Legal

Privacy Policy

Last updated: February 16, 2026

At Winna, privacy is not just a feature — it's the foundation of our architecture. We believe your inner thoughts, goals, and personal development data are deeply private. This policy explains how we protect them.

Our Privacy-First Approach

Winna is built on a privacy-first architecture. Your personal statements, goals, habits, and workout data are stored locally on your device using Apple's Core Data framework. We do not operate cloud servers that store your personal content.

Data We Collect

Data Stored Only on Your Device

The following data never leaves your device and is stored exclusively in your local app storage:

  • Identity, Vision, and Purpose statements
  • Goals, milestones, and progress data
  • Tasks, habits, and routine configurations
  • Workout history and streak data
  • Journal entries and reflections
  • AI coaching interactions and suggestions

Data We May Collect

If you choose to join our waitlist or contact us, we collect:

  • Email address — used solely for waitlist notifications and product updates. Stored securely via Supabase with encryption at rest.

If you subscribe to Winna Pro, Apple handles all payment processing. We receive a transaction confirmation but never your payment details.

On-Device AI Processing

Winna uses on-device AI (Apple Foundation Models on supported devices) to provide coaching suggestions, goal alignment checking, and statement refinement. This processing happens entirely on your device — no raw data is sent to external AI services.

For Pro users who opt into cloud AI features, we use a secure proxy architecture. Your data is transmitted over TLS 1.3, processed in memory only, and never stored on external servers.

Data Security

  • Encryption at rest: All local data is protected with AES-256 encryption via Apple's Data Protection framework.
  • Biometric protection: Optional Face ID / Touch ID lock for app access.
  • No analytics on personal content: We do not analyze, mine, or process the content of your personal statements, goals, or journal entries for any purpose other than providing the app's features to you.
  • Secure logging: No sensitive data appears in logs or crash reports.

Anonymous Analytics

We use privacy-respecting analytics (TelemetryDeck) to understand aggregate usage patterns such as which features are most used and app performance metrics. This data is:

  • Fully anonymous — no personal identifiers
  • Aggregated — we see trends, not individual behavior
  • Used solely to improve the app experience

Error Monitoring

We use Sentry for crash and error monitoring. Error reports are sanitized to remove any personal content before transmission and are used solely to identify and fix bugs.

Third-Party Services

  • Apple (App Store, iCloud): Subject to Apple's privacy policy for purchases and optional iCloud sync.
  • TelemetryDeck: Anonymous, privacy-first analytics. Based in the EU.
  • Sentry: Error monitoring with sanitized data only.
  • Supabase: Waitlist email storage only, with encryption at rest.

Data Retention

Your on-device data persists as long as you use the app. If you delete the app, all local data is permanently removed. Waitlist emails are retained until you unsubscribe or request deletion.

Your Rights

You have the right to:

  • Access your data (it's on your device — you already have it)
  • Delete your data (delete the app, or use in-app data management)
  • Request deletion of your waitlist email
  • Opt out of anonymous analytics

Children's Privacy

Winna is not directed at children under 13. We do not knowingly collect personal information from children.

Changes to This Policy

We may update this policy from time to time. Significant changes will be communicated through the app or via email to waitlist subscribers.

Contact

Questions about privacy? Contact us at privacy@winna.app