Privacy Policy

Last updated: March 28, 2026

Gratimo ("we," "our," or "us") operates the Gratimo mobile application. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our app.

Information We Collect

Information You Provide

  • Phone number — used for account creation and authentication via SMS verification.
  • Display name — the name you choose during onboarding, shown to connections.
  • Gratitude notes — the text you write when sending grats. Shared only with intended recipients.
  • Journal entries — your private reflections, stored locally on your device.

Information Collected Automatically

  • Device information — device type, operating system, and app version for crash reporting and compatibility.
  • Usage analytics — anonymized interaction data (e.g., features used, session duration) to improve the app experience.
  • Push notification tokens — to deliver notifications about received grats and connection activity.

Information Accessed with Permission

  • Camera — optionally used for the presence feature during the grat flow. Camera data is processed on-device and never uploaded to our servers.
  • Contacts — optionally used to find friends who already use Gratimo. Contact data is processed securely and never shared with third parties.

How We Use Your Information

  • To create and manage your account.
  • To deliver grats between you and your connections.
  • To send push notifications about activity relevant to you.
  • To improve app performance and fix issues via crash reporting.
  • To understand usage patterns and improve the app experience.
  • To process in-app purchases and subscriptions.

Data Storage and Security

Your data is stored securely using Supabase, which provides encryption at rest and in transit. Journal entries and check-ins are stored locally on your device using encrypted storage. We implement industry-standard security measures to protect your personal information.

Data Sharing

We do not sell your personal information. We may share data with:

  • Service providers — third-party services that help us operate the app (e.g., Supabase for backend, RevenueCat for subscriptions, Sentry for crash reporting, PostHog for analytics).
  • Other users — only information you explicitly choose to share, such as grat messages sent to connections.
  • Legal requirements — if required by law, regulation, or legal process.

Your Rights

You have the right to:

  • Access the personal data we hold about you.
  • Request correction of inaccurate data.
  • Request deletion of your account and associated data.
  • Opt out of push notifications at any time via device settings.
  • Revoke camera and contacts permissions at any time via device settings.

Children's Privacy

Gratimo is not intended for children under 13. We do not knowingly collect personal information from children under 13. If we learn that we have collected data from a child under 13, we will delete it promptly.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last updated" date.

Contact Us

If you have questions about this Privacy Policy or your data, please contact us at privacy@gratimo.app.