Last updated: July 11, 2026
Protocols ("we", "us") is a daily routine and habit app. This policy explains what data the app collects, why, where it goes, and the rights you have over it. The short version: we collect the minimum needed to run the app, we never sell your data, we show no ads, and you can delete everything on request.
1. An anonymous account identifier. When you use Protocols, we create a random ID for your account. It is not your name, email, or phone number — we don't ask for those to use the app.
2. Your habit and check-in data. The habits you activate, your daily check-ins, streaks, assessment answers, and re-test results. This is the app's core function — without it there is nothing to coach. It is stored against your anonymous ID on Supabase, our database provider, on servers located in the United States.
3. Analytics events. We record product events (e.g. "completed assessment", "opened library") through Mixpanel so we can understand which parts of the app work and which don't. These events are tied to the anonymous ID, not to your real-world identity.
4. Crash and diagnostic data. If the app crashes, a report (device model, OS version, what the app was doing) is sent to Sentry so we can fix the bug. Crash data is not tied to your identity.
5. Purchase information. Subscriptions are processed by Apple (App Store) or Google (Google Play). We use RevenueCat to validate and manage subscription status. We see your subscription state and anonymized transaction records — we never see or store your payment card details; Apple and Google keep those.
| Provider | Purpose | What they receive |
|---|---|---|
| Supabase (US region) | Database & account | Anonymous ID, habit/check-in state |
| Mixpanel | Product analytics | Anonymous ID, usage events |
| Sentry | Crash reporting | Device/OS info, crash traces |
| RevenueCat | Subscription management | Anonymous ID, subscription status |
| Apple / Google | Payment processing | Handled under their own privacy policies |
Each provider is contractually limited to processing data for us, not for their own purposes.
Your data is kept while your account is active. If you delete your account, your habit and check-in data is deleted from our systems; residual copies in backups are purged on the backup rotation cycle (at most 30 days). Anonymized, aggregate statistics (e.g. "how many users completed onboarding") may be retained as they identify no one.
Wherever you live, we extend the same rights:
California residents: we do not "sell" or "share" personal information as defined by the CCPA/CPRA. EU/UK residents: our legal bases are performance of contract (the app's core function), legitimate interest (analytics, crash reporting — both minimized and pseudonymized), and consent where required.
Protocols is not directed at children under 13 (or the equivalent minimum age in your country), and we do not knowingly collect data from them. If you believe a child has used the app, contact us and we will delete the data.
Data is encrypted in transit (TLS) and at rest with our providers. Access to production data is restricted and logged.
If we change this policy materially, we'll update the date above and note the change in the app before it takes effect.
Questions, requests, or complaints: support@tutorlily.com [FIXME: confirm whether Protocols should use its own support address before launch]
You may also lodge a complaint with your local data-protection authority.