Privacy Policy

Effective date: August 30, 2025

This Privacy Policy explains how Lock In (“we”, “us”, “our”) collects, uses, and shares information when you use our mobile app and site (“Services”). For questions or requests, use the Contact Us page or the in‑app Send Feedback option.

Information we collect

• Information you provide

  • Account: email (for login and support), date of birth (to verify age 13+ requirement).

  • Verification: one‑time verification codes (expire in 10 minutes).

  • Messages: content you send via Contact Us or Send Feedback.

• App preferences and settings (synced to your account)

  • Selected apps to block/allow (Android: package names; iOS: selection tokens); whitelist/blacklist mode.

  • Timer/stopwatch mode, session duration, hold‑to‑unlock delay.

  • Ad preferences (e.g., interstitial/rewarded toggles), theme/customization items.

• Focus activity and usage metrics (to power streaks/stats)

  • Sessions (duration and timestamp), hourly totals (dailyEntries), streak counts and dates.

  • Android only: attempts to open blocked apps (package name + timestamp).

• Device/diagnostics and consent

  • Device info (model, OS), app version, crash/performance diagnostics.

  • Consent signals (Google UMP on Android; iOS ATT status).

• Advertising and measurement

  • Via Google AdMob/Google services: IP address, coarse location from IP, ad identifiers (IDFA/AAID where permitted), ad impressions/clicks, measurement.

How we use information

• Provide and improve core features (app blocking, sync, sessions, streaks, stats).

• Authentication and account management (including verification emails).

• Analytics/diagnostics (stability, performance, feature improvement).

• Advertising and measurement (personalized or non‑personalized per your consent).

• Security, fraud prevention, and legal compliance.

Legal bases (EEA/UK where applicable)

• Consent (personalized ads; certain analytics).

• Contract (to deliver the Services).

• Legitimate interests (app security, non‑sensitive analytics).

• Legal obligations.

Your choices and controls

• Manage consent: Settings > Privacy > Manage Ad Preferences and Reset Ad Consent (UMP/ATT).

• Personalized vs non‑personalized ads: honored per your consent/device settings.

• Data collection toggle: turning it off stops saving new session/time metrics. Note: essential data for functionality (e.g., your selected apps to block/allow, required settings) may still sync to deliver the feature and cross‑device consistency.

Sharing and processors

We don’t sell personal information. We use processors to operate the Services:

• Google Firebase (Auth, Realtime Database/Firestore, diagnostics).

• Google AdMob (ads delivery, consent, measurement).

• Email/communication services for verification and support.

We may disclose information if required by law, to protect rights/safety, or in connection with a business transaction.

Data retention

• Account/profile and synced preferences: retained while your account is active.

• Age verification: date of birth is processed to verify age 13+ but we only store "ageOver13: true" in our records.

• Verification codes: stored in Firestore and expire after 10 minutes; removed after use or on failure.

• Usage metrics and diagnostics: retained only as needed for functionality, analysis, and legal obligations.

Security

We use reasonable safeguards to protect information. No method is 100% secure.

International transfers

Your information may be processed in other countries. Where required, we rely on appropriate safeguards.

Your rights

Depending on your location, you may request access, correction, deletion, portability, or withdraw consent. Use the Contact Us page or in‑app Send Feedback; we may verify your identity.

US state privacy (where applicable):

• We do not sell personal information.

• You can opt out of personalized ads by disabling ad personalization through consent controls and device settings.

• Access/deletion requests: Contact Us page or in‑app Send Feedback.

Children’s privacy

We design Lock In for a general audience and it may be useful to younger users. We do not knowingly collect personal information from children under the age required by law in their region (e.g., under 13 in the U.S.) without verifiable parental consent. If you believe a child has provided personal information, please use the Contact Us page or the in‑app Send Feedback option so we can review and delete the information where required.

If you are under the age where consent is required in your region, use the app only with a parent or guardian’s permission. Ad personalization and data collection are governed by your in‑app consent choices (UMP/ATT) and your device settings; if consent is not granted, we show non‑personalized ads where applicable and limit identifiers accordingly.

Permissions we request and why

• Android: Usage Access and “Display over other apps” to detect and overlay selected distracting apps.

• iOS: App Tracking Transparency (ads consent); other platform APIs as needed for features.

Declining permissions may limit certain features.

Third‑party links

We’re not responsible for third‑party sites/apps. Review their policies.

Changes

We may update this policy and will update the “Effective date” above; significant changes may be communicated in‑app.