Privacy Policy

1. Who we are

Robustly is a personal wellness and habit-tracking application. The service is operated as an independent project. When this policy says "we," "us," or "Robustly," that refers to the developer running the service.

If you're using Robustly through your school or another organization, that organization may have additional rules about how your data is handled. Check with them if you're not sure.

2. What we collect

Information you provide

• Account info: email address, password (stored as a salted, peppered hash, never in plain text), and account type (email-based or Google sign-in).
• Profile info: username, display name, and (for users 13 and older) birthday, gender, height, weight, activity level, dietary preferences, and fitness goal.
• Wellness data: whatever you log in the app, including steps, water, sleep hours and times, mood check-ins, journal entries, gratitude entries, meditation sessions, workout reps and form notes, and meal info.
• Photos you upload: if you use the meal scanner, the photo is sent to our AI provider for analysis and is not stored on our servers afterward.
• Support requests: if you contact us, the message you send and the email address you provide.

Information collected automatically

• Technical data: IP address, browser type, and basic request details (logged for security and debugging).
• Usage data: AI requests made today, current streak, XP and level, badges earned.
• Cookies: a single session cookie to keep you logged in. We don't use third-party advertising or tracking cookies.
• Referral source: if you arrive via a tracked link (UTM parameter), we record which campaign brought you here.

What we don't collect

• We don't track your physical location.
• We don't access your contacts, microphone, or camera unless you actively use a feature that requires it.
• We don't sell or rent your data to advertisers or data brokers.
• We don't show advertising in the app.

3. Why we collect it

We use the information above to:

• Run your account and let you log in.
• Track and display your wellness progress.
• Generate personalized missions, AI feedback, and insights (only when you opt in).
• Calculate streaks, levels, badges, and other gamification.
• Send important account emails (verification codes, password resets, security alerts).
• Prevent abuse, fraud, and unauthorized access.
• Debug issues and improve the service.

We do not use your data to train AI models or for any commercial purpose beyond running this service.

4. Third-party services

Robustly uses the following services to operate. Each receives only the minimum information needed for its function:

• Groq - AI inference for missions, journal reflections, meal analysis, and other AI features. When you use an AI feature, the relevant prompt and (for meal scans) the image are sent to Groq for processing. We don't include your email or full identity in these requests.
• Google - for Sign in with Google. We only request your email and basic profile info.
• Resend - for sending account emails (verification, password resets, ticket replies).
• Cloudflare Turnstile - to verify you're not a bot during signup.
• Discord - we use Discord internally to manage support tickets and safety alerts. When you submit a contact form or trigger our safety system (see Section 6), the relevant information is posted to a private Discord channel that only the developer can see.
• Litterbox (catbox.moe) - temporary file hosting (72-hour auto-delete) used only to relay attachments from email replies into our support workflow.

Each of these services has its own privacy policy that governs what they do with the data they receive.

5. AI features

Robustly includes optional AI-powered features. All sensitive AI features are off by default. You enable them yourself in settings. They include:

• Daily mission generation (always on, uses your activity level and goal, no personal identifiers sent)
• Journal reflections (off by default)
• Mood pattern insights (off by default)
• Sleep coach insights (off by default)
• Cross-feature pattern analysis (off by default)
• Meal photo analysis (only runs when you upload a photo)
• AI chat with the "Architect" assistant

When you use an AI feature, the relevant data (e.g. your journal entry, your mood history, your meal photo) is sent to Groq for analysis. The AI provider does not retain this data for training, per their data processing terms.

You can turn any of these features off at any time in settings. Doing so does not delete data you've already logged.

6. Safety monitoring

This is important and we want to be upfront about it.

If you use the AI chat or AI-enabled journal, your messages are checked for language that suggests you might be in a mental health crisis (for example, mentions of suicide or self-harm). We do this in two ways:

1. A keyword check against a list of phrases that indicate possible crisis.
2. A quick AI safety classification.

If either check flags a message, two things happen:

• You are shown crisis resources (the 988 Suicide and Crisis Lifeline) and the AI does not continue the conversation.
• An alert is posted to a private Discord channel that only the developer can see. The alert includes your email, display name, IP address, and the message that triggered it.

