Skip to content
Legal

Privacy Policy

Your data, and especially your health data, is treated as private context, never social content. Here's exactly how we handle it.

Last updated: June 17, 2026

Template notice. This document is a starting template tailored to Bloomi. Please have it reviewed and finalized by qualified legal counsel before launch.

Overview

This Privacy Policy explains how Bloomi ("Bloomi", "we", "us") collects, uses, and protects your information when you use the Bloomi mobile app and related services (the "Service"). Bloomi is designed to be privacy-first: your health data is treated as private context that powers your personal experience, and is never published as social content.

By using the Service, you agree to the practices described here. If you do not agree, please do not use the Service.

Information we collect

We collect the following categories of information:

  • Account information. Such as your email address, display name, and authentication details when you register with email, Google, or Apple.
  • Profile information. Such as your chosen name, friend code, focus areas, avatar and cosmetic selections.
  • Health and activity data. With your permission, summarized metrics from Apple Health (see Health data).
  • Check-ins and reflections. The vibes and journal text you choose to record.
  • Progression data. XP, levels, Gold, streaks, badges, goals, purchases, challenges and race activity.
  • Device and technical data. Such as device identifiers, push notification tokens, app version, and diagnostic information needed to operate the Service.
  • Contact-form & anti-abuse data. When you message us through the website contact form, we process the name, email, subject and message you submit. To prevent spam and abuse we also process pseudonymous security identifiers: a random, signed visitor identifier stored in a strictly-necessary cookie, and a temporarily hashed form of your IP address and email address. These hashes let us apply rate limits without storing your raw IP address or email as a tracking key, and they are not used to build a profile of you or to track you across other sites.

Health data

Health data receives special care. On iOS, Bloomi requests read-only access to the Apple Health categories you approve, for example steps, sleep, active energy, distance, flights climbed, heart rate, and mindful minutes. Bloomi does not write data back to Apple Health.

  • Health data is normalized into private daily aggregates (for example, total steps for a day). Raw health samples are not stored on our servers.
  • Your health data is used only to power your personal companion, goals, rewards, and private summaries.
  • Your health data is never shown to other users, posted to activity feeds, or used as leaderboard or social content. Social features share wins and milestones (like level-ups and badges), not your underlying metrics.
  • Apple Health data is never sold, and is not used for advertising. We do not use Apple Health data for any purpose other than operating the features you use.

How we use information

We use the information we collect to:

  • Provide, maintain, and improve the Service and your companion experience.
  • Calculate progression such as XP, Gold, levels, streaks, badges, goals and rewards.
  • Enable social features you opt into, such as friends, chat, races, and arena events.
  • Send notifications you have enabled, and respect the preferences you set.
  • Keep the Service secure, prevent abuse, and debug issues.
  • Comply with legal obligations.

How information is shared

We do not sell your personal information. We share information only in limited circumstances:

  • With other users, at your direction. When you use social features, limited public profile details (such as display name, level, equipped badges and cosmetics) and your wins are visible to friends. Your health metrics are not.
  • With service providers. We use trusted infrastructure providers (for example, Google Firebase for authentication, database, functions, and messaging) that process data on our behalf under appropriate safeguards.
  • For legal reasons. Where required by law, or to protect the rights, safety, and security of users and the Service.

Data storage & security

Information is stored using industry-standard cloud infrastructure with access controls. We apply a deny-by-default security model: sensitive data such as economy balances, ledgers, public profiles, and canonical health aggregates are server-owned and cannot be written directly by clients.

No method of transmission or storage is completely secure, but we work to protect your information using reasonable technical and organizational measures, and we retain it only for as long as needed to provide the Service or meet legal requirements.

Your choices & rights

You are in control of your data:

  • Access & export. You can export your data from within the app.
  • Deletion. You can delete your account at any time, which removes your account data and clears local health state from your device.
  • Health permissions. You can grant or revoke Apple Health access at any time in iOS Settings. Revoking access degrades related features gracefully.
  • Notifications. You can toggle each notification category, or disable them entirely.

Depending on where you live, you may have additional rights under laws such as the GDPR or CCPA. To exercise them, contact us at privacy@bloomi.app.

Children's privacy

Bloomi is not directed to children under 13, and the app applies a minimum age gate of 13 during setup. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal information, contact us at privacy@bloomi.app and we will take appropriate steps to delete it.

Third-party services

The Service relies on third-party platforms, each governed by their own terms and privacy policies, including:

  • Apple. Sign-in and HealthKit on iOS.
  • Google. Sign-in and Firebase (authentication, database, cloud functions, and push messaging).

We encourage you to review the privacy policies of these providers.

Cookies & consent

Our website uses cookies and similar technologies. Essential cookies keep the site working. Optional analytics and marketing cookies stay off until you opt in. Your choices are stored in a first-party consent record that contains no personal information, only your category selections, the policy version, and a timestamp.

  • Essential. Security, navigation and core functionality. Always on.
  • Preferences. Remember settings like your cookie choices and display preferences.
  • Analytics. Aggregated, non-identifying insight into site usage. Off until you opt in.
  • Marketing. Campaign measurement. Off by default.

You can review or change your choices any time via the Cookie preferences link in the footer. For full details, see our Cookie Policy.

Changes to this policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the "Last updated" date and, where appropriate, provide additional notice within the app.

Contact us

Questions about privacy? Email us at privacy@bloomi.app and we'll be happy to help.