Privacy Policy
Effective date: May 12, 2026
This Privacy Policy explains how Anivow ("we", "us", "our") collects, uses, stores, and protects your information when you use the Anivow iOS application ("App"). By creating an account or using the App, you agree to the practices described here.
1. Who We Are
Anivow is an addiction recovery and self-improvement application available on the Apple App Store. The service is operated by the Anivow development team. For any privacy-related questions, contact us at support@anivow.com.
2. Data We Collect
We collect only the data necessary to provide and improve the App's features. We do not sell your data.
2.1 Account & Profile Data
| Email address | Used for authentication via Supabase Auth. |
| Username & display name | Shown on your profile and in community features. |
| Profile avatar | Optional photo you upload; stored on Supabase Storage. |
| Account dates | Account creation date and last active date. |
2.2 Sensitive Health & Behavioral Data
Because Anivow is a recovery app, it processes data that may be considered sensitive health information. This data is stored on your account and never sold or shared for advertising purposes.
| Addiction type | The category of addiction you select (e.g., pornography, alcohol, drugs, social media, gaming). |
| Triggers & severity | Personal triggers and severity level you declare during onboarding. |
| Relapse events | Relapse timestamps and relapse count. |
| Streak history | Days sober, longest streak, and relapse count. |
| Mood check-ins | Daily emotional state you log inside the App. |
| Recovery milestones | Progress through the brain recovery timeline. |
| XP, level & companion stage | Derived from your recovery activity to power gamification features. |
2.3 Community & User-Generated Content
If you use social features, we store the content you create:
- Posts, photos, and comments published to the community feed.
- Private messages exchanged with friends.
- Friend connections and mentor/mentee relationships.
- Arena challenge participation and recovery scores.
Content you post publicly (feed, comments) is visible to other users of the App. Private messages are visible only to the participants of the conversation.
2.4 Device & Technical Data
We do not use third-party analytics SDKs (no Firebase Analytics, Amplitude, Mixpanel, etc.). We do not use advertising SDKs or collect your IDFA. Standard technical data (device type, OS version) may be collected by Apple or our infrastructure provider (Supabase) as part of normal network operations.
3. How We Use Your Data
| Provide the App | Authenticate your account, display streaks, track recovery progress, and power community features. |
| AI Companion messages | Generate personalised motivational messages based on your current recovery data (see §6). |
| Push notifications | Send daily reminders, task nudges, and social notifications (friend requests, messages) if you opt in. |
| Subscription management | Validate purchases and manage your subscription status via RevenueCat. |
| Safety & integrity | Detect abuse, enforce community guidelines, and prevent fraud. |
| App improvement | Identify bugs and improve performance based on usage patterns. |
4. Third-Party Services
We work with the following third-party processors. Each receives only the data necessary for their function.
Supabase (supabase.com)
Our primary backend. Supabase handles user authentication, stores all App data (PostgreSQL), and hosts user-uploaded files (avatars, community photos). Data may be stored in EU or US data centres depending on our project region. Supabase is SOC 2 compliant.
RevenueCat (revenuecat.com)
Manages subscription entitlements, purchase validation, and free trial handling. RevenueCat receives your App Store receipt and assigns an anonymous subscriber ID. We do not store payment card data — all payments are processed by Apple.
Expo Notifications / Apple Push Notification Service (APNs)
We use Expo's notification infrastructure to send push notifications through Apple's APNs. A push token is stored to identify your device for notification delivery. No message content is stored on notification servers beyond what is needed to deliver the notification.
Apple App Store
All in-app purchases and auto-renewable subscriptions are processed by Apple under their own privacy policy. We do not have access to your payment card details.
5. AI Companion
The App includes an AI companion ("CompanionAI") that sends personalised motivational messages. These messages are generated using your recovery data (streak, level, mood check-ins) as context, potentially via a third-party AI API. No conversation history with the AI companion is stored beyond your current session — messages are not retained after you close the App.
We will update this section if we change the AI provider or data retention practices.
6. Device Permissions
| Camera / Photo Library | Used only when you choose to upload a profile photo or community post image. We do not access your camera or photos without your explicit action. |
| Push Notifications | Used for daily recovery reminders, task nudges, and social notifications. You can disable notifications at any time in iOS Settings → Notifications → Anivow. |
We do not request access to your location, contacts, microphone, biometrics, Face ID, Bluetooth, or Apple HealthKit.
7. Subscriptions & Payments
Anivow offers a free tier and an auto-renewable subscription (monthly / annual) with a free trial period. All billing is handled by Apple through the App Store. You may cancel, manage, or restore your subscription at any time via your Apple ID account settings. We do not store your payment card information on our servers.
8. Data Retention & Deletion
We retain your data for as long as your account is active. You may delete your account at any time from within the App (Settings → Delete account).
Upon deletion, we will permanently purge from Supabase all personal data associated with your account, including:
- Account and profile information.
- Streak history, relapse data, mood logs, and recovery milestones.
- Addiction type, triggers, and severity data.
- Community posts, comments, and private messages.
- Uploaded photos (avatar and community images).
Some data (e.g., subscription history) may be retained by Apple or RevenueCat under their own retention policies, which are outside our control.
9. Your Rights
Depending on your jurisdiction, you may have the following rights regarding your personal data:
| Access | Request a copy of the personal data we hold about you. |
| Correction | Request that inaccurate or incomplete data be corrected. |
| Deletion | Request deletion of your account and all associated data (see §8). |
| Portability | Request your data in a machine-readable format where technically feasible. |
| Objection / Restriction | Object to or ask us to restrict certain processing activities. |
| Withdraw consent | Where processing is based on consent, withdraw it at any time without affecting prior processing. |
To exercise any of these rights, contact us at support@anivow.com. We will respond within 30 days.
If you are in the European Economic Area or United Kingdom, you also have the right to lodge a complaint with your local data protection authority.
10. Children's Privacy
Anivow is rated 17+ on the Apple App Store and is not directed at children under the age of 13. We do not knowingly collect personal data from children under 13. If you believe a child under 13 has created an account, please contact us immediately at support@anivow.com and we will delete the account promptly.
11. Data Security
All data transmitted between the App and our servers is encrypted in transit via HTTPS/TLS. Data at rest is protected by Supabase's infrastructure-level encryption. We do not use non-exempt encryption for App Store purposes (ITSAppUsesNonExemptEncryption: false).
While we take reasonable technical and organisational measures to protect your data, no system is completely immune to security risks. Please use a strong, unique password for your account.
12. International Data Transfers
Your data may be processed and stored on servers located in the United States or the European Union depending on our Supabase project region. RevenueCat processes purchase receipts on their own servers in the United States. By using Anivow, you consent to these cross-border data transfers.
13. Changes to This Policy
We may update this Privacy Policy from time to time. When we make material changes, we will update the effective date at the top of this page and, where required by law, notify you via in-app notice or email. Continued use of the App after the updated policy takes effect constitutes your acceptance of the changes.
14. Contact Us
If you have any questions, requests, or concerns about this Privacy Policy or our data practices, please contact us:
Anivow
Email: support@anivow.com