Privacy Policy — Heal
Last updated: March 30, 2026 | Version: 1.0
Heal is designed with a privacy-first approach. We collect only the strict minimum necessary for the application to function correctly and to improve your experience. This policy explains what data is collected, why, and your rights regarding it.
1. Introduction
Heal is designed with a privacy-first approach. We collect only the strict minimum necessary for the application to function correctly and to improve your experience.
This policy explains what data is collected, why, and your rights regarding it.
Data Controller:
MATIS ENZO MALANDRINO
69 AVENUE DE LA REPUBLIQUE, SEYSSINET BP, 38173 SEYSSINET PARISET CEDEX, FRANCE
Email: contact@healdaily.app
2. What we do NOT collect
To be transparent:
❌ No name, first name or email
❌ No user account
❌ No location
❌ No health data
❌ No advertising identifier (IDFA)
❌ No custom backend — your data does not transit through our servers
3. What we collect
3.1 Anonymous Analytics — PostHog
We use PostHog to understand how users progress through onboarding and to improve the application.
• Onboarding events: Anonymous (Measure retention, identify friction points)
• Response to the onboarding field 'How did you hear about Heal?': Free text, not linked to a profile (Understand our acquisition channels)
This data does not allow us to personally identify you. PostHog assigns a random technical identifier to each session. This identifier is not linked to your identity and is reset with each new installation.
Legal basis (GDPR): Legitimate interest (Article 6.1.f) — service improvement via anonymous analytics.
Processor: PostHog, Inc. (San Francisco, USA). Privacy Policy: https://posthog.com/privacy. Transfer outside the EU governed by the European Commission's Standard Contractual Clauses (SCC).
3.2 Apple Data
Apple independently collects certain data via the App Store: downloads, purchases, crash reports. We only have access to aggregated and anonymised statistics via App Store Connect.
Apple Privacy Policy: https://www.apple.com/privacy
3.3 In-App Purchases — RevenueCat
Payments are fully managed by Apple. We use RevenueCat to manage subscriptions and verify your access to premium features (themes, categories).
Data processed: Purchase history and a unique anonymous identifier.
Why: To ensure you have access to the content you paid for across your devices.
Note: We never see your bank or credit card information.
Processor: RevenueCat, Inc. (USA). Privacy Policy: https://www.revenuecat.com/privacy
4. Retention period
PostHog analytical data is kept for 1 year from collection, then automatically deleted.
5. Data sharing
We do not sell, rent or share your data with any third party for commercial or advertising purposes.
The only processors involved are:
• PostHog, Inc. (Analytics, USA - SCC)
• Apple Inc. (Distribution, payments, USA - SCC)
• RevenueCat, Inc. (Subscriptions, USA - SCC)
6. Your rights
European Union Users (GDPR):
You have the following rights: Access, Rectification, Erasure, Objection, Portability, Limitation.
Since the data collected is anonymous, it is technically impossible to link it to your identity. If you wish to exercise your rights or have a question, contact us at contact@healdaily.app.
You can also file a complaint with your local data protection authority.
California Users (CCPA):
You have the right to know what personal information is collected and to request its deletion. Heal does not sell personal data. Contact us at contact@healdaily.app for any request.
7. Security
Although we do not manage any custom servers, we ensure that our processors (PostHog, Apple) apply appropriate security measures in line with industry standards.
8. Minors
Heal is not intended for children under 13 (or 16 in the EU). We do not knowingly collect any data regarding minors. If you think a minor has used the application, contact us at contact@healdaily.app.
9. Changes
In the event of a substantial change to this policy, you will be informed via the application or the App Store. The update date at the top of this document always indicates the version in effect.
10. Contact
MATIS ENZO MALANDRINO
Email: contact@healdaily.app
Address: 69 AVENUE DE LA REPUBLIQUE, SEYSSINET BP, 38173 SEYSSINET PARISET CEDEX, FRANCE
Policy written in French. In case of translation, the French version prevails.