Privacy Policy
Your data, and especially your health data, is treated as private context, never social content. Here's exactly how we handle it.
Last updated: June 17, 2026
Template notice. This document is a starting template tailored to Bloomi. Please have it reviewed and finalized by qualified legal counsel before launch.
Overview
This Privacy Policy explains how Bloomi ("Bloomi", "we", "us") collects, uses, and protects your information when you use the Bloomi mobile app and related services (the "Service"). Bloomi is designed to be privacy-first: your health data is treated as private context that powers your personal experience, and is never published as social content.
By using the Service, you agree to the practices described here. If you do not agree, please do not use the Service.
Information we collect
We collect the following categories of information:
- Account information. Such as your email address, display name, and authentication details when you register with email, Google, or Apple.
- Profile information. Such as your chosen name, friend code, focus areas, avatar and cosmetic selections.
- Health and activity data. With your permission, summarized metrics from Apple Health (see Health data).
- Check-ins and reflections. The vibes and journal text you choose to record.
- Progression data. XP, levels, Gold, streaks, badges, goals, purchases, challenges and race activity.
- Device and technical data. Such as device identifiers, push notification tokens, app version, and diagnostic information needed to operate the Service.
- Contact-form & anti-abuse data. When you message us through the website contact form, we process the name, email, subject and message you submit. To prevent spam and abuse we also process pseudonymous security identifiers: a random, signed visitor identifier stored in a strictly-necessary cookie, and a temporarily hashed form of your IP address and email address. These hashes let us apply rate limits without storing your raw IP address or email as a tracking key, and they are not used to build a profile of you or to track you across other sites.
Health data
Health data receives special care. On iOS, Bloomi requests read-only access to the Apple Health categories you approve, for example steps, sleep, active energy, distance, flights climbed, heart rate, and mindful minutes. Bloomi does not write data back to Apple Health.
- Health data is normalized into private daily aggregates (for example, total steps for a day). Raw health samples are not stored on our servers.
- Your health data is used only to power your personal companion, goals, rewards, and private summaries.
- Your health data is never shown to other users, posted to activity feeds, or used as leaderboard or social content. Social features share wins and milestones (like level-ups and badges), not your underlying metrics.
- Apple Health data is never sold, and is not used for advertising. We do not use Apple Health data for any purpose other than operating the features you use.
How we use information
We use the information we collect to:
- Provide, maintain, and improve the Service and your companion experience.
- Calculate progression such as XP, Gold, levels, streaks, badges, goals and rewards.
- Enable social features you opt into, such as friends, chat, races, and arena events.
- Send notifications you have enabled, and respect the preferences you set.
- Keep the Service secure, prevent abuse, and debug issues.
- Comply with legal obligations.
Data storage & security
Information is stored using industry-standard cloud infrastructure with access controls. We apply a deny-by-default security model: sensitive data such as economy balances, ledgers, public profiles, and canonical health aggregates are server-owned and cannot be written directly by clients.
No method of transmission or storage is completely secure, but we work to protect your information using reasonable technical and organizational measures, and we retain it only for as long as needed to provide the Service or meet legal requirements.
Your choices & rights
You are in control of your data:
- Access & export. You can export your data from within the app.
- Deletion. You can delete your account at any time, which removes your account data and clears local health state from your device.
- Health permissions. You can grant or revoke Apple Health access at any time in iOS Settings. Revoking access degrades related features gracefully.
- Notifications. You can toggle each notification category, or disable them entirely.
Depending on where you live, you may have additional rights under laws such as the GDPR or CCPA. To exercise them, contact us at privacy@bloomi.app.
Children's privacy
Bloomi is not directed to children under 13, and the app applies a minimum age gate of 13 during setup. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal information, contact us at privacy@bloomi.app and we will take appropriate steps to delete it.
Third-party services
The Service relies on third-party platforms, each governed by their own terms and privacy policies, including:
- Apple. Sign-in and HealthKit on iOS.
- Google. Sign-in and Firebase (authentication, database, cloud functions, and push messaging).
We encourage you to review the privacy policies of these providers.
Changes to this policy
We may update this Privacy Policy from time to time. When we make material changes, we will update the "Last updated" date and, where appropriate, provide additional notice within the app.
Contact us
Questions about privacy? Email us at privacy@bloomi.app and we'll be happy to help.
