Privacy Policy

Mushtra collects limited data to improve the app experience:

What We Collect

• Device Identifier for Vendors (IDFV): An anonymous identifier assigned by Apple, unique to our app on your device. This is not an advertising ID and cannot track you across other apps.
• Anonymous analytics events: We send anonymous usage events (such as app launches, onboarding completion, paywall views, and feature interactions) to our analytics service at analytics.overx.ai. These events are not linked to your identity.
• Apple Search Ads attribution token: If you installed the app from an Apple Search Ad, we receive an attribution token to measure ad effectiveness. This token does not contain personal information.
• Anonymous identifier: A randomly generated identifier used to group analytics events. It is not linked to your Apple ID, name, or any personal information.
• Sign-in account identifier (optional, opt-in only): If you enable Cloud Sync (a premium feature), you sign in with Apple or Google. We receive only the provider-issued account identifier and your email if you choose to share it. Apple’s private relay email is honored. You can sign out and delete your account at any time from Settings → Account.

What We Do Not Collect

• Phone number or other personal contact information
• Location data
• Advertising IDs (IDFA)
• Cookies or web tracking technologies

We do not use advertising networks or ad-related SDKs. The app contains no advertising code.

Mushtra stores the following data locally on your device:

• Habits and check-ins: The habits you create (name, type, color, schedule, optional threshold) and the daily check-ins you record.
• Preferences: Your app settings — language, week-start day, reminder time, default theme, sound and haptic toggles.
• Device identifier: An anonymous identifier kept securely in the iOS Keychain so the app can recognize this device across launches. It is not shared with third parties.

This data is stored using Apple’s standard on-device storage frameworks. We have no access to this data unless you turn on Cloud Sync (see Section 3). It is encrypted by Apple’s device-level encryption and is accessible only to you.

The Mushtra home-screen widget reads cached habit and check-in data from the main app via App Groups (shared on-device storage). No additional data collection occurs through the widget — it simply displays information already stored locally by the main app.

Cloud Sync is opt-in and available only with a premium subscription. When enabled:

• You sign in with Apple or Google through our authentication service at auth.overx.ai.
• Your habits and check-ins are uploaded to api.overx.ai so they can be replicated to your other devices (for example, your iPad).
• All data is encrypted in transit using TLS.
• Sign-in sessions are tied to your device and expire after a period of inactivity. We automatically end any session that looks misused.

You can disable Cloud Sync at any time from Settings → Sync → Sign out. Disabling stops further uploads from this device but does not by itself delete data already on our servers — to delete server data, use Settings → Account → Delete account.

If you do not enable Cloud Sync, none of your habits or check-ins ever leave your device.

Mushtra offers a free tier with optional premium features available through in-app subscription. Subscriptions are managed through RevenueCat, a third-party subscription management platform. RevenueCat receives an anonymous app user ID and subscription status; it does not receive your name, email, or payment details. All payment processing is handled by Apple through the App Store. We do not receive, process, or store any payment information, including credit card numbers, billing addresses, or Apple ID credentials. All purchase transactions are governed by Apple’s terms and privacy policies.

Mushtra integrates with the following third-party services in addition to Apple’s native frameworks (StoreKit, App Groups):

• RevenueCat SDK: Used for subscription management and entitlement verification. RevenueCat receives anonymous app user IDs and subscription status. It does not receive personal information or payment details.
• analytics.overx.ai: Our first-party analytics service that receives anonymous usage events, IDFV, the anonymous identifier, and Apple Search Ads attribution tokens. No personal information is sent to this service.
• api.overx.ai: Our API service used for the support contact form, in-app announcements, and (if enabled) Cloud Sync of your habits and check-ins.
• auth.overx.ai: Our authentication service used only when you choose to enable Cloud Sync. It bridges Sign in with Apple and Sign in with Google to issue a session for your device.

There are no advertising networks, no social media integrations, and no ad-related data processors.

In accordance with Apple’s App Store requirements, we declare our data practices through Apple’s privacy nutrition labels:

• Data Used to Track You: None.
• Data Linked to You: Email (only if you opt in to Cloud Sync and choose to share it).
• Data Not Linked to You: Device ID (IDFV), Product Interaction (anonymous usage events), Purchase History (subscription status via RevenueCat).

We recommend reviewing the App Store listing for the most current privacy label information.

If you installed Mushtra after seeing an Apple Search Ads campaign, Apple shares an anonymous attribution token with us so we can measure which campaigns work. The token contains no personal information and cannot be used to identify you. Apple does not require an App Tracking Transparency prompt for this mechanism because it does not involve cross-app tracking.

Mushtra does not knowingly collect personal information from children under the age of 13 (or the applicable age in your jurisdiction, such as 16 in the European Economic Area under GDPR). Because Mushtra collects very little personal information from any user, it does not knowingly process children’s data. If you believe a child has somehow provided personal information through the App, please contact us and we will investigate promptly.

Because Mushtra stores most data on your device, primary data security is handled by Apple’s built-in protections, including hardware-level encryption on iOS devices. Our analytics service (analytics.overx.ai), authentication service (auth.overx.ai), and API service (api.overx.ai) are hosted on secure infrastructure with encryption in transit (TLS) and appropriate access controls. Anonymous analytics data stored on our servers does not contain personally identifiable information.

Anonymous analytics data collected by our analytics service is retained to help us improve the app. This data is not linked to your identity and does not contain personal information.

Data stored locally on your device persists until you delete it, delete the App, or reset your device. If you enable Cloud Sync, data on our servers persists until you delete your account from Settings → Account → Delete account. Deleted data is purged from active systems promptly and removed from backups within a reasonable retention period.

You have full control over your data at all times.

Anonymous analytics events, authentication requests, and (if Cloud Sync is enabled) habit and check-in data may be transmitted to our servers, which may be located in a different jurisdiction than your own. Anonymous analytics events contain no personally identifiable information. Cloud Sync data is governed by appropriate data protection agreements (including Standard Contractual Clauses for transfers from the EEA). Apple’s authentication services are governed by Apple’s data transfer policies.

Depending on your jurisdiction, you may have rights regarding your personal data under applicable privacy regulations. Mushtra is designed so that you can exercise these rights directly inside the app:

How to Delete Your Account and Data

To delete your account and all associated data: open the app, go to Settings → Account → Delete account, and confirm. This removes all server-side records (if you used Cloud Sync), revokes sign-in sessions, and rotates your anonymous analytics identifier so past events can no longer be associated with a new install. Locally stored habits and check-ins are preserved by default; an optional checkbox on the confirmation screen lets you delete them at the same time. If your device is offline when you confirm, the deletion request is queued and completes automatically when you reconnect.

As a secondary option, you can also uninstall the App from your device, which clears all on-device data; this does not by itself delete server-side data, so the in-app flow above is the recommended primary mechanism.

This applies regardless of whether your rights arise under the General Data Protection Regulation (GDPR), the UK Data Protection Act, the California Consumer Privacy Act (CCPA/CPRA), the Lei Geral de Proteção de Dados (LGPD), or any other applicable privacy regulation.

If you believe that your privacy rights have been violated, you have the right to lodge a complaint with the relevant supervisory authority in your jurisdiction.

Mushtra collects anonymous analytics that are not linked to your identity and cannot be used to track you across apps or websites. Because our analytics are anonymous and not identity-based, “Do Not Track” browser signals do not apply to the app’s data collection. We do not engage in cross-app or cross-site tracking.

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated effective date. If we make material changes to our data practices (such as introducing any form of data collection beyond what is described here), we will notify users through the App at least thirty (30) days before such changes take effect. Your continued use of the App after changes are posted constitutes acceptance of the updated policy.