Privacy Policy

Last Updated: December 23, 2025

AnchorShift ("we", "us", or "our") respects your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our mobile application. Please read this privacy policy carefully.

1. Information We Collect

A. Account Data

When you sign up via "Sign in with Apple" or "Google Sign-In", we collect:

• Email Address: Used as your unique account identifier and for critical service notifications.
• Name/Profile: Used to personalize the user interface.

B. Usage & Health Data

We collect data you explicitly enter into the app, including:

• Energy Logs: Self-reported energy levels (1-5 scale).
• Shift Schedules: Work start/end times entered by you.

C. Google User Data (Calendar)

If you choose to use the Calendar Integration feature, we request access to your Google Calendar data via the https://www.googleapis.com/auth/calendar.events.readonly scope.

• What we access: Event titles, start times, and end times.
• How we use it: We strictly use this data to display your personal events on the app's timeline view, allowing you to plan your sleep schedule around existing commitments.
• Storage: Calendar data is cached securely in our database to allow offline viewing and quick loading.
• No Sharing: We do not share, sell, transfer, or disclose your Google Calendar data to any third-party advertising platforms, data brokers, or external entities.

2. Data Protection Mechanisms (Security)

We use administrative, technical, and physical security measures to help protect your personal information.

A. Encryption in Transit

All data transmitted between your device, Google's APIs, and our servers (Supabase) is encrypted using HTTPS/TLS 1.2 (or higher) protocols. This ensures that your data cannot be intercepted while moving across the internet.

B. Encryption at Rest

User data stored in our database is encrypted at rest using AES-256 encryption standards. This protects your data at the storage level.

C. Access Controls

Access to sensitive data (including Calendar events) is strictly limited to the application's automated algorithms required to generate your schedule. No human employees have access to your raw calendar data unless explicitly granted by you for support purposes.

3. Data Retention and Deletion

We retain your personal information only for as long as is necessary for the purposes set out in this Privacy Policy.

Your Right to Delete: You may delete your account and all associated data (including calendar tokens and logs) at any time directly within the app. Go to Settings > Delete Account. This process is immediate and irreversible.

4. Limited Use Disclosure

AnchorShift's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

5. Contact Us

If you have questions or comments about this Privacy Policy, please contact us at:

jblee0310@gmail.com