Privacy Policy
Last updated: April 7, 2026
1. Introduction
LockIn ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal data when you use the LockIn mobile application and web companion (collectively, the "Service"). "Personal Data" means any information that identifies or relates to a particular individual. By using the Service, you acknowledge the practices described in this Privacy Policy.
2. Information We Collect
The following table summarizes the categories of Personal Data we collect:
| Category | What We Collect |
|---|---|
| Account & Profile | Display name, email address, and profile picture provided through your authentication provider (Google or Apple Sign-In) |
| User-Generated Content | Goals, todos, study session recordings, feedback posts, comments, and shared videos |
| Usage Data | Session durations, goal progress, streak data, feature usage patterns, screen views, and app lifecycle events |
| Camera & Microphone | Time-lapse video recordings of study sessions; audio during normal-speed segments. Requires your explicit permission and can be revoked at any time through device settings. |
| Face Data (TrueDepth / ARKit) | Facial geometry for AR effects — processed entirely on-device, never stored or transmitted. See Section 3. |
| Location (approximate) | Approximate location (~1 km accuracy) for the World Globe feature. Optional, requires explicit consent, and can be removed anytime from profile settings. |
| Purchase Information | Subscription status via Apple's App Store. We do not have access to your payment method, card number, or billing details. |
| Device & Technical Data | Device type, operating system version, anonymous device identifiers, and IP address (collected automatically by our analytics and infrastructure providers) |
| Diagnostics | Anonymized crash logs and performance data to identify bugs and improve stability |
3. On-Device Processing
Certain features process data entirely on your device and do not transmit raw data to our servers. Raw camera frames and environment scans are never uploaded.
TrueDepth Camera & Face Data
LockIn uses Apple's TrueDepth camera system (via ARKit) to provide optional augmented-reality face effects during front-camera study session recordings. When this feature is enabled, the TrueDepth camera captures facial geometry data (vertex positions, texture coordinates, and triangle indices) to render AR overlays — such as a growing beard or skincare mask — that conform to the user's face in real time.
- Face data is used solely for rendering real-time AR face effects and for no other purpose.
- Face data is processed entirely on the user's device. It is never transmitted to our servers, cloud services, or any third party.
- Face data is not stored persistently on the device. It exists only in memory during an active AR session and is discarded when the session ends.
- Face data is not used for user identification, authentication, advertising, analytics, or data mining.
- LockIn does not sell, share, or disclose face data to any third party.
Posture Analysis
When posture tracking is enabled, the app uses Apple's Vision framework to detect body pose and head orientation from camera frames. This analysis runs entirely on-device. Only aggregated posture scores (not raw joint positions or facial landmarks) may be included in session summaries that you choose to share.
4. How We Use Your Information
- To provide, maintain, and improve the Service
- To enable accountability features, including partner connections and shared progress
- To display your name and content in community features such as the feedback board, study rooms, and leaderboards
- To send push notifications about your goals, streaks, and partner activity (you can disable notifications in your device settings)
- To analyze usage patterns and improve the Service through product analytics
- To enforce our content policies and community guidelines
- To detect and prevent fraud or abuse
- To respond to support requests
- To comply with legal obligations and protect rights and safety
5. Information Sharing
We do not sell your Personal Data. We do not share your Personal Data for cross-context behavioral advertising. We share information only in the following circumstances:
- Accountability Partners: When you connect with a partner, they can see your shared videos, goal progress, and streaks. Content you share with a partner is visible to them and can be viewed, downloaded, or screenshotted by them.
- Community Features: Feedback posts and comments are visible to all authenticated users. Your display name is shown alongside your contributions.
- Service Providers: We use third-party service providers to operate the Service. These providers process data only on our behalf and are contractually obligated to protect your data. See Section 6 for details.
- Legal Requirements: We may disclose information if required by law, regulation, or valid legal process, or when necessary to protect the safety of any person.
- Business Transfers: If we undergo a merger, acquisition, or asset sale, your Personal Data may be transferred. We will notify you before your data becomes subject to a different privacy policy.
6. Third-Party Service Providers
We use trusted third-party service providers to operate the Service. These providers process data only on our behalf and are contractually obligated to protect your data. We use providers in the following categories:
| Category | What They Do |
|---|---|
| Authentication Providers | Verify your identity when you sign in with Google or Apple. We receive only the credentials needed to authenticate you. |
| Cloud Infrastructure & Database | Host and store your account data, goals, sessions, and other content securely in the cloud. |
| Video Storage & Delivery | Store and deliver study session videos that you choose to share with partners or post to your story. |
| Subscription Management | Process and manage in-app subscriptions through Apple's App Store. We do not have access to your payment details. |
| Product Analytics | Analyze usage patterns and feature adoption to improve the Service. Only non-personally-identifiable properties are sent — no email, name, or phone number. |
We do not share your private videos, study session content, or personal goals with any analytics or marketing provider. For specific details about any provider, contact us at support@lockin-app.dev.
