Privacy Policy for Loomoo

Introduction

Welcome to Loomoo ("we," "our," or "us"). This Privacy Policy explains how we intend to collect, use, disclose, and safeguard information when you use our mobile application (the "App"). It is provided for transparency and general information. It is not legal advice and does not create obligations beyond what applicable law requires.

By using the App, you acknowledge the practices described in this Privacy Policy to the extent they apply to the features you choose to use. If you do not agree, do not use the App.

Our Terms of Service also apply and may limit certain claims or remedies to the extent permitted by law.

Important limitations (please read)

No “perfect” security. We strive to use reasonable technical and organizational measures. No method of storage or transmission over the Internet is completely secure. To the maximum extent permitted by applicable law, we do not warrant that our safeguards will prevent every unauthorized access, loss, alteration, or disclosure of information.

Third parties. The App relies on independent services (for example Apple, Google/Firebase, Meta, OpenAI, ElevenLabs, and Cloudflare) that process information under their own terms and policies. To the maximum extent permitted by applicable law, we are not responsible for their availability, security, practices, errors, or changes they make.

No sale of personal information. We do not sell your personal information for money (including where “sale” has a specific meaning under applicable U.S. state privacy laws).

Mandatory rights. