:

• Supabase — Database and authentication infrastructure.
• OpenAI — Goal, habit, and calendar data is sent to generate weekly analysis and habit insights. No personally identifiable information (name, email) is included in these requests.
• Expo — Push notification delivery.
• Apple / Google — Calendar integration (only when you connect your calendar).
• Adapty — Subscription management (anonymized user ID only).
• Google Fonts — Font delivery for the website (IP address only).
• Cloudflare — CDN for the website (IP address only).

5. Your Rights

You have the right to:

• Access your data — visible in the App at all times.
• Delete your account and all associated data — available in Profile > Delete Account.
• Disconnect calendar integrations — available in Settings.
• Opt out of notifications — toggle individual notification types in Settings.

If you are in the EU, you have additional rights under the GDPR, including the right to data portability and the right to lodge a complaint with a supervisory authority.

6. Data Retention

• Your data is retained as long as your account is active.
• When you delete your account, all data is permanently removed within 30 days.
• Google Calendar tokens are deleted immediately when you disconnect.

7. Children's Privacy

Peila is not directed at children under 16. We do not knowingly collect data from children under 16.

8. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated through the App. Continued use after changes constitutes acceptance.

9. Contact

Questions about your privacy? Reach us at github.com/iamjonas/policys/issues.