Privacy Policy

1. Information We Do NOT Collect

Unlike most apps, Alori is designed to collect as little information as possible. We do NOT collect:

• Health data: Your period dates, symptoms, notes, cycle information, and any other health-related data you enter stays on your device. It is never transmitted to our servers.
• Personal information: We don't require your name, email address, phone number, or any other identifying information.
• Location data: We never access or track your location.
• Device identifiers: We don't collect IDFA, IDFV, or other device identifiers for tracking purposes.
• Usage analytics: We don't track which features you use, how often you open the app, or your behavior within the app.
• Contacts: We never access your contacts or address book.

2. Data Storage

On-Device Storage

All your health data is stored locally on your iPhone using Apple's SwiftData framework. This means:

• Your data exists only on your device
• If you uninstall the app, your data is deleted
• We have no servers storing your health information
• We physically cannot access your data because we don't have it

Encryption

Sensitive information like notes and custom tags are encrypted using AES-256-GCM encryption via Apple's CryptoKit framework. This is the same encryption standard used by banks and governments. The encryption key is stored in the iOS Keychain, protected by your device passcode, Face ID, or Touch ID.

iCloud Backup

If you have iCloud Backup enabled on your device, your Alori data may be included in your encrypted iCloud backup. This backup is encrypted by Apple and is not accessible to us. You can disable iCloud Backup for Alori specifically in your iPhone Settings if you prefer.

3. Apple Health (HealthKit) Integration

Alori can optionally sync with Apple Health if you choose to enable this feature. Here's how it works:

• Permission-based: You must explicitly grant permission for each type of data (menstrual flow, BBT, cervical mucus, etc.)
• Granular control: You can choose to read, write, or both for each data type
• Two-way sync: Data flows between Alori and Apple Health only when you allow it
• Apple's privacy: Data shared with Apple Health is protected by Apple's privacy policies and never shared with us

The data types we may request access to include: menstrual flow, basal body temperature, cervical mucus quality, sexual activity, sleep analysis, weight, and step count. You control which of these, if any, are enabled.

4. App Store & Subscriptions

When you subscribe to Alori Pro, the transaction is handled entirely by Apple through the App Store. We receive:

• A transaction ID (a random identifier)
• Your subscription status (active, expired, etc.)
• The product purchased (monthly or yearly)

We do NOT receive your name, email, payment method, or any other personal information. Apple handles all billing and we have no access to your Apple ID or payment details.

5. Partner Sharing & Family Mode

If you choose to use partner sharing or family mode:

• Partner sharing: You control exactly what information is shared. Sharing is done locally or via methods you choose (like sharing a summary). We don't facilitate or store shared data.
• Family mode: Multiple profiles can exist on the same device. Each profile's data is stored locally on that device only.

6. Data Export & Sharing

When you export or share your data (PDF, CSV, iCal), the process happens entirely on your device. The exported file is generated locally and you control where it goes—whether that's saving to Files, sending via email, or sharing with your healthcare provider. We never see or store exported data.

Privacy presets (Minimal, Default, Maximum) let you control how much detail is included in exports.

7. Community Features

If you use community features (anonymous posting, discussions):

• Posts are anonymous—no username or profile is attached
• We do not link posts to any device identifier or personal information
• Content you post is visible to other users but not attributable to you
• We may moderate content to remove spam or harmful material

8. Data Deletion

You can delete all your data at any time:

• In-app deletion: Use the one-tap delete option in Settings to permanently erase all data from the app
• Uninstalling: Removing the app from your device deletes all associated data
• No backups on our end: Because we don't store your data, there's nothing to delete on our servers

Deletion is immediate and irreversible. We cannot recover deleted data because we never had it.

9. Children's Privacy

Alori is designed for users who menstruate, which may include teenagers. Because we don't collect personal information or require accounts, there is no age-gated data collection. Parents/guardians can use Family Mode to manage their child's data on a shared device.

10. Third-Party Services

Alori does not integrate with third-party analytics, advertising networks, or data brokers. The only third-party services involved are:

• Apple App Store: For app distribution and subscription management
• Apple HealthKit: Optional integration you control

We do not sell, rent, or share your data with any third parties because we don't have your data to share.

11. Security Measures

We've implemented multiple layers of security:

• App Lock: PIN, Face ID, or Touch ID protection with lockout after failed attempts
• Encryption: AES-256-GCM for sensitive data
• Keychain: Secure storage for encryption keys and PIN hash
• Auto-lock: Configurable timeout to automatically lock the app
• No network transmission: Health data never leaves your device

12. Changes to This Policy

If we make changes to this privacy policy, we will update the "Last updated" date at the top. For significant changes, we may notify you through the app. We encourage you to review this policy periodically.

13. Contact Us

If you have questions about this privacy policy or our privacy practices, please contact us:

• Email: privacy@alori.app
• Support: alori.app/support