Legal and policy
Privacy Policy
This page explains what data StillPulse handles, what stays on your device, and what can be processed when you use optional account and Premium features.
Last updated: 9 July 2026
Plain-language summary
StillPulse is designed to work locally on your device. Account and cloud features are optional. Health Connect access is read-only.
1. Who we are
StillPulse is the developer of the StillPulse Android application. For privacy questions, contact support@stillpulse.app.
2. Data you provide
- Email address if you choose to sign in with an email magic link.
- Optional check-in responses such as mood, tension, energy, intention, or context tags when you enter them before or after a session.
- Support messages when you contact us by email.
3. Data generated during app use
- Session records such as protocol, duration, session mode, audio preset, and timestamps.
- Session detail such as breathing phase timeline, signal coverage, and related session summary values.
- Reminder preferences stored on your device when you enable reminders.
4. Health Connect data
Premium sessions can request read-only access to heart-rate samples from Android Health Connect. This access is used to provide in-session biofeedback and session detail. StillPulse does not write health data back to Health Connect.
5. What stays on your device
Free usage is local-first. Local session history, reminder settings, and any local-only preferences stay on your device unless you later use account-based Premium features that upload eligible session data.
6. What can be uploaded to the cloud
If you sign in and use eligible Premium sync features, StillPulse can upload session records and related session detail needed for sync and account recovery across devices.
7. Service providers
StillPulse uses third-party providers only where needed to operate the current product:
- Supabase for authentication and cloud storage used by account-based features.
- RevenueCat for subscription and entitlement handling.
- Resend for transactional email delivery used with sign-in and account-related communication.
8. How we use the data
- To run breathing sessions and display session history.
- To authenticate users who choose to sign in.
- To verify Premium entitlement.
- To sync eligible session data for signed-in Premium users.
- To respond to support and privacy requests.
9. Data sharing
We do not sell personal data. We do not share Health Connect data with advertisers. Data is shared only with the providers needed to operate the services described above.
10. Retention
- Local data remains on your device until you remove it by clearing app storage, uninstalling the app, or deleting it inside the app where applicable.
- Cloud account and session data may remain until you request account deletion.
- Email correspondence may be retained as needed to answer or document support and privacy requests.
11. Your choices and rights
Depending on your location, you may have rights to access, correct, or delete personal data. The practical deletion steps are listed on the Data Deletion page.
12. Children's privacy
StillPulse is not directed to children under 13, and we do not knowingly collect personal data from children.
13. Security
Cloud data is transmitted over encrypted connections. Access to account-based cloud data is restricted through authentication and authorization controls.
14. Changes
We may update this policy as the product changes. The date at the top of this page shows the current version.