Privacy Policy

Effective date: 3 May 2026.

This Privacy Policy describes how Goodmorrow ("we", "our", "the app") collects, uses, and shares information when you use the Goodmorrow mobile application.

Information we collect

1. Authentication. We collect a stable identifier from your sign-in provider:

• If you sign in with Apple: an Apple-issued user ID and (the first time) the email address you choose to share. You can use Apple's "Hide My Email" feature; we will never see your real email if you do.
• If you connect with Oura: your Oura account's stable user ID and email.

2. Sleep, activity, and readiness data from your Oura ring. With your authorization, we read the following from Oura's API for the last ~60 days each time you run an analysis:

• Sleep sessions (duration, stages, heart rate, HRV during sleep)
• Daily sleep, activity, and readiness scores and contributors

We do not request workout, session, or other Oura scopes.

3. Habit check-ins. The dates and notes you record when checking off a habit.

How we use your information

• To run statistical analyses on your sleep data and surface patterns.
• To pick personalised CBT-I sleep habits for you to try.
• To diagnose technical problems and improve the service.

Sharing with third parties

• Oura: we read from your Oura account on your behalf. We do not write to it.
• Anthropic: we send your statistical brief to Anthropic's Claude API to generate insights and habit recommendations. Anthropic processes this data per their own policies. We do not authorize Anthropic to use your data to train their models.
• Apple: we use Apple's Sign in with Apple service to authenticate you.
• Fly.io: our backend infrastructure provider. They host the database containing your data.

We do not sell your personal information. We do not share it with advertisers.

Data retention

Your data is stored as long as your account is active. You can delete your account from Settings → Delete account, which removes all of your data (analyses, habits, tokens) within 24 hours.

Your rights

You can:

• See your data via the in-app screens (Insights, Habit, Settings).
• Delete your entire account from Settings.
• Email us at support@goodmorrow.app for questions or data requests.

If you are in the EU/UK or California, you have additional rights under GDPR and CCPA respectively (access, portability, deletion, etc.). Email us to exercise them.

Children

Goodmorrow is not directed to children under 13 (or 16 in some jurisdictions). We do not knowingly collect data from children.

Security

We use HTTPS for all network traffic. Session tokens are stored in iOS Keychain via expo-secure-store. We never transmit your data unencrypted.

Changes to this policy

We will post material changes to this URL. Continued use of the app after a change constitutes acceptance.

Contact

Email: support@goodmorrow.app