Privacy Policy
1. Who we are
Continuo (βthe appβ, βweβ, βusβ) is an iOS application that helps people track personal growth practices and optionally share progress with a coach. The app is developed and operated by Alexandru Molea, reachable at alexandru.molea@bemore.ro. This document explains what personal data we collect, why, and what rights you have over it.
2. Data we collect
2.1 Account data
- If you sign up with email and password: your email address and a hashed password (passwords are stored only by Firebase Authentication β we never see them in clear text).
- If you sign in with Apple: a unique user identifier and, if you choose to share them, your name and email (or Apple's private relay address).
- If you sign in with Google: your name, email address, and Google profile ID returned to apps using Google Sign-In.
- Profile information: your chosen display name and role (client or coach).
2.2 Content you create in the app
- Daily practice completions and any reflection text you write.
- Goals you set and progress reflections attached to them, as well as goals created for you by your coach.
- Coaching sessions you log, including summaries, conclusions, and actions.
- Mindfulness minutes tracked via the in-app timer or manual entry.
- Assignments sent or received, including conversation threads between coach and client.
- Feedback responses: when your coach sends you a feedback form, the ratings (1β10), milestone selections (Behind / On Track / Ahead), and open-text answers you submit are stored and shared with your coach.
- Coach practice entries: reflections and highlighted questions that coaches record for their own professional development (visible only to the coach β not shared with clients).
- Private notes a coach writes about a client (visible only to that coach).
- Personal values, strengths, passions, skills, and priorities you save.
- Growth Points (GP), competency scores, and a chronological journey log of these activities.
2.3 Health data (Apple Health)
If you grant permission, Continuo reads mindful session data from Apple Health to display your daily mindfulness minutes (including sessions logged in other apps like Calm or Apple Watch) and writes new sessions back to Health when you use our timer or manual log. We do not read or write any other health categories. Health data stays on your device under Apple's control β we never store it on our servers or share it with third parties. You can revoke access at any time in Settings β Privacy & Security β Health.
2.4 Device and diagnostic data
Firebase automatically collects basic information needed to operate the app (IP address for security and rate limiting, device type, app version, crash diagnostics if a crash occurs). We do not embed any advertising SDKs, analytics SDKs, or tracking pixels beyond Firebase itself.
3. How we use your data
- To authenticate you and keep your account secure.
- To store the content you create and make it available across your devices.
- To sync specific items (sessions, assignments, goals, feedback forms) between you and a coach you have explicitly connected with.
- To compute features like Growth Points, streaks, and competency progress.
- To aggregate feedback rating responses (e.g. average scores, trends over time) into a dashboard visible only to the coach who sent the form.
- To diagnose technical issues (via Firebase crash logs).
We do not use your data for advertising, profiling unrelated to the app's features, or selling to third parties.
4. Who has access to your data
4.1 You
You have access to all of your data via the app. You can view, edit (display name, written content), or delete it.
4.2 Your coach (if connected)
If you are a client and you connect to a coach using their code, the coach gains access only to the following:
- Assignments sent by your coach, their completions, and the conversation thread between you.
- Coaching sessions you choose to log as visible to your coach.
- Goals you individually opt in to share (using the "Share with coach" toggle inside each goal) β including the goal title, progress percentage, success measure, and any reflections you have added to that goal.
- Goals created and sent to your account directly by your coach (these appear automatically in your goals list with a "From coach" label).
- Feedback form responses: when your coach sends you a feedback form and you submit it, all your answers (ratings, milestone selections, and open-text responses) are visible to your coach. Your coach may also view aggregated trends across your past responses in their personal dashboard.
- Your Growth Points total.
Everything else β daily practice reflections, journal entries, mindfulness minutes, goals you have not shared, and Apple Health data β remains completely private to you. Goal sharing is opt-in per goal and can be turned off at any time from inside the goal. You can disconnect from your coach at any time, which will stop future data sharing. Existing feedback responses already submitted will remain accessible to the coach unless they delete them.
4.3 Service providers (sub-processors)
- Google (Firebase): hosts authentication, the Firestore database, and crash diagnostics. Firebase is GDPR-compliant and signs a Data Processing Addendum. Firebase privacy info.
- Apple: processes Sign in with Apple, App Store delivery, and (with your permission) HealthKit data. Apple privacy policy.
- Google (Google Sign-In): handles authentication only if you choose to sign in with your Google account. Note that Firebase is also a Google service β when you use Google Sign-In, only one company ultimately processes that data. Google privacy policy.
5. Where your data is stored
Data is stored on Google Cloud servers operated by Firebase. Storage regions may include the European Union and the United States. Transfers outside the EU are protected by Standard Contractual Clauses where applicable.
6. How long we keep your data
- While your account is active: indefinitely.
- After you delete your account: removed from active Firestore collections immediately, with residual backups expiring within 30 days.
- Crash diagnostics (Firebase Crashlytics, if enabled): up to 90 days.
7. Your rights
Under the EU General Data Protection Regulation (GDPR) and similar laws, you have the right to:
- Access the personal data we hold about you.
- Correct inaccurate data (you can edit your display name and any content in-app).
- Delete your account and associated data (Profile β Delete account, or see our step-by-step deletion guide).
- Export your data β write to us at alexandru.molea@bemore.ro and we will provide a machine-readable copy within 30 days.
- Withdraw consent for HealthKit access at any time via iOS Settings.
- Lodge a complaint with your local data protection authority (in Romania: ANSPDCP).
8. Sign in with Apple β token revocation
If you signed in using Apple and choose to delete your account, the app
asks you to confirm with a fresh Apple sign-in. We then call Apple's
revokeToken endpoint so your Apple ID stops being associated
with this app, as required by Apple's policy.
9. Children
Continuo is not directed at children under 16. We do not knowingly collect data from anyone under that age. If you believe a child has created an account, contact us and we will remove it.
10. Security
All communication between the app and Firebase travels over TLS. Passwords (where applicable) are salted and hashed by Firebase. Access to your data is enforced by Firestore Security Rules at the database level, so other users cannot read documents that don't belong to them or their authorized coach/client relationship.
11. Changes to this policy
We may update this policy as the app evolves. Material changes will be announced in-app and the βEffectiveβ date at the top of this page will be updated. Continued use of the app after a change indicates acceptance of the new terms.
12. Contact
Questions, data requests, or complaints?
alexandru.molea@bemore.ro