This system exists to keep users safe, not to surveil them. The developer does not share these alerts externally and does not use them for any purpose other than user safety.

If you do not want any of your messages checked this way, do not use the AI chat or enable AI journal reflections. The rest of the app will continue to work normally.

7. Users under 13

Robustly takes children's privacy seriously and complies with the Children's Online Privacy Protection Act (COPPA).

During signup, you tell us whether you are 13 or older. If you indicate you are under 13, the app switches to a privacy-protected mode that:

• Does not ask for or collect your real name, birthday, gender, height, or weight.
• Does not give you access to AI chat, journal, mood insights, meal AI, or other AI features.
• Reminds you to use a nickname rather than your real name.
• Limits the app to basic activity tracking, missions, badges, and meditation.

If Robustly is deployed in a school or educational setting, your school may have provided consent on your behalf under COPPA's school authorization exception. In that case, the school is responsible for parental notification and acts as your parent or guardian's representative for these privacy decisions.

If you are a parent or guardian and want to review, change, or delete your child's information, contact us using the information in Section 12.

If we learn that we've collected personal information from a child under 13 outside of these protections, we will delete it.

8. How we protect your data

• Passwords are hashed using a strong algorithm with an additional server-side pepper before storage. We never store or log your plaintext password.
• Traffic to and from the site is encrypted using HTTPS (TLS).
• Sessions are stored in secure, HTTP-only cookies with strict SameSite settings.
• CSRF protection is enforced on all state-changing requests.
• Rate limiting protects against brute-force attacks on login and other sensitive endpoints.
• Two-factor authentication (TOTP authenticator apps and backup codes) is available for any account.
• Reauthentication is required for sensitive actions like changing your email, deleting your account, or modifying 2FA settings.
• Sensitive changes like email updates trigger a notification to your old email address.

No system is perfectly secure. If you discover a security issue, please contact us so we can address it.

9. Your rights and choices

Regardless of where you live, you have the following rights with respect to your data on Robustly:

• Access: see what data we have about you. Most of it is visible in the app itself; contact us for anything else.
• Correction: update your profile, preferences, and logged data at any time from settings.
• Deletion: delete your account and all associated data using the "Delete Account" option in settings. This is permanent and cannot be undone.
• Opt out of AI features: turn off any AI feature in settings. This stops new data from being sent to AI providers.

If you're a California resident, the CCPA gives you additional rights including the right to know what data we collect and the right to non-discrimination for exercising your rights. Robustly does not sell personal information, so the right to opt out of sale doesn't apply, but the rest do. To exercise any of these, contact us.

If you're in the EU/UK, GDPR gives you similar rights including data portability. Contact us to request a copy of your data.

10. How long we keep data

• Account data is kept as long as your account is active.
• When you delete your account, all of your data is permanently deleted from our database immediately. This includes wellness logs, journal entries, friend connections, support tickets, and AI usage history.
• Server access logs may be retained for up to 90 days for security and debugging.
• Email transactional records (delivery confirmations, etc.) are retained by Resend per their retention policy.
• Backups of the database may persist for up to 30 days after deletion before being cycled out.

11. Changes to this policy

We may update this policy from time to time. If we make significant changes, we'll notify you through the app (via the broadcast banner or notification system) before the changes take effect. The "Last updated" date at the top of this page always reflects the current version.

Continuing to use Robustly after changes take effect means you accept the updated policy. If you don't agree with a change, you can delete your account at any time.

12. Contact us

For privacy questions, data requests, or anything else, contact us through the contact page. We aim to respond to all privacy-related requests within 30 days.

If you're a parent or guardian asking about a child's account, please mention that in your message so we can route it appropriately.