The short version: Your health data stays on your device. Unloc reads Apple HealthKit and Screen Time data locally to calculate your screen time credits. This data is never uploaded to our servers, never shared with third parties, and never used for advertising. The only optional data we collect is anonymized, aggregate analytics — and you can turn that off any time.
Unloc is operated by hello@getunloc.com. If you have any questions about this policy, contact us at hello@getunloc.com.
Unloc is a local-first application. The vast majority of data it uses never leaves your device.
Unloc uses PostHog for anonymized, aggregate analytics. This helps us understand which features are used, how onboarding flows perform, and where the app can be improved.
During onboarding, a small set of anonymous funnel events are collected (e.g. onboarding started, step viewed, onboarding completed) before you have had a chance to opt in or out. These events contain no personal identifiers, no HealthKit data, and no device-linkable IDs.
After onboarding, all analytics require your explicit opt-in via Settings → Share analytics. You can toggle this off at any time. When analytics are off, no events are sent.
We never send: your name, email, Apple ID, HealthKit values, specific app tokens, or any data that could identify you personally.
Pro subscriptions are managed entirely by Apple through the App Store. Unloc does not see or store your payment information. Subscription status is verified through Apple's StoreKit and RevenueCat (our subscription management provider). RevenueCat processes a hashed, non-reversible app user ID — not your Apple ID or personal details. See RevenueCat's privacy policy for their data practices.
Unloc does not currently require an account. If an optional account feature is added in future, it will use Sign in with Apple, which provides a private relay email address rather than your real email. We will never receive your actual Apple ID email without your explicit consent.
Unloc is not directed at children under 13. We do not knowingly collect personal information from children. If you believe a child has provided us personal information, contact us at hello@getunloc.com and we will delete it promptly.
Since Unloc stores nearly all data locally on your device, the simplest way to delete your data is to delete the app. This removes all local SwiftData stores, earn history, and settings.
For anonymized analytics data, contact us at hello@getunloc.com with your request. Because analytics events contain no personal identifiers, we cannot guarantee we can isolate records tied to a specific user, but we will make reasonable efforts to fulfill deletion requests.
Unloc relies on Apple's platform security model: HealthKit data is protected by iOS data protection, app tokens are stored in a sandboxed App Group container, and local databases are encrypted at rest. We do not operate servers that store your personal health data, which means there is no central database to breach.
The following third-party services may process limited, non-personal data in connection with Unloc:
We do not use advertising networks, data brokers, or social media tracking SDKs.
Unloc is available globally via the App Store. If you are located in the European Economic Area (EEA), United Kingdom, or other regions with data protection laws, you may have additional rights regarding your data (access, correction, deletion, portability, objection to processing). Contact us at hello@getunloc.com to exercise these rights. Where analytics are processed, the legal basis is your consent (opt-in).
We may update this policy as the app evolves. Material changes will be communicated via an in-app notice. The effective date at the top of this page will always reflect the latest revision. Continued use of the app after a change constitutes acceptance of the updated policy.
Questions, requests, or concerns: hello@getunloc.com