Legal

Privacy Policy

Effective date: April 1, 2026

SubraLabs ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how our iOS applications and web services handle your information.

Information We Collect

Our apps are designed with privacy at the core. We minimize data collection to what is strictly necessary for app functionality.

  • Local data. App data (tasks, settings, preferences) is stored locally on your device using Apple's SwiftData framework. This data never leaves your device unless you explicitly enable iCloud sync.
  • iCloud sync. If you choose to enable sync, your data is stored in your personal iCloud account via Apple's CloudKit. We do not have access to your iCloud data — it is encrypted and managed entirely by Apple under your Apple Account.
  • Health data. Some of our apps (such as LiftLab) may request access to Apple HealthKit data, including steps, calories, body mass, and workout information. This data is accessed only with your explicit permission and is used solely within the app to provide health and fitness features.
  • Audio data. Some of our apps (such as Wavely) process audio through your device's microphone. All audio processing happens locally on your device and is never transmitted to external servers.
  • No account required. None of our iOS apps require you to create an account or provide personal information such as your name, email, or phone number.

How We Use Your Information

Any data processed by our apps is used exclusively to provide the features and functionality you expect.

  • Display and manage your content within the app
  • Sync your data across your own devices (if iCloud sync is enabled)
  • Provide health and fitness insights based on HealthKit data (where applicable)
  • Process audio in real time for audio tool features (where applicable)

We do not use your data for advertising, profiling, or any purpose beyond the app's core functionality.

Data Storage and Security

Your data is stored in one of two places, both controlled by Apple's security infrastructure:

  • On-device. Data stored locally via SwiftData is protected by your device's built-in encryption and passcode.
  • iCloud. Data synced via CloudKit is stored in your personal iCloud account, encrypted in transit and at rest by Apple. We cannot access, read, or decrypt your iCloud data.

We do not operate our own servers for storing user data. We do not collect analytics, telemetry, or crash reports from our iOS apps.

Third-Party Services

Our iOS apps do not integrate third-party analytics, advertising SDKs, or tracking frameworks. Specifically:

  • No tracking. We do not use any advertising identifiers, fingerprinting, or cross-app tracking.
  • No third-party analytics. We do not use Google Analytics, Facebook SDK, or any similar services in our iOS apps.
  • Apple services only. The only third-party services used are Apple's own frameworks (CloudKit, HealthKit, StoreKit) which are governed by Apple's privacy policies.
  • Subscriptions. In-app purchases and subscriptions are processed by Apple through StoreKit 2. Payment information is handled entirely by Apple — we never see or store your payment details.

Note: Our Arabia web app (arabia.web.app) uses Firebase Analytics for basic usage statistics. This applies only to the web app and not to any iOS application.

AI Processing

Some of our apps use Apple Foundation Models for AI-powered features. All AI processing happens entirely on your device. No data is sent to external servers, cloud APIs, or third-party AI services. Your content remains private and local at all times.

HealthKit Data

For apps that access Apple HealthKit (such as LiftLab):

  • HealthKit data is accessed only after you grant explicit permission through the iOS Health permissions dialog
  • We read only the specific data types required for the app's features (e.g., steps, active calories, body mass, workouts)
  • HealthKit data is used solely to display insights and track progress within the app
  • HealthKit data is never shared with third parties, used for advertising, or transmitted off your device
  • You can revoke HealthKit access at any time through Settings > Health > Data Access on your device

Children's Privacy

Our apps do not knowingly collect personal information from children under the age of 13. Since our apps do not collect personal data or require account creation, there is no mechanism through which such data could be gathered. If you believe a child has somehow provided personal information to us, please contact us and we will take appropriate action.

Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated effective date. We encourage you to review this policy periodically.

Contact

If you have any questions about this Privacy Policy or our data practices, you can reach us at:

martino@subralabs.com