1. Who we are
ShiftFlow ("we", "our", "the app") is a mobile application for shift workers developed by Krzysztof Radziwon. This policy explains what data we collect, how we use it, and your rights. Questions? Contact us at JustSimpleSoft@proton.me.
2. Data stored on your device
The following data is stored locally on your phone only using AsyncStorage. It never leaves your device unless explicitly stated otherwise.
- Your work profile (role, shift pattern, sleep goal, caffeine sensitivity)
- Your shift schedule and calendar entries
- Daily check-in responses (energy, mood, sleep quality)
- App preferences (language, notification settings, time format)
- Premium subscription status (cached locally)
3. Data sent to third-party services
3a. Anthropic (AI explanations)
When you request an AI-generated plan explanation, the app sends a short, anonymised prompt to Anthropic's API (api.anthropic.com). This prompt contains only your shift type, energy level, and fatigue context — no names, no account identifiers, no device identifiers. Anthropic's data usage is governed by their Privacy Policy. This feature is opt-in and only triggers when you tap "Explain my plan".
3b. RevenueCat (in-app purchases)
Subscription purchases are processed via RevenueCat and Google Play. RevenueCat receives a random anonymous user ID generated on first launch — no name or email is transmitted. Purchase receipts are verified server-side by RevenueCat to confirm entitlements. See RevenueCat's Privacy Policy. Actual payment data is handled exclusively by Google Play and never touches our or RevenueCat's servers.
3c. Expo / EAS (app updates)
The app is built with Expo. Expo may collect anonymous crash reports and usage metrics as part of their platform services. See Expo's Privacy Policy.
4. Roster photo import (AI OCR)
If you use the "Import from photo" feature, the image you select is sent to Anthropic's API for text recognition. The image is transmitted over HTTPS and is not stored by us or by Anthropic beyond the duration of the API request (per Anthropic's zero-data-retention API policy). We recommend cropping or blurring any personal information visible in the photo before using this feature.
5. Data we do NOT collect
- Your name, email address, or any account credentials
- Precise or approximate GPS location
- Health or medical records
- Contacts, calendar, or files on your device (beyond photos you explicitly choose)
- Advertising identifiers (GAID / IDFA)
- Crash analytics or telemetry beyond what Expo collects anonymously
6. Notifications
ShiftFlow may send local push notifications (sleep reminders, caffeine cutoff, shift transitions). These notifications are scheduled entirely on-device and do not involve any external server. You can disable them at any time in Settings → Notifications or your device's system settings.
7. Children's privacy
ShiftFlow is not directed at children under 13 (or 16 in the EU/EEA). We do not knowingly collect data from children.
8. Data retention & deletion
All data stored on-device can be permanently deleted by going to Settings → Reset all data, or by uninstalling the app. Since we hold no server-side account data, there is nothing further to request deletion of from us directly.
9. Your rights (GDPR / CCPA)
Because we do not operate user accounts or store personal data on our servers, the practical exercise of most GDPR/CCPA rights (access, rectification, portability, erasure) is fulfilled entirely on-device via the reset function described above. For any other concern, contact us at JustSimpleSoft@proton.me.
10. Security
All API calls (Anthropic, RevenueCat) use HTTPS/TLS. API keys are stored as environment variables and are never exposed in the app bundle or transmitted to end-user devices.
11. Changes to this policy
We may update this policy to reflect changes in the app or applicable law. The "Last updated" date at the top of this page will change accordingly. Continued use of the app after a material change constitutes acceptance of the updated policy.