Privacy Policy

Last updated: 2026-05-28

Overview

Alocasia is a productivity app for tasks, projects, trips, flashcards, and personal finance. We collect only what's necessary to run the features you use, and we don't sell, share, or rent your data to advertisers or data brokers.

If you don't sign in, Alocasia runs entirely on your device with no data transmitted off it. Signing in enables sync across your devices via Supabase (our backend provider) and subscription management via RevenueCat. The rest of this document explains exactly what's collected in each scenario.

What we collect

Account information

  • Email address — required for account creation and password recovery. Stored by Supabase Auth.
  • User identifier — a UUID assigned at sign-up. Used internally as the foreign key for all your data and to link your subscription state across iOS, macOS, and the web.

Subscription information

  • Purchase history — managed by Apple (for iOS/macOS App Store purchases) and RevenueCat (which mirrors purchase events from Apple and Stripe). We never see your payment-card details. We do see whether your subscription is active and what plan you're on.

Content you create

  • Tasks, projects, notes, attachments, board items, trip data, flashcards, finance records, AI insights — all user-authored. Stored locally on your device. If signed in, also synced to your Supabase row, accessible only to you (enforced via row-level security policies).
  • File attachments — files you explicitly attach to tasks, projects, trips, or notes are uploaded to Cloudflare R2 object storage with per-user access controls. Public-bucket files (trip photos, flashcard media, note images) are served from a CDN at media.alocasia.day; private-bucket files (task and project attachments) require a short-lived signed URL issued by our server only to the file's owner.
  • Storage quotas — free accounts have 500 MB across all buckets; Pro accounts have 15 GB; Pro+ accounts (future) will have 100 GB. Per-file uploads are capped at 10 MB (20 MB for note images).

Usage data

  • Product interaction — Pomodoro sessions, habit completions, time-tracking entries. Used to render your own stats and AI insights within the app. Aggregated metrics may inform RevenueCat subscriber cohort analysis on our side; we don't share these with third parties.

Diagnostics

  • Crash reports and logs — Apple-provided crash logs (anonymous, not linked to your identity) and on-device OSLog messages for debugging. No third-party crash reporting SDK (e.g. Sentry, Bugsnag) is installed.

What we don't collect

Alocasia does not collect: precise or coarse location, health or fitness data leaving your device (HealthKit reads stay on-device), payment-card details, browsing history outside the app, search history, your address book, sensitive personal information, advertising identifiers, or device identifiers beyond your Supabase user UUID.

How we use your data

  • App functionality — every category we collect serves a direct feature you interact with: signing in, syncing your data, gating Pro features, rendering your stats.
  • Analytics — limited to RevenueCat's subscription dashboard (how many users have Pro, what plan, when they signed up) and Supabase's standard query metrics. We do not run a separate analytics SDK.

We do not use your data for advertising, do not share it with third-party advertisers, and do not engage in tracking across apps or websites.

Where your data lives

  • Your device — primary storage for everything you create. Stays on-device until you sign in.
  • Supabase — our backend provider. Stores your account, content, and subscription state when you're signed in. Hosted in the US.
  • Cloudflare R2 — file attachments (trip photos, task attachments, note media) live in two R2 buckets accessed via signed URLs. R2 has zero egress fees, which keeps your storage cost low as you grow.
  • RevenueCat — handles subscription state. Receives purchase events from Apple and Stripe, mirrors them to Supabase via webhook. Linked to your Supabase user UUID.
  • Apple — handles all in-app purchases on iOS and macOS. We receive purchase confirmation; Apple holds payment details.
  • Stripe (web purchases only) — handles web subscription billing through RevenueCat's hosted checkout. We don't see card details.

For details on local-first storage, our continuity commitment if we shut down, and the open formats we export to, see our Data Ownership page.

Your rights and controls

  • Export everything — Settings → Data → Storage → Export Library produces a .alocasiabundle zip containing your full library: JSON for structured data, Markdown for notes (Obsidian-compatible), .apkg for flashcards (Anki-compatible), CSV for finance transactions, original files for photos and attachments. No account required for export; the local Mac/iOS app can produce one entirely offline.
  • Delete — Settings → Danger Zone → Delete Account removes your Supabase profile and all child records. On-device data is removed when you uninstall the app.
  • Object to processing — sign out at any time to stop sync and analytics collection for your account; the app continues to work locally.
  • Request a copy — email privacy@alocasia.day and we'll send you the database rows we hold for your account within 30 days.

Children

Alocasia is not directed at children under 13 and we do not knowingly collect data from anyone under 13. If you believe a child has signed up, email privacy@alocasia.day and we'll delete the account.

Changes to this policy

Material changes will be announced via the in-app About section and a new "Last updated" date here. Your continued use after a change constitutes acceptance.

Contact

Questions, requests, or complaints: privacy@alocasia.day.