Privacy

This is the privacy policy for Intus, an iOS app for habit tracking, journaling, and seasonal reflection. Intus is developed and maintained by Simon Rendón Arango (the “developer”). This policy explains what data Intus handles, where that data lives, and what control you have over it.

In one sentence

Intus is a private journal. Your data lives in your own iCloud, never on the developer’s servers. The only off-device transmissions are to AI providers (Anthropic, Google) so AI features can run, and those happen only when you use a feature that needs them.

What data Intus handles

Intus is designed around the idea that the most important data — your journal, your moods, your reflections — is yours. The app records the following on your device:

• Journal content. Text you write, mood selections, gratitude lines, voice memos, drawings, photos, and links you attach to entries. Stored on-device in SwiftData and mirrored to your iCloud private database.
• Habit logs. Which habits you tap as done, half-done, or skipped, and when.
• Seasonal context. The active “season” you defined (title, intention, colour, duration), past seasons, and AI-generated readings for each.
• HealthKit State of Mind (optional). If you grant HealthKit access, Intus reads recent mood samples to give the AI features context. Mood samples are passed into AI prompts but never stored by Intus.
• Location tags (optional, per entry). If you tap “Tag location” on a journal entry, Intus reads your current location once and stores the place name + coordinates on that entry.
• Apple Journaling Suggestions (optional). When you tap “Suggest” in the new-entry flow, Apple’s system picker offers suggestions based on your photos, calendar events, workouts, etc. Anything you pick is converted into journal blocks.
• App preferences. Notification times, theme selections, Private Mode toggle, mock-mode toggle, and other settings stored in iOS’s UserDefaults.

Where your data lives

• Your device. Local SwiftData store + on-disk media files (photos, voice memos, drawings, video thumbnails).
• Your iCloud private database. Apple’s CloudKit mirrors your SwiftData store to your personal iCloud account. The developer cannot access this. Apple cannot read its contents (it is end-to-end encrypted between your devices).
• Anthropic and Google (transient). When you use a paid AI feature, the prompt context — which may include excerpts from your journal, your habit summary, your active season’s intention, and your name — is sent to the chosen provider so they can generate a response. The response is returned to your device and stored alongside the rest of your data.
• Apple Foundation Models (on-device). Some AI features run entirely on the device’s local model and never transmit any data off the device. Whether a given feature runs on-device or in the cloud is determined by the feature’s nature; “Private Mode” forces every feature on-device.

The developer operates no servers, no analytics pipeline, and no database. There is no developer-side copy of your data.

How AI providers handle your data

When Intus calls Anthropic (Claude) or Google (Gemini), your prompt becomes subject to that provider’s privacy policy. Both providers state that:

• API requests are not used to train future models by default.
• Requests are retained for a limited period for safety / abuse review and then deleted.

Read the providers’ policies for the full terms:

• Anthropic: https://www.anthropic.com/legal/privacy
• Google: https://ai.google.dev/gemini-api/terms

Intus does not send your data to any other third party. There are no advertising SDKs, no analytics SDKs, and no third-party tracking domains in the app.

Apple’s role

Intus uses several Apple frameworks that touch your data inside the device’s sandbox:

• CloudKit / SwiftData — mirrors your data to your iCloud private database.
• HealthKit — read access to mood samples if you grant it; one-way export of journal mood if you opt in.
• CoreLocation — one-shot read when you tap “Tag location”.
• PhotoKit / PHPickerViewController — selecting photos to attach.
• AVFoundation — recording voice memos / extracting video thumbnails.
• PencilKit — drawing input.
• Journaling Suggestions — surfacing suggestions when you tap “Suggest”.
• MetricKit — daily aggregate performance metrics + crash diagnostics delivered to App Store Connect for the developer to triage TestFlight / production crashes. No personal content is included in MetricKit payloads.

All Apple framework data exchanges happen inside iOS’s privacy permission system. You can revoke any permission at any time in iOS Settings → Privacy.

What Intus does NOT do

• No tracking. Intus does not build a profile of you across other apps or websites. The privacy manifest declares NSPrivacyTracking: false.
• No advertising. No ads, no advertising SDKs, no third-party advertising identifiers.
• No analytics. No Mixpanel, Firebase Analytics, Amplitude, etc. The only telemetry is MetricKit (aggregate performance + crash data delivered by Apple).
• No selling of data. The developer does not sell, rent, or trade your data with anyone.
• No data broker pipelines.

Your rights

• Access. Your data is on your device and in your iCloud — you have direct access at any time.
• Export. Intus’s Settings includes an export option that produces a copy of your data.
• Deletion. Deleting the app from your device removes the local store. Removing the Intus container from iCloud (Settings → Apple ID → iCloud → Manage Account Storage → Intus → Delete Data) removes the iCloud copy.
• Permission control. Revoke any iOS permission at any time in Settings → Privacy.
• Private Mode. A toggle in Intus Settings forces every AI feature on-device, preventing any prompt from leaving the device.

If you live in a jurisdiction with specific data-rights legislation (GDPR, CCPA, etc.), the rights above already cover the practical exercise of those rights because the developer holds no copy of your data on which to exercise them. Contact the developer if you need a formal data-subject access response.

Children

Intus is not directed at children under 13. The developer does not knowingly collect data from anyone under 13. If you believe a child has used the app and you want their data removed, contact the developer and the app will be uninstalled / iCloud container deleted from the relevant device.

Changes to this policy

Material changes to this policy will be reflected in the “Last updated” date at the top and announced in the app’s release notes for the version that includes the change. The current policy is always available at the URL referenced from the app’s Settings → About → Privacy.

Contact

Questions, requests, or complaints about privacy:

Simon Rendón Arango
Email: simon@useintus.com

If you are unsatisfied with a response, you may also contact your local data protection authority.