Legal

Privacy Policy

Last updated July 1, 2026.

1. Who we are

Consiq (“we”, “us”, “our”) provides an accountability platform — a mobile app and companion services — that lets users form small pods, submit proof of commitments, and track a personal accountability score. This policy explains what we collect, why, who we share it with, and the choices you have. If you have any questions, email support@consiq.app.

2. Data we collect

Account information: name, email address, password (hashed), and optional profile photo. Content you create: commitments, check-ins, photo or short-video proof, notes, comments, reactions, and pod messages. Usage data: pages viewed, features used, streak activity, in-app events. Device data: device model, OS version, app version, language, time zone, crash logs, and a randomly generated device identifier. Approximate location: derived from IP address for security, fraud prevention, and rough analytics. We do not collect precise GPS location. Payment data: if you subscribe to Premium, Google Play or Apple handles the transaction. We receive a purchase token and subscription status; we do not receive or store your card number.

3. Permissions we request

Camera and photo library: to let you capture or attach proof of a commitment. Notifications: to remind you about check-in windows and pod activity. Storage: to cache proof uploads before they reach our server. Each permission is optional and requested only when the related feature is used.

4. How we use your data

We use your data to (a) operate the service — sign you in, show your pods, calculate your accountability score, deliver notifications; (b) keep the service safe — detect abuse, spam, and unauthorized access; (c) improve the product — understand which features work and fix crashes; (d) communicate with you — transactional email such as receipts, security alerts, and (only if you opt in) product updates. We do not sell personal data. We do not use your proof uploads to train advertising models or for any advertising purpose.

5. Legal bases (EU/UK users)

Where GDPR applies, we process your data under one of these legal bases: performance of a contract (running the app you signed up for), our legitimate interests (security, product improvement, fraud prevention), your consent (marketing email, optional analytics where required), and to comply with a legal obligation.

6. Who can see your content

Proof uploads, notes, and reactions are visible only to members of the pod you posted them in. Your display name, avatar, accountability score, and current streak are visible to pod-mates. If you post in a public discovery area, that content is visible to any signed-in user. We never make your email address public.

7. Third-party service providers

We share the minimum data needed with vetted processors: Amazon Web Services (hosting, storage, backups), Cloudflare (CDN, DDoS protection), Stripe and Google Play / Apple App Store (payments and subscription management), Postmark (transactional email), OneSignal (push notifications), Sentry (crash and error reporting), and PostHog (privacy-preserving product analytics). Each is bound by a data-processing agreement and may only use your data for the purposes we specify.

8. Data transfers

Consiq is operated from the United States. If you use the app from outside the US, your data will be transferred to and processed in the US and any region where our processors operate. Where required, we rely on Standard Contractual Clauses or equivalent safeguards.

9. Encryption and security

All traffic between the app and our servers is encrypted with HTTPS/TLS. Proof uploads are encrypted at rest. Passwords are hashed with a modern algorithm (Argon2). We keep encrypted backups for 30 days. No system is perfectly secure, but we treat every incident seriously — if a breach affects you, we will notify you as required by law.

10. Data retention

Account data is kept while your account is active. If you delete your account, we remove your personal data and content within 30 days, except (a) records we must keep for tax, fraud, or legal reasons, and (b) aggregated statistics that no longer identify you. Crash and diagnostic logs are retained for 90 days.

11. Your rights

You can: access and export your data (Me → Data & Privacy → Download My Data), correct inaccurate information (Me → Profile), delete your account (Me → Account Settings → Delete account, or visit /delete-account), object to or restrict certain processing, and withdraw consent for optional analytics or marketing at any time. To exercise a right or file a complaint, email support@consiq.app. EU/UK users may also complain to their local data protection authority. California users have additional CCPA rights — we do not “sell” or “share” personal information as defined by the CCPA.

12. Children

Consiq is not directed at children under 13 (or under 16 where required by local law). We do not knowingly collect personal information from children. If you believe a child has created an account, email support@consiq.app and we will delete it.

13. Advertising

Consiq does not display third-party advertising and does not participate in advertising networks. We do not use advertising identifiers (IDFA / GAID) for ads.

14. Changes to this policy

If we make a material change to this policy, we will post the update here and notify you in the app at least 30 days before the change takes effect. Minor edits (typos, clarifications) may be made without notice.

15. Contact

Privacy questions, data requests, and complaints: support@consiq.app. We respond within 5 business days.