Privacy Policy for HabitSet

Effective Date: January 2026
Last Updated: January 2026

1. Introduction

BlueSparrow Labs ("we," "our," or "us") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, and safeguard information when you use the HabitSet mobile application ("App").

This policy applies to all users worldwide, including those in the European Union (EU/EEA), United Kingdom (UK), United States (USA), India, Canada, Australia, and all other jurisdictions.

2. Contact Information

3. Our Privacy Commitment

HabitSet is designed with a privacy-first philosophy:

4. Information We Collect

4.1 Account Information (Optional)

If you choose to sign in with your Google account, we receive:

This information is used solely for account identification and is stored in our secure Firebase Authentication system.

4.2 Subscription Information

If you purchase a premium subscription, the following is processed:

All payment processing is handled securely by Google Play. We never receive, store, or have access to your payment card details, bank account information, or billing address.

4.3 App Usage Permissions

The App may request the following device permissions:

PermissionPurpose
NotificationsRequired for habit reminders and streak-at-risk warnings
Biometric / Device LockOptional for app lock via fingerprint or face unlock
MicrophoneOptional for voice note input via speech-to-text
Internet AccessRequired for authentication, subscription verification, and optional backup
StorageRequired for data export and file sharing

You can revoke any permission at any time through your device's Settings.

4.4 User-Generated Content

All user-generated content is stored locally on your device:

We do not have access to this information unless you enable Cloud Sync, in which case it is stored securely in Cloud Firestore.

4.5 Backup Data (Optional)

If you enable Google Drive backup:

4.6 Analytics and Crash Reporting

We use Firebase Analytics and Firebase Crashlytics to collect anonymized usage statistics and crash reports. This helps us improve app stability and understand general usage patterns. No personally identifiable habit data is included in these reports.

5. How We Use Your Information

We use the limited information we collect solely for:

  1. Account Management - To identify you and manage your account
  2. Subscription Validation - To verify premium subscription status via RevenueCat
  3. App Functionality - To provide core habit tracking features
  4. Customer Support - To respond to your support requests
  5. Service Improvement - To fix bugs and improve the App (using anonymized crash reports only)

We do NOT use your information for:

6. Data Storage and Security

6.1 Local Storage

All your habits, completions, story cards, notes, moods, and analytics are stored locally on your device using a secure Drift (SQLite) database.

6.2 Cloud Services

We use the following cloud services:

ServicePurposeData Stored
Firebase AuthenticationAccount sign-inEmail, name, photo URL
Cloud FirestoreOptional cloud syncHabit data (if sync enabled)
RevenueCatSubscription managementTransaction IDs, subscription status
Google Drive (optional)User-initiated backupEncrypted backup files (your Drive only)
Firebase AnalyticsAnonymized usage statsNon-identifiable usage patterns
Firebase CrashlyticsCrash reportingAnonymized crash logs

6.3 Security Measures

We implement industry-standard security measures:

7. Data Retention

8. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

8.1 Universal Rights

All users have the right to:

8.2 EU/EEA/UK Residents (GDPR)

In addition to the above, you have the right to:

Legal Basis for Processing (GDPR Article 6):

8.3 California Residents (CCPA/CPRA)

You have the right to:

Categories of Personal Information Collected: Identifiers (email, name)
Categories Sold: None
Categories Shared for Business Purposes: Subscription data with RevenueCat

8.4 Brazil Residents (LGPD)

You have similar rights to access, correct, delete, and port your data. Contact us to exercise these rights.

8.5 Indian Residents (DPDP Act)

You have the right to access, correct, and erase your personal data. You may nominate a person to exercise these rights on your behalf.

8.6 Exercising Your Rights

To exercise any of these rights, contact us at privacy@bluesparrow.dev. We will respond within 30 days (or sooner if required by applicable regulations).

You can also delete your account at any time through Settings > Account > Delete Account within the App.

9. Children's Privacy

HabitSet is not intended for children under 13 years of age (or 16 in the EU/EEA). We do not knowingly collect personal information from children.

If you believe we have inadvertently collected information from a child, please contact us immediately at privacy@bluesparrow.dev and we will promptly delete such information.

10. Third-Party Services

The App integrates with the following third-party services:

ServicePurposePrivacy Policy
Google PlayApp distribution, paymentsGoogle Privacy Policy
Firebase (Google)Authentication, Firestore, Analytics, CrashlyticsFirebase Privacy
RevenueCatSubscription managementRevenueCat Privacy Policy
Google DriveOptional backupGoogle Privacy Policy

We are not responsible for the privacy practices of these third-party services. We encourage you to review their privacy policies.

11. International Data Transfers

If you are located outside India, your information may be transferred to and processed in India where our development operations are based. We ensure appropriate safeguards are in place:

12. Offline Functionality

HabitSet is designed to work offline. Core features including habit tracking, completions, streaks, story cards, and analytics work without an internet connection. Your data remains on your device and is never uploaded without your explicit action.

13. Do Not Track

HabitSet honors Do Not Track (DNT) signals. We use Firebase Analytics only for anonymized, aggregate usage statistics and do not track users across websites or apps for advertising purposes.

14. Changes to This Policy

We may update this Privacy Policy from time to time. When we make changes:

We recommend reviewing this policy periodically.

15. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy:

We aim to respond to all inquiries within 7 business days.

© 2026 BlueSparrow Labs. All rights reserved.

Terms of Service

Request Account/Data Deletion