Privacy Policy
Last updated: April 23, 2026
The short version: Hold On stores your journal entries only on your device. We don't run accounts, we don't upload your reflections anywhere, and we don't sell data. The only third-party services involved handle payments and anonymous crash reports — nothing about what you actually write.
1. Who we are
Hold On ("we", "us") is a mobile application published by Neralaiko. You can contact us at hello@getholdon.app.
2. What we collect
2.1 Stays on your device (never sent to us)
- Your journal entries, mood ratings, prompts you've seen.
- Which apps you've selected to gate.
- Your streak, paused count, and local settings.
- Biometric authentication state — handled entirely by iOS / Android; we never receive your biometric data.
This data lives in your device's local database and is deleted when you uninstall Hold On. We have no way to recover it for you.
2.2 Sent to third parties we use
- Apple App Store / Google Play — processes your one-time purchase. Their privacy practices apply.
- RevenueCat — verifies that your purchase is valid so we can unlock premium features. We send RevenueCat an anonymous user ID generated on your device. See RevenueCat's privacy policy.
- PostHog (optional analytics) — records anonymous, aggregate product events (e.g. "prompt shown", "paywall viewed") so we can improve the app. Never includes your journal text. You can opt out from Settings.
- Apple / Google crash reporting — if the app crashes, stack traces may be sent to the platform. No journal content is included.
2.3 What we do not collect
- Your name, email, phone number, or any account credentials.
- The contents of your journal entries.
- Your location.
- Your contacts, photos, or files.
- Data about other apps on your device, beyond the package / bundle IDs you explicitly choose to gate.
3. How we use the data
Only to make the app work: unlocking premium features you've paid for, fixing crashes, and understanding which features to improve. We do not profile you, target ads, or share data with advertisers.
4. Children
Hold On is not directed at children under 13. If you believe a child has used the app, contact us and we'll help delete any associated data.
5. Your rights
Because we don't hold your personal content on our servers, most data rights are exercised by you directly on the device:
- Access: everything we "have" is visible in the app.
- Delete: Settings → Reset all data, or uninstall.
- Opt out of analytics: Settings → Privacy → disable analytics.
For anything we do hold (purchase receipts via RevenueCat, crash reports), email us at hello@getholdon.app and we'll action your request within 30 days.
6. Data retention
On-device data: until you delete it or uninstall the app. Purchase records (via RevenueCat): retained for as long as required to honor your lifetime license. Crash reports: 90 days.
7. Security
Your journal is stored in SQLite with OS-level encryption at rest. You can additionally require Face ID / biometric unlock from Settings. No system is perfect, but keeping your content on your device is already the strongest guarantee we can offer.
8. Changes to this policy
We'll update the "last updated" date above when we change anything material. If the change affects what data we collect, we'll notify you in the app the next time you open it.
9. Contact
Questions, concerns, or data requests: hello@getholdon.app.