Privacy Policy
Last updated: 2026-02-23
gollog ("the App") is a personal time-management app that logs your day in 10-minute tiles and provides AI-powered insights. This policy explains what data the App collects, how it is used, and how it is stored.
1. Data We Collect
| Data Type | Details | Collection Method |
|---|---|---|
| Activity logs | 10-minute time-block entries (sleep, work, exercise, meals, etc.) | User input |
| Tasks | Task title, priority, completion status | User input |
| Health & Fitness (optional) | Step count, heart rate, sleep analysis (stages & duration), workout sessions, active energy | Apple HealthKit (read-only) |
| Location (optional) | Latitude, longitude, place name. May be collected in the background when permission is granted. | Core Location |
| Calendar (optional) | Event title, time | Apple EventKit (read-only) |
| Voice & audio (optional) | Voice recordings during voice-chat sessions | Microphone & Speech Recognition |
| Device context (optional) | Wi-Fi network name (SSID), charging status, battery level | System APIs (automatic) |
| Notifications | Push token | System permission |
| Purchases | Subscription status | Apple StoreKit |
The App does not require account registration and does not collect your name, email, or phone number.
2. Apple HealthKit Data
- HealthKit data is accessed in read-only mode. The App does not write data to HealthKit.
- HealthKit data is never used for advertising, marketing, data brokerage, or tracking.
- HealthKit data is never sold to third parties.
- HealthKit data is not stored on iCloud or any server; it is processed on-device only.
- When the AI analysis feature is used, sleep and workout summary text may be included in AI prompts sent to the OpenAI API (see Section 4).
3. Location Data
- Location is used to attach geographic context (place name) to time-block entries and to provide local weather information.
- The App may request "Always" location permission to record location while in the background. You can choose "While Using the App" or deny location access entirely.
- Latitude and longitude are sent to the Open-Meteo API (a free, open-source weather service) to retrieve current weather. No API key or user identifier is included in these requests.
- Location data is stored on-device only and is never used for advertising or tracking.
4. AI Features & Data Processing
The App uses AI to deliver personalised insights based on your time-block data.
| Processing Mode | Description | Data Transmission |
|---|---|---|
| On-device AI | Analysis via Apple Intelligence or local analysis engine | No external transmission |
| Cloud AI (default) | Analysis via OpenAI API through gollog server proxy | Current message and anonymised data summary are sent (see below) |
| User-supplied API key (BYOK) | User enters their own OpenAI key | Sent directly to the user's own OpenAI account (no proxy) |
When using Cloud AI, requests are routed through the gollog server proxy (api.gollog.app). This proxy exists solely for API key protection, billing control, and abuse prevention.
- No conversation storage: The proxy forwards your request to OpenAI and relays the response. It does not store, log, or retain the content of your messages or AI responses.
- What the proxy processes: Only the current message and an anonymised data summary (time-block statistics, sleep/workout summaries) are sent per request. Previous conversation turns are not sent.
- What the proxy records: Device ID (anonymous UUID), request timestamp, token usage count, subscription status. These are used for rate limiting and billing only.
- Log masking: Any server-side error or access logs redact message content. Only metadata (status code, token count, timestamp) is retained.
- Conversation history exists only in the app's volatile memory (RAM). It is not saved to the device's local storage and is not sent to any server.
- When the app is closed or the chat view is dismissed, all conversation history is permanently erased.
- Each AI interaction sends only the current user message and a context summary — no previous conversation turns are included.
Voice chat mode: When using voice chat, audio recordings are sent to OpenAI Whisper (via the proxy in default mode, or directly in BYOK mode) for speech-to-text transcription, and AI responses may be synthesised via OpenAI Text-to-Speech. Temporary audio files are deleted immediately after processing.
Data sent to OpenAI does not include your name, email, or device identifiers. HealthKit data sent to OpenAI is anonymised (summary statistics only, no raw health records). For details on how OpenAI handles API data, see OpenAI API Data Usage Policies.
5. Data Storage & Retention
- Activity logs & tasks: Stored on-device in SwiftData.
- HealthKit data: Processed in device memory only; never persisted in the App's own database.
- API keys & usage counters: Encrypted and stored in the iOS Keychain. Note: Keychain items may persist after the App is uninstalled. To remove them, reset the Keychain via iOS Settings or contact us.
- Voice recordings: Temporary WAV files are created during voice chat and deleted immediately after transcription.
- Retention: All SwiftData records are deleted when the App is uninstalled. Keychain entries may remain (see above).
6. Purpose of Data Use
| Purpose | Applicable |
|---|---|
| App functionality (time logging, location context, sleep/workout display, weather, notifications) | Yes |
| AI-powered personalised insights | Yes |
| Third-party advertising | No |
| Developer advertising or marketing | No |
| Analytics (user behaviour measurement) | No (in-app) |
| Tracking (cross-app data linking) | No |
7. Third-Party Sharing
The App does not sell personal data or share it with data brokers.
| Third Party | Data Shared | Purpose |
|---|---|---|
| OpenAI | Time-block summary, tasks, sleep/workout summary text, voice audio (in voice-chat mode) | AI insight generation, speech-to-text, text-to-speech |
| Open-Meteo | Latitude, longitude | Weather forecast retrieval (no API key or identifier sent) |
| Apple (StoreKit) | Subscription transaction info | In-app purchase processing |
If you configure a custom analysis server (Glogger), time-block data may also be sent to that user-specified HTTPS endpoint.
8. Your Rights
- Access: You can view all recorded data directly within the App.
- Deletion: Uninstalling the App removes all on-device SwiftData records. To clear Keychain items, go to iOS Settings or contact us.
- Revoke permissions: You can revoke HealthKit, Location, Calendar, Microphone, Speech Recognition, and Notification permissions at any time in iOS Settings.
- Contact: For privacy requests, email privacy@gollog.app.
9. Website Analytics
The gollog.app website uses Google Analytics and Microsoft Clarity. These cookies are activated only after user consent and do not apply to the App itself. See our Cookie Policy for details.
10. Children's Privacy
The App does not knowingly collect personal data from children under the age of 14.
11. Changes
If this policy is updated, the revised version will be posted on this page with an updated date.