Privacy · Policy

Privacy policy.

Last revised: 2026-06-15.

TL;DR

If you only read one section, read this one.

What we collect. Your email (only for sign-in and as your account identifier), your onboarding self-assessment answers, your practice history (which sessions you start or complete, and when), and your daily check-in state — practiced, rested, or skipped, with no free-text content stored.

Analytics, ads, and crash reporting. We use Google Analytics and Firebase Analytics to understand how the app is used. As we grow we may also use Facebook, Instagram, and the Google Marketing Platform for advertising and measurement. We never share the free-text content of your journals or check-in notes with any third party — not analytics, not ads, not crash reports. Sentry is our only crash reporter; every report it sends runs through a two-layer scrubber that strips email-shaped substrings, your signed-in email address, and any data field labeled email, note, journal, journalText, content, or body. We don't sell your personal data.

Delete or export your data. Tap Settings → Account actions in the app. We record your request on your device and email you within 30 days when the backend removal or export is complete.

Where your data lives. US region, encrypted at rest and in transit, on Neon Postgres with Firebase Auth.

What This App Is

Breathe With Me is a contemplative-practice and breathwork companion app designed to help you develop a consistent breathing practice. We're in iOS beta as of late May 2026. This privacy policy describes how we handle your data.

What Data We Collect

When you use Breathe With Me, we collect:

  • Your email address. We use it to send you a one-time sign-in link and as your account identifier. We don't sell your email. See Analytics and Advertising and Measurement below for the limited ways account or usage data may be shared with service providers.
  • Self-assessment answers. During onboarding, you tell us your experience level and what you're hoping to work with. We use these answers to personalize session suggestions for you.
  • Practice history. We track which sessions you start and complete, when you do them, and how long you stay. This helps us compute your streak and recommend your next practice.
  • Check-ins. Each day you can mark whether you practiced, rested, or skipped. We store that day-state (no free-text content) so the app can compute your streak and draw your practice calendar.
  • Usage and device data (analytics). Through Google Analytics and Firebase Analytics we collect app-usage events (screens viewed, features used, session timing, and which practice categories you engage with), technical context (app version, OS version, device class), and analytics/advertising identifiers. We never send the free-text content of your journals or check-in notes.

What We Do NOT Collect

We don't collect your location, contacts, photos, or ask for microphone or camera access. We don't store the free-text content of your journals or check-in notes on our servers, and we never share that content with any third party — not analytics, not ads, not crash reports. We don't sell your personal data.

Analytics

We use Google Analytics and Firebase Analytics to understand how people use Breathe With Me — which screens and features get used, how long sessions run, and where people drop off — so we can improve the app. These tools collect usage events along with technical context (app version, OS version, device class) and analytics/advertising identifiers. The usage events can include category-level signals like which kind of practice you opened (for example, breathwork versus meditation), but we never send the free-text content of your journals or check-in notes.

Advertising and Measurement

As we grow, we may use advertising and measurement platforms — including Facebook and Instagram (Meta) and the Google Marketing Platform — to reach new people and to measure how well our marketing works. This can involve sharing limited data — such as app events (for example, that you opened or completed a session in a given practice category) or a hashed (non-reversible) identifier — with those platforms to build and measure ad audiences. We never share the free-text content of your journals or check-in notes with any advertising platform. We do not sell your personal data. If we ever introduce data sharing that requires your consent, we'll ask for it before turning it on.

Where Your Data Lives

Breathe With Me stores your data on Neon Postgres with Firebase Auth. Your data is stored in the US and encrypted at rest and in transit.

Your email address is held by the authentication provider (Firebase Auth). Email contents are never stored on our servers—the provider keeps only the email address itself for delivering sign-in links.

Magic-Link Sign-In Emails

You sign in by clicking a one-time link delivered to your email through the authentication provider's transactional email service. The link expires after a short window. Treat it as sensitive.

Crash and Error Reporting

We use Sentry to catch crashes and errors so we can fix them quickly. Every report passes through our own scrubbing layer on the way out, and a second scrubbing pass runs inside the Sentry client itself so that anything Sentry collects automatically (breadcrumbs, native crash reports, performance traces) gets the same treatment.

What we send: stack traces, the part of the app where the error happened, app version, OS version, an anonymous device class, and an opaque account identifier from the authentication provider (not your email address).

What we strip before sending: anything that looks like an email address, your current signed-in email address as a substring (kept in memory only — never transmitted), and any data field labeled email, note, journal, journalText, content, or body. If you don't see your category listed, assume we send only the technical fingerprint above.

Local Storage on Your Device

Your practice history and check-ins are cached locally on your phone using SQLite. They sync to our servers when you're online, so your data stays in sync across sessions.

Deleting Your Data

Tap Settings → Account actions → Delete account and confirm. We record your deletion request on the device and sign you out immediately. We'll permanently remove your account and practice history from our servers within 30 days, and email a confirmation once it's complete.

You can also tap Settings → Account actions → Request a copy of my data. We record the request the same way and we'll prepare and email you a copy of your practice history within 30 days.

Children

Breathe With Me is not intended for anyone under 13, and we don't knowingly collect data from children under 13.

Changes to This Policy

If this policy changes in a material way, we'll update the "Last revised" date at the top of this document. The next time you open the app after a major change, you may be asked to acknowledge the new version.

Questions

If you have privacy questions or concerns, reach out to hello@breathewithme.app.