Privacy Policy
For FlexPomo
Last updated: 2026-04-20
Effective date: 2026-04-20 Last updated: 2026-04-20
TL;DR
FlexPomo is built without a backend. We don’t have servers, accounts, analytics, or trackers — because we architecturally can’t. Your focus sessions live on your device and (optionally) in your private iCloud. We never see them.
If you stop reading here, this is the whole policy in one line: we don’t collect your data.
1. Who We Are
FlexPomo (“the App”) is an independent iOS application developed by Damian Wiśniewski, operating under thehardway.pl (“we”, “us”, “Developer”).
Email: contact@thehardway.pl Website: https://thehardway.pl
For questions about this policy, reach us at contact@thehardway.pl.
2. What Data We Collect
None. FlexPomo does not collect personal data through the App.
Specifically, we do not:
- Operate any server that stores your data
- Require or allow you to create an account
- Include analytics SDKs, crash reporting SDKs, or tracking pixels
- Include advertising SDKs
- Fingerprint your device
- Measure your usage, sessions, or behavior
- Share or sell data (we couldn’t — we don’t have any)
This isn’t a marketing claim. It’s an architecture decision: FlexPomo ships without networking code for data collection, so the data doesn’t exist to collect.
3. What Data Is Stored on Your Device
FlexPomo stores the following locally on your device, using Apple’s SwiftData framework:
- Your focus sessions (start time, duration, tag)
- Your Focus Projects (if you use Pro)
- Your preferences (theme, sound settings, goals)
- Your in-app purchase entitlement receipts (via StoreKit 2)
This data never leaves your device unless you enable iCloud sync (see Section 4). We cannot read it.
How to delete all local data: delete the FlexPomo app from your device. All local data is erased.
4. iCloud Sync (Optional)
If you enable iCloud sync in Settings, FlexPomo uses Apple’s CloudKit framework (via SwiftData) to sync your data across your own Apple devices.
Key facts:
- Sync uses your private iCloud container — not a FlexPomo server
- Your data is encrypted in transit and at rest by Apple
- FlexPomo cannot access your iCloud data
- Apple’s privacy and security practices govern this sync — see Apple’s Privacy Policy
To stop syncing, disable iCloud sync in the app settings. To delete synced data, sign out of iCloud or remove FlexPomo data from your iCloud storage (Settings → [Your Name] → iCloud → Manage Storage → FlexPomo).
5. Apple’s Role
FlexPomo relies on Apple platform services that operate under Apple’s own privacy terms:
| Service | Purpose | Operated By |
|---|---|---|
| App Store / StoreKit | In-app purchases, subscriptions, trial management | Apple |
| iCloud / CloudKit | Optional cross-device sync | Apple |
| Apple Intelligence | On-device AI for Weekly Insights (where available) | Apple (on-device) |
| Crash Reports | Anonymized crash diagnostics, if you opted in via iOS Settings → Privacy → Analytics & Improvements | Apple |
FlexPomo does not receive identifiable data from any of these services. Your relationship with Apple is governed by Apple’s Privacy Policy.
6. On-Device AI (Weekly Insights)
Pro users may see Weekly Insights powered by Apple Intelligence on supported devices. This feature:
- Runs entirely on your device using Apple’s foundation models
- Does not send session data to any server (Apple’s, ours, or OpenAI’s)
- Is only available on devices that support Apple Intelligence
- Gracefully degrades if unavailable — no feature is blocked
We do not have access to model inputs or outputs. All processing is local.
7. Third Parties
FlexPomo does not integrate with any third-party services that receive your data. There are no SDKs for:
- Analytics (no Firebase, no Mixpanel, no Amplitude, no PostHog)
- Crash reporting (no Sentry, no Bugsnag, no Crashlytics)
- Advertising (no AdMob, no Meta Audience Network, no AppLovin)
- Marketing (no Braze, no OneSignal, no Customer.io)
- Social logins (no Google, no Facebook, no sign-in of any kind)
The only external service FlexPomo uses is Apple’s own platform (App Store, iCloud, Apple Intelligence) — and even there, Apple does not share your data with us.
8. Your Rights (GDPR, UK GDPR, CCPA/CPRA)
Because we don’t collect or store your data, most data subject rights don’t have anything to act on. That said, under the GDPR, UK GDPR, California CCPA/CPRA, and similar laws, you have the following rights — and here’s how to exercise them with FlexPomo:
| Right | How to exercise |
|---|---|
| Access | Export your full session history as CSV (Settings → Export). That’s everything we’d ever have access to, which is already on your device. |
| Portability | CSV export (same as above). |
| Deletion | Delete the app from your device, and/or remove FlexPomo data from iCloud. |
| Rectification | Edit any session or project directly in the app. |
| Object / Restrict | Disable iCloud sync in settings, or use the app fully offline. |
| Withdraw consent | Disable iCloud sync or delete the app. |
| Non-discrimination | We don’t charge extra for privacy. The free tier has full privacy protections. |
Since FlexPomo has no account system and does not collect email addresses, we cannot reply to a “data request” about a specific user — we have no way to identify whose data is whose. This is by design.
For questions: contact@thehardway.pl.
9. Children’s Privacy
FlexPomo is not directed at children. In the EEA and UK, where local law sets an age threshold for consent to information-society services (typically 16 in Poland and the EEA, 13 in the UK), FlexPomo is not directed below that threshold. We do not knowingly collect data from children. If you believe a child’s data was somehow transmitted to us, contact contact@thehardway.pl — though given our architecture, there’s nothing to transmit.
Parents and guardians can use Apple’s Screen Time and Family Sharing to manage app access and subscriptions.
10. International Users
FlexPomo is available globally through the App Store. Because we don’t collect or transfer data, there are no international transfers to disclose.
If you use iCloud sync, your data is stored in Apple’s regional data centers under Apple’s terms.
11. Data Retention
We retain zero personal data. There is nothing to retain.
Data you store on your device or in your iCloud is retained as long as you keep it there. Apple retains App Store purchase records under Apple’s own terms.
12. Data Security
We cannot lose what we don’t have. Data stored locally is protected by iOS file encryption (when your device is locked with a passcode/Face ID/Touch ID). Data in iCloud is protected by Apple’s encryption in transit and at rest.
We recommend enabling a passcode and using Face ID or Touch ID on your device.
13. Changes to This Policy
If we update this policy, we’ll update the Effective date at the top and notify users via the app on next launch. Material changes will be highlighted. Continued use after changes constitutes acceptance.
Archived versions of this policy are available on request.
14. Contact
For privacy questions, data requests, or concerns:
- E-mail: contact@thehardway.pl
- Website: https://thehardway.pl
- Developer: Damian Wiśniewski
We aim to respond to all privacy-related inquiries within 30 days.
This policy is written in plain English by design. Legal clarity shouldn’t require a law degree to read.