Privacy Policy
Last updated: March 26, 2026 · Effective: March 26, 2026
The short version: AllWeDo is an offline-first family organizer. Your data is stored locally on your device. Our server acts only as a sync relay with no permanent storage. We do not advertise, we do not sell your data, and we never will.
1. Who We Are
AllWeDo ("we", "us", "our") is a family organizer application. Our website is allwedo.online. You can contact us at support@allwedo.online.
2. Our Core Privacy Principle
AllWeDo is built on an offline-first architecture. This means:
- Your data is stored locally on your device in an encrypted SQLite database
- The app works fully offline -- no internet connection is required
- Our server acts only as a sync relay to pass encrypted changesets between family devices
- No family data is permanently stored on our servers
3. Data We Collect
3.1 Account Data
- Name -- the display name you choose when creating your family space (stored locally on device)
- Device ID -- a randomly generated identifier used for sync routing (not linked to your identity)
3.2 Data Stored Locally on Your Device
All of the following data is stored only on your device and never uploaded to our servers:
- Calendar events, tasks, shopping lists
- Journal entries, habits, chores
- Chat messages within your family space
- File attachments and photos
- Family member profiles
3.3 Server Data
Our sync relay server processes the following temporarily:
- Sync changesets -- encrypted data packets relayed between your family's devices. These are not permanently stored.
- Push notification tokens -- device tokens used to deliver notifications. Stored only while your device is registered.
- Family space ID -- a cryptographic identifier used for sync routing. Not linked to your real identity.
3.4 Telemetry (Anonymous Crash Data)
If you opt in, we collect anonymous crash reports to improve app stability. This includes:
- Error type and stack trace (no personal data)
- App version and OS version
- Device type (e.g., "iPhone" or "Android")
Telemetry is entirely optional and can be disabled in Settings.
3.5 Data We Never Collect
- Location data
- Contacts or address book
- Browsing history
- Email addresses or phone numbers
- Payment information (handled entirely by Apple/Google)
4. Third-Party Services
No advertising. AllWeDo does not contain ads and does not use any advertising SDKs. We do not sell, share, or trade your data with advertisers or data brokers.
5. Your Rights (GDPR)
Under the General Data Protection Regulation (GDPR) and similar laws, you have the following rights:
- Right to Access -- you can export all your data via Settings → Backup → Export
- Right to Rectification -- you can edit your name and profile in Settings at any time
- Right to Deletion -- you can delete all your data by using "Reset App" in Settings, or online at allwedo.online/delete-account
- Right to Portability -- your data can be exported as a JSON file at any time
- Right to Object -- you can disable telemetry in Settings
6. Data Security
- All data is stored locally in an encrypted SQLite database
- Sync connections use HMAC-SHA256 authentication
- All server communication uses HTTPS (TLS 1.3)
- Push notifications contain only a family ID hash -- no personal data
- PIN lock and seed phrase recovery protect your family space
7. Children's Privacy
AllWeDo is designed for family use. Children under 16 should only use the app under parental supervision with a "child" role account managed by a parent. We do not knowingly collect personal data from children.
8. Data Retention
- Local data: Retained until you delete it or reset the app
- Sync relay data: Not permanently stored; relayed in real-time
- Push tokens: Removed when you uninstall the app or revoke your device
- Crash reports: Retained for 90 days, then automatically deleted
9. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of significant changes via an in-app notice. The "Last updated" date at the top reflects the most recent revision.