Legal
Plain English summary: Our apps store your data on your device. We use PostHog for anonymous usage analytics and Sentry for crash reporting. We use RevenueCat to process subscription payments. We do not sell your data. We do not share your personal information with third parties for marketing. Your health data stays on your phone.
Contents
01
This privacy policy applies to all mobile applications published by Thornfield Apps, operated from United Kingdom. Our current applications include Fibermaxxxing (iOS and Android).
For the purposes of UK GDPR and the Data Protection Act 2018, Thornfield Apps is the data controller for personal data collected through our applications and this website.
Contact: [email protected]
02
The primary data in our apps is stored entirely on your device and never transmitted to our servers:
This data lives in a local SQLite database on your device. We cannot access it. If you delete the app, this data is deleted with it.
We collect anonymous usage data to understand how the app is used and where to improve it. This data does not identify you personally.
| Event | What's collected | Why |
|---|---|---|
| App opened | Platform, app version, anonymous session ID | Understand active users |
| Food logged | Food category, whether item is custom, serving size | Improve food library |
| Goal hit | Date, streak day number | Understand engagement |
| Onboarding completed | Goal set, whether ramp-up selected | Optimise onboarding |
| Paywall viewed | Source screen, app version | Improve conversion |
| App crash | Stack trace, device type, OS version | Fix bugs |
If you subscribe to Pro, payment is processed by Apple (App Store) or Google (Play Store). We use RevenueCat to manage subscription state. We receive confirmation of your subscription status but never see your payment card details. RevenueCat assigns you an anonymous customer ID.
03
We use the data we collect for the following purposes:
Our legal basis under UK GDPR for processing analytics and crash data is legitimate interests — specifically, the interest in maintaining and improving our applications. For subscription management, the basis is contract performance.
04
We use the following third-party services. Each has its own privacy policy.
| Service | Purpose | Data shared | Privacy policy |
|---|---|---|---|
| PostHog | Product analytics | Anonymous usage events, device type, OS version | posthog.com/privacy |
| Sentry | Crash reporting | Stack traces, device type, OS version | sentry.io/privacy |
| RevenueCat | Subscription management | Anonymous customer ID, subscription status | revenuecat.com/privacy |
| Apple App Store | App distribution and payment | Governed by Apple's privacy policy | apple.com/legal/privacy |
| Google Play | App distribution and payment | Governed by Google's privacy policy | policies.google.com/privacy |
We do not sell your data to any third party. We do not share your data with advertisers. We do not use your data for targeted advertising.
05
Your local app data (food logs, goals, preferences) is retained on your device until you delete the app or clear the app's data. We have no control over or access to this data.
Anonymous analytics events are retained by PostHog for 12 months. Crash reports are retained by Sentry for 90 days. Subscription records are retained by RevenueCat for as long as required to manage your subscription and for legal compliance.
If you wish to have any data associated with your anonymous ID deleted from our third-party providers, please contact us at [email protected] and we will process your request.
06
Under UK GDPR you have the following rights regarding your personal data:
Request a copy of the personal data we hold about you.
Request correction of inaccurate data.
Request deletion of your personal data where there is no lawful reason to continue processing it.
Object to processing based on legitimate interests. You can opt out of analytics in the app settings.
Request your data in a machine-readable format.
Lodge a complaint with the ICO at ico.org.uk.
Because most data in our apps is stored locally on your device and not transmitted to us, many of these rights are exercised directly by managing or deleting data on your device. For data held by third-party services, contact us and we will assist.
To exercise any of these rights, email [email protected]. We will respond within 30 days.
07
Our apps are not directed at children under 13 years of age. We do not knowingly collect personal data from children under 13. If you believe we have inadvertently collected data from a child, please contact us immediately at [email protected] and we will delete it promptly.
08
We may update this privacy policy from time to time. When we make material changes, we will update the "Last updated" date at the top of this page and, where appropriate, notify you through the app.
Continued use of our apps after changes become effective constitutes acceptance of the revised policy. We encourage you to review this page periodically.
09
For any privacy-related questions, requests, or complaints, please contact us:
If you are unsatisfied with our response, you have the right to lodge a complaint with the UK Information Commissioner's Office (ICO) at ico.org.uk or by calling 0303 123 1113.