7. Data Storage and Security
Your data is stored securely on cloud servers using industry-standard encryption and security practices. Study session videos are stored locally on your device and optionally uploaded to secure cloud storage when shared with partners. We implement appropriate technical and organizational measures to protect your information against unauthorized access, alteration, or destruction.
You can help protect your data by keeping your account credentials confidential and promptly reporting any suspected unauthorized access to support@lockin-app.dev.
8. Data Retention
We retain your Personal Data only for as long as necessary to fulfill the purposes for which it was collected, provide the Service, comply with legal obligations, and enforce our agreements.
| Data Category | Retention Period |
|---|---|
| Account & Profile | Duration of account + 30 days after deletion |
| Goals, Todos & Sessions | Duration of account; permanently deleted with account |
| Shared Videos | Auto-deleted after 30 days |
| Story Videos | Auto-deleted after 25 hours |
| Local Videos | On-device only; remains until you delete it |
| Analytics & Diagnostics | Up to 1 year |
| Aggregated / Anonymized Data | Indefinitely (cannot be linked back to you) |
We may adjust these retention periods as needed and will update this policy accordingly.
9. Your Rights and Choices
Depending on where you live, you may have the following rights regarding your Personal Data:
| Your Right | How to Exercise It |
|---|---|
| Access / Know | View your data in the app's Settings. For a full copy, email support@lockin-app.dev. |
| Correction | Update your display name, username, and profile in Settings. For other corrections, contact support. |
| Deletion / Erasure | Delete your account and all associated data from Settings. This action is irreversible. |
| Data Portability | Request a portable copy of your data in JSON format by emailing support@lockin-app.dev. |
| Withdraw Consent | Revoke camera, microphone, location, and notification permissions at any time through your device settings, or contact support. |
| Restrict / Object | Contact support@lockin-app.dev to object to specific processing activities. |
| Opt-Out of Sale / Sharing | We do not sell or share your data for advertising. No action needed. |
| Non-Discrimination | We will not deny you services or charge different prices for exercising your privacy rights. |
| Block Users | Block other users to hide their content from your feed, from within the app. |
| Manage Videos | Delete locally stored videos and shared videos at any time from within the app. |
To exercise any right, email support@lockin-app.dev with "Privacy Request" in the subject line. We will respond within the timeframes required by applicable law.
10. California Privacy Rights (CCPA / CPRA)
If you are a California resident, the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA) provide you with specific rights regarding your Personal Data:
- Right to Know: You may request the categories and specific pieces of Personal Data we have collected, the sources of that data, and the purposes for collecting it.
- Right to Delete: You may request that we delete your Personal Data, subject to certain legal exceptions.
- Right to Correct: You may request that we correct inaccurate Personal Data.
- Right to Opt-Out of Sale / Sharing: We do not sell your Personal Data to third parties for monetary consideration. We do not share your Personal Data for cross-context behavioral advertising.
- Right to Limit Use of Sensitive Personal Information: You may limit the use of sensitive Personal Data (such as location and camera data) to what is necessary to provide the Service.
- Right to Non-Discrimination: We will not discriminate against you for exercising any of your privacy rights.
Categories collected in the past 12 months: Identifiers (name, email), internet or electronic network activity (usage data, analytics), geolocation data (approximate location), audio/visual information (study session recordings), and inferences drawn from the above.
Categories sold or shared: None. We do not sell or share Personal Data as defined under the CCPA/CPRA.
To exercise these rights, contact us at support@lockin-app.dev. We will respond to verifiable requests within 45 days as required by law.
11. International Users
Your information may be transferred to and processed in countries other than your own, including the United States, where our service providers operate. These countries may have different data protection laws than your jurisdiction. By using the Service, you acknowledge and consent to such transfers. We take reasonable steps to ensure your data is treated securely and in accordance with this Privacy Policy regardless of where it is processed.
12. Children's Privacy
The Service is not directed to children under 13. We do not knowingly collect Personal Data from children under 13. If you are a parent or guardian and believe your child has provided us with Personal Data, please contact us at support@lockin-app.dev so we can delete that information promptly.
13. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy within the app and on our website. Your continued use of the Service after changes constitutes acceptance of the updated policy. We encourage you to review this policy periodically.
14. Contact Us
If you have questions about this Privacy Policy, the ways in which we collect and use your Personal Data, or your choices and rights regarding such collection and use, please contact us at support@lockin-app.dev.