← Back to JUST START

PRIVACY POLICY

Last updated: January 26, 2026
Developer: UpbelStudio
App: JUST START

At UpbelStudio, we are committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, share, and protect your information when you use JUST START.

1. Information We Collect

1.1 Information You Provide

Account Information:

  • Full name
  • Email address
  • Password (encrypted)
  • Google profile information (if using Google Sign-In)
  • Notification preferences

Challenge & Progress Data:

  • Challenges started, active, and completed
  • Daily actions completed or missed
  • Energy level and performance stats
  • History of completed days
  • Consecutive day streaks
  • Challenge start and end dates

Subscription Information:

  • Plan type (Trial/Premium)
  • Subscription status
  • Payment history (processed by third parties)
  • Trial usage

1.2 Information Collected Automatically

Usage Data:

  • Access dates and times
  • Features used
  • Interactions with the app
  • Session durations
  • Navigation between screens
  • App performance metrics

Device Information:

  • Device type and model
  • Operating system and version
  • Device identifiers
  • Language settings
  • Time zone

Notification Data:

  • Notification preferences
  • Daily reminder times
  • History of sent notifications
  • Interactions with notifications

1.3 Third-Party Information

Authentication Providers:

  • If you use Google Sign-In, we receive basic profile information (name, email, avatar)

Payment Processors:

  • Transaction information from Google Play Store and Apple App Store
  • Subscription status and renewals
  • We do not receive or store credit card numbers

1.4 User-Generated Content (UGC) and Photos

What we may ask: When you choose to create a "Social Proof" (for example, sharing a photo or screenshot of a completed daily action), the app may request permission to access your device camera and/or photo gallery. We only request these permissions at the moment you opt in to create or share UGC.

How images are handled: Photos or screenshots used for Social Proof are processed locally on your device to prepare them for sharing (app templates, overlays, or export). By default, we do not upload, store, or retain these images on our servers or in our database. When you share an image, the app typically invokes your device's share flow or a third-party share target; we do not keep a copy after the sharing action completes unless you explicitly choose to upload or save a copy.

User control: You can revoke camera or gallery permissions at any time via your device settings. If you choose not to grant permission, the Social Proof feature will not be available.

2. How We Use Your Information

2.1 Provide and Improve the Service

  • Create and maintain your account
  • Manage active and completed challenges
  • Calculate and update your energy and progress
  • Process subscriptions and manage premium access
  • Provide customer support
  • Improve app functionality
  • Fix bugs and optimize performance

2.2 Personalization with AI

  • Generate personalized notifications based on your progress
  • Adapt Coach messages to your behavior
  • Detect usage patterns to improve experience
  • Send reminders at your configured times
  • Provide contextual motivation based on streaks and energy

2.3 Communication

  • Send important account-related notifications
  • Inform you about service or policy changes
  • Respond to support inquiries
  • Send daily reminders if enabled
  • Send product updates (with your consent)

2.4 Analytics and Improvement

  • Analyze aggregated usage patterns
  • Identify and fix technical issues
  • Develop new features
  • Research challenge effectiveness
  • Improve energy and progression algorithms

2.5 Security and Compliance

  • Detect and prevent fraud
  • Protect against malicious activity
  • Meet legal obligations
  • Enforce our Terms & Conditions
  • Prevent abuse of the free trial system

3. How We Share Your Information

3.1 We DO NOT Sell Your Data

We never sell, rent, or trade your personal information to third parties.

3.2 We Share with Service Providers

We share data with trusted third parties who help us operate the app:

Supabase (Database & Authentication):

Google Sign-In (Optional Authentication):

RevenueCat (Subscription Management):

Apple/Google (Payment Processing):

  • Subscription payment processing
  • In-app purchase management
  • Receipt validation

AI Services (Notification Generation):

  • Process context to generate personalized messages
  • We do not share personally identifiable information
  • We only send anonymized progress and behavior data

3.3 User-Generated Content & Social Sharing

The Social Proof feature allows you to capture or select images as evidence of completed daily actions and share them to social networks using app-provided templates. Sharing is initiated by you. By default, we do not upload, store, or retain these images on our servers or in our database; they are handled locally and deleted immediately after the sharing process.

How sharing works: When you share, the app may invoke your device's native share sheet or pass the prepared image to a third-party app (social network or messaging app). Once you hand off the content to a third-party app, that app's privacy practices apply.

Temporary processing: To create app templates (overlays, text, cropping), the image may be temporarily written to local storage or a transient cache; these temporary files are deleted immediately after use. We may collect non-identifiable analytics about the usage of the Social Proof feature (for example, whether the feature was used and the number of shares), but this analytics data does not include the image files themselves.

3.4 Legal Requirements

We may disclose your information if:

  • Required by law or legal process
  • Necessary to protect our legal rights
  • Necessary to prevent fraud or abuse
  • Necessary to protect user safety
  • Ordered by competent authorities

3.5 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred. We will notify you before your information becomes subject to a different privacy policy.

4. Data Retention

4.1 Active Account Data

We retain your data while your account is active and as needed to provide the service.

4.2 Data After Account Deletion

When you delete your account:

  • We remove your personally identifiable information within 30 days
  • Completed challenges may be retained in an anonymized form for analysis
  • We may retain aggregated, non-identifiable statistics
  • We may retain certain information if required by law (up to 90 days)

4.3 Completed Challenge History

  • Completed challenges are kept while the account is active
  • Upon account deletion, history is anonymized or removed per your request
  • Aggregated statistics (non-personal) may be retained indefinitely

4.4 Backup Data

Backups are deleted according to our standard retention cycle (maximum 90 days).

4.5 User-Generated Content (UGC) Images

  • Images captured or selected for Social Proof are processed locally on your device and are not uploaded to our servers by default.
  • After you complete a sharing action, the app deletes temporary copies used to process the image. We do not retain the images in our database.
  • If you explicitly choose to upload or save an image to a backup or cloud service provided by a third party, that image may be stored according to that third party's policies.
  • Backups and server-side retention policies do not include UGC images created only for Social Proof unless you explicitly save them to an account-backed feature that you enable.

5. Data Security

5.1 Security Measures

We implement technical and organizational security measures:

Encryption:

  • Data in transit (HTTPS/TLS)
  • Data at rest (database encryption)
  • Passwords hashed with secure algorithms (bcrypt)
  • Encrypted session tokens

Access Control:

  • Two-factor authentication available (Google Sign-In)
  • Limited access to personal data by the team
  • Regular security audits
  • Role-based access policies

Monitoring:

  • Suspicious activity detection
  • Access and audit logs
  • Automated security alerts
  • Rapid incident response

5.2 Limitations

No system is 100% secure. While we take steps to protect your data, we cannot guarantee absolute security. We commit to using industry best practices to safeguard your information.

6. Your Rights & Choices

6.1 Access and Portability

  • You can view your profile information in the app
  • You can request a copy of your personal data
  • We provide data in a machine-readable JSON format
  • You can export your challenge history

6.2 Correction

  • You can update your profile information at any time
  • You can correct inaccurate information from settings
  • You can change your name, email, and preferences

6.3 Deletion

  • You can delete your account from the app settings
  • You can request deletion of specific data
  • Deletion is permanent and irreversible
  • Completed challenge history will be anonymized or removed

6.4 Objection and Restriction

  • You can disable notifications at any time
  • You can opt out of marketing communications
  • You can limit certain uses of your data
  • You can revoke Google Sign-In permissions

6.5 Withdraw Consent

  • You may withdraw consent at any time
  • This will not affect prior processing based on earlier consent
  • Some features may be unavailable without certain data

6.6 Lodge a Complaint

  • You can contact us at upbelstudio.help@gmail.com
  • You may file a complaint with your local data protection authority

7. Children's Privacy

7.1 Minimum Age

JUST START is not directed to children under 13 years of age. We do not knowingly collect information from children under 13.

7.2 Parental Consent

If you are between 13 and 18, you must have a parent or guardian's permission to use the app.

7.3 Notification

If we discover that we have collected information from a child under 13 without consent, we will delete that information promptly.

8. International Transfers

Your data may be transferred and processed on servers located outside your country of residence. We take steps to ensure your data receives adequate protection in accordance with this policy and applicable law.

9. Cookies & Similar Technologies

9.1 Use of Tracking Technologies

We use cookies and similar technologies to:

  • Keep your session active
  • Remember your notification preferences
  • Analyze app usage
  • Improve performance

9.2 Control

You can control these technologies through your device settings. Disabling them may affect app functionality.

10. Changes to This Policy

10.1 Updates

We may update this Privacy Policy periodically. The "Last updated" date indicates the most recent change.

10.2 Notification

We will notify you of significant changes through:

  • In-app notification
  • Email (if provided)
  • Updating the Last updated date

10.3 Continued Acceptance

Your continued use of the app after changes constitutes your acceptance of the updated policy.

11. Region-Specific Privacy

11.1 Users in the European Economic Area (EEA) - GDPR

If you are located in the EEA, you have additional rights under the GDPR:

  • Right to erasure (complete deletion of data)
  • Right to data portability
  • Right to object to processing
  • Right to lodge a complaint with a supervisory authority
  • Right to withdraw consent at any time

Legal Bases for Processing:

  • Contract: To provide the challenge service
  • Consent: For personalized notifications and marketing
  • Legitimate Interest: To improve the service and prevent fraud
  • Legal Obligation: To comply with legal requirements

11.2 California Residents (CCPA)

If you are a California resident, you have additional rights:

  • Right to know what information we collect
  • Right to delete personal information
  • Right to opt-out of sale (we do not sell data)
  • Right to non-discrimination for exercising privacy rights

11.3 Other Regional Rights

We comply with applicable privacy laws in your jurisdiction, including data protection laws in Latin America.

12. Use of AI

12.1 AI-Generated Notifications

  • We use AI to generate personalized Coach notifications
  • Messages are based on your progress, energy, streaks, and usage patterns
  • We do not perform automated decision-making that significantly affects your rights
  • You may disable notifications at any time

12.2 Data Used

To generate notifications, we process:

  • Your current energy level
  • Consecutive days completed
  • History of completed/missed actions
  • Current challenge phase
  • Time of day and time zone

12.3 Transparency

AI-generated messages are clearly identified as coming from the "Coach". We do not present them as human communications.

13. Contact

If you have questions about this Privacy Policy or wish to exercise your rights, contact us:

Email: upbelstudio.help@gmail.com
Developer: UpbelStudio
Location: Lima, Peru

Data Protection Officer:
Email: upbelstudio.help@gmail.com

Response Time:
We aim to respond to requests within 30 days.

14. Additional Information

14.1 Automated Decision-Making

We do not use automated decision-making that produces legal or similarly significant effects for you. Coach notifications are motivational and informational only.

14.2 Data Sources

We collect data directly from you (registration, app usage) and automatically through app usage. We do not buy third-party data.

14.3 Categories of Personal Data

By legal classification, we process:

  • Identification Data: Name, email
  • Contact Data: Email, notification preferences
  • Usage Data: Challenge progress, statistics
  • Technical Data: Device info, logs
  • Transaction Data: Subscription status (no financial data)

By using JUST START, you acknowledge that you have read, understood, and agree to this Privacy Policy.