Privacy Policy

Last updated: June 29, 2026

Overview

Darwin ("the app") is built by Phoenix Strategies LLC. This policy explains how Darwin handles information when you use the app, public website, support pages, and optional connected features. The short version: Darwin uses your data to run the app, sync your account, process purchases, improve reliability, and support the features you choose to enable. We do not sell your information.

What We Collect

Account information: When you sign in with Apple, Google, or email, Darwin receives a unique account identifier and, if provided by the sign-in provider, your email address and display name. Darwin uses this to associate synced data, subscription entitlements, support requests, and account deletion workflows with your account.

User content: Tasks, goals, rankings, pairwise choices, task notes, schedules, planned blocks, focus sessions, imported reminders, and related settings are stored locally on your device and, for signed-in accounts, synced with Firebase/Firestore so your account can work across devices.

Purchases: If you buy, restore, or manage Darwin Pro, the App Store and RevenueCat process purchase and entitlement information. Darwin stores a limited subscription entitlement mirror linked to your account so paid features can be enabled and restored.

Analytics and diagnostics: Darwin uses PostHog for product analytics and Sentry for crash and performance diagnostics when the relevant privacy controls are enabled. Analytics and diagnostic payloads are sanitized to avoid raw task text, passwords, tokens, email addresses, and similar sensitive values. Session replay is off by default and must be enabled separately.

Support communications: If you email support, we receive the information you choose to include, such as your email address, app version, device details, screenshots, and issue description.

Website visits: The public website may generate standard hosting logs, such as request path, timestamp, IP address, browser, and device information, for security, reliability, and abuse prevention.

What We Don't Collect

Authentication

Sign-in is handled by Firebase Authentication. Apple and Google sign-in are handled by those providers directly. For email sign-in, Firebase sends a passwordless sign-in link. Darwin does not see or store your password.

iOS Reminders Access

If you choose to import tasks from iOS Reminders, the app requests permission to read your Reminders. This data is read once during import and is not stored or transmitted beyond creating tasks in your Darwin account. You can revoke this permission at any time in iOS Settings.

Google Calendar Sync

If you connect Google Calendar, Darwin requests the Google Calendar events scope through Google Sign-In and syncs Darwin-owned planned blocks only. Task titles, start and end times, timezone, Darwin block IDs, and Darwin task IDs may be written to the selected calendar event. You can disconnect calendar access in the app or through your Google account settings.

Voice Capture

If you use voice-to-task capture, Darwin requests microphone and speech recognition access. Speech recognition is configured for on-device transcription when available. Audio is not sent to Darwin servers for transcription; the transcript becomes task text only when you choose to save it.

On-Device AI

Darwin's launch AI features are local and on-device. The app may download an optional local model file from Hugging Face so it can run supported AI features on your device. Model download requests do not include your task content. Darwin does not send task text, rankings, notes, or voice transcripts to hosted AI inference services.

Local Notifications

If you enable ritual reminders or similar notification features, notification content is generated locally and scheduled on your device. Darwin does not use push notification tokens for these local reminders.

Data Storage

Signed-in account data is stored in Google Cloud Firestore through Firebase. Darwin also stores small local mirrors, settings, secure auth/session values, and rebuildable local projections on your device so the app can launch quickly and work reliably. Data sent to Firebase is encrypted in transit and at rest using Firebase and Google Cloud protections.

Data Retention

Your synced data is retained while your account remains active unless you delete it sooner. Deleted tasks may be retained briefly for undo and cleanup flows based on your retention settings. You can purge app data or delete your account from Settings. Account deletion removes your Firebase Auth account and associated Firestore data handled by the deletion workflow. Some provider logs, purchase records, security records, and backups may remain for limited periods as required for legal, tax, fraud prevention, security, or operational reasons.

Your Choices

Third-Party Services

International Transfers

Darwin and its service providers may process information in the United States and other countries where those providers operate. By using Darwin, you understand that information may be processed outside your state, province, or country.

Children's Privacy

Darwin is not directed at children under 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal information, please contact us and we will delete it.

Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated revision date. Continued use of the app after changes constitutes acceptance of the updated policy.

Contact

Questions about this policy? Email us at sean@phoenixstrategies.ai.