betterbreath-privacy

Privacy Policy for Lotus Breath

Last updated: April 12, 2026

This Privacy Policy describes how Lotus Breath (“the App”, “we”, “us”, or “our”) collects, uses, and shares information when you use our iOS application. By using the App, you consent to the practices described in this Privacy Policy. If you do not agree, please discontinue use of the App.

Information We Collect

The App uses Sign in with Apple for account registration. Signing in is required before making or restoring in-app purchases.

When you sign in, we receive and store an Apple user identifier — an opaque, app-specific string generated by Apple. This identifier cannot be used to determine your name, email address, or other Apple account details. We request no personal information scopes (no name, no email) during the sign-in process.

The Apple user identifier is stored on your device and in Apple’s iCloud key-value storage (which syncs it across your devices). It is not sent to any server operated by us or any third party. It is used solely to gate access to purchases and to enable cross-device purchase restoration.

The Apple user identifier constitutes personal data under GDPR as it is a unique identifier tied to your Apple account. See the “Legal Basis for Processing” section for the legal basis under which we process it.

Anonymous Analytics Data

We use Mixpanel, a third-party analytics service, to understand how the App is used and to improve it. We also use Sentry, a third-party error monitoring service, to detect and fix crashes and errors. When analytics is enabled, the following data is collected:

Anonymous identifier: A randomly generated UUID stored on your device. This identifier is not linked to your name, email, Apple user identifier, or any other personally identifiable information.
Usage events: We track the following actions within the App:
- App opens
- Onboarding progress and completion
- Breathing exercise starts, completions, and early exits
- Exercise creation, editing, and deletion
- In-app purchase actions (e.g. product viewed, purchase completed)
- Settings changes (which setting was toggled, not personal details)
Crash and error reports: When the App encounters a crash or error, Sentry automatically collects:
- Error type and stack trace
- Device model and operating system version
- App version
- Anonymous device identifier (not linked to your identity)

We do not collect or send to any server:

Your name, email address, or any contact information
IP addresses (Sentry is configured to discard IP addresses before storage)
Location data
Health data (HealthKit data stays on your device and with Apple)
Browsing history or data from other apps
Screenshots, screen recordings, or view hierarchies

The Apple user identifier stored on your device is never included in analytics events or crash reports. Mixpanel’s automatic event tracking is disabled. Only the events listed above are sent. Sentry only collects data when an error or crash occurs.

Opting Out of Analytics

You can disable anonymous analytics at any time from the Settings screen in the App. When you opt out:

No further analytics events are sent
Previously collected data remains anonymous and cannot be linked to you

Crash and error reporting via Sentry remains active regardless of the analytics setting, as it is necessary to maintain app stability. This data is minimal, anonymous, and collected only when an error occurs.

Data Stored on Your Device and in iCloud

The App stores your breathing exercises, practice history, settings, streak data, and in-app purchase records locally on your device using Apple’s on-device database. This data is automatically synced across your devices through your private iCloud account via Apple’s CloudKit service. The synced data is stored in your personal iCloud storage and is not accessible to us. Apple’s iCloud terms and privacy policy govern this data.

We do not operate any custom servers. We do not have access to your iCloud data.

If you enable Sync to Apple Health, completed breathing sessions are written to Apple HealthKit on your device. This data is governed by Apple’s privacy policies and is never accessed by us.

How We Use Your Data

Apple user identifier: Used solely to enable in-app purchases and cross-device purchase restoration. Not used for analytics, profiling, or advertising.
Anonymous analytics data: Used to understand which features are used, identify areas for improvement, and fix bugs.
Crash reports: Used to improve app stability.

We do not use your data for advertising, profiling, or selling to third parties.

Legal Basis for Processing

We process data under the following legal bases:

Apple user identifier: Processed under Article 6(1)(b) GDPR (performance of a contract). When you sign in with Apple to enable purchases and purchase restoration, processing your Apple user identifier is necessary to perform the service you requested. You can withdraw by deleting your account in Settings, which removes the identifier from all your devices.
Anonymous analytics and crash reporting: Processed under Article 6(1)(f) GDPR (legitimate interest) to improve app performance, stability, and usability. We have assessed that our legitimate interest in improving the App does not override users’ fundamental rights and freedoms, particularly given the minimal and non-identifying nature of the data collected. Users can object to analytics processing at any time by disabling analytics in Settings.

Third-Party Services

When you sign in, the authentication is handled by Apple’s Sign in with Apple service. We receive only an opaque user identifier. We do not receive or store any authentication tokens, passwords, or Apple ID credentials. Apple’s terms and privacy policy govern the authentication process. For more details, see Apple’s Privacy Policy.

Mixpanel

Analytics data is sent to Mixpanel, Inc., based in the United States. Mixpanel acts as a data processor under GDPR and processes data solely on our instructions. Mixpanel is SOC 2 Type II certified.

As the App is provided by a Finnish company, transfers of data to Mixpanel in the US are covered by Standard Contractual Clauses in accordance with GDPR requirements.

For more details on how Mixpanel handles data, see:

Sentry

Crash and error reports are sent to Functional Software, Inc. (Sentry), based in the United States. Sentry acts as a data processor under GDPR and processes data solely on our instructions. IP address scrubbing is enabled, so Sentry does not store your IP address. Sentry is SOC 2 Type II certified.

As the App is provided by a Finnish company, transfers of data to Sentry in the US are covered by Standard Contractual Clauses in accordance with GDPR requirements.

For more details on how Sentry handles data, see:

Apple HealthKit

If you opt in to Apple Health sync, session data is written to HealthKit. We do not read from or access your HealthKit data beyond writing completed sessions. Apple’s HealthKit privacy policy applies to this data.

In-App Purchases (Apple StoreKit)

The App offers optional in-app purchases, including XP boosts and streak freezes. All payment processing is handled entirely by Apple through the App Store. We do not collect, process, or store any payment information such as credit card numbers, billing addresses, or Apple ID credentials.

When you make a purchase, the App stores a purchase record on your device and in your private iCloud account containing:

A StoreKit transaction identifier (used to prevent duplicate records)
The product identifier (which product was purchased)
The purchase date
Boost details (multiplier and duration), if applicable

These records are used for cross-device purchase restoration and are stored only in your personal iCloud storage. We do not have access to them.

We track anonymous analytics events related to purchase actions (e.g. that a purchase was completed and which product was involved) through Mixpanel, as described in the Analytics section. These analytics events contain only the product identifier and the event type. They do not include StoreKit transaction identifiers, prices, payment methods, or receipt data.

Apple’s App Store terms and privacy policy govern the payment transaction itself. For more details, see Apple’s Privacy Policy.

Data Retention

Anonymous analytics events are retained by Mixpanel for 180 days, after which they are automatically deleted.
Crash and error reports are retained by Sentry for 90 days.
Apple user identifier persists in iCloud key-value storage until you sign out or delete your account in the App.
Purchase records persist in your private iCloud database until you delete your account in the App.
On-device data (exercises, history, settings, and progress) persists until you delete it within the App or uninstall the App. Data synced to iCloud persists in your iCloud account until you delete it from the App on a synced device, delete your account in the App, or remove it through your iCloud account settings.

When you sign out (without deleting your account), the Apple user identifier is removed but your purchase records and app data remain in iCloud.

When you delete your account, all app data (exercises, progress, streaks, purchase records) is permanently deleted from your device and iCloud across all synced devices. The Apple user identifier is also removed. To fully revoke the App’s access to your Apple ID, you must additionally remove the App from your Apple ID settings (Settings > Apple ID > Sign-In & Security > Sign in with Apple).

Analytics data previously sent to Mixpanel and Sentry is not affected by account deletion, as it is anonymous and not linked to your identity. To request deletion of analytics data, see “Your Rights” below.

If you are in the European Economic Area, you have the right to:

Access information about what data we process
Request deletion of your data
Object to processing by disabling analytics in Settings
Data portability — the Apple user identifier is Apple-generated and not portable; analytics data is anonymous and cannot be linked to you

Account Deletion

You can delete your account and all associated data directly in the App:

Go to Settings
Tap Delete Account & Data
Type “delete” to confirm

This permanently deletes all your data (exercises, progress, streaks, purchase records) from your device and iCloud across all synced devices, clears your Sign in with Apple credential, and resets the App to its initial state. To complete the process, we recommend also revoking the App’s access in your Apple ID settings.

To request deletion of any anonymous analytics data associated with your device identifier, email us at valtteri.e.laine@gmail.com with the subject “Data Deletion Request”. We will remove the data from Mixpanel and Sentry within 30 days.

You can also disable analytics in Settings at any time to stop all future analytics data collection.

Children’s Privacy

The App does not knowingly collect any personally identifiable information from children under the age of 13. If you believe a child has provided personal data to us, please contact us so we can take appropriate action.

Changes to This Privacy Policy

We will update this Privacy Policy when our data practices change. If we make material changes, we will notify you through an in-app notice or by updating the App Store listing before the changes take effect. Changes will be posted on this page with an updated “Last updated” date.

App Store Privacy Labels

The following reflects what we declare in our App Store privacy labels:

Data Used to Track You: None
Data Linked to You: Identifiers (Apple user identifier, used for purchase restoration)
Data Not Linked to You: Identifiers (anonymous UUID), Usage Data (product interaction), Diagnostics (crash data), Purchases (anonymous purchase events collected for analytics) — collected for Analytics and App Functionality purposes

Contact Us

If you have any questions about this Privacy Policy, you can contact us by email:

valtteri.e.laine@gmail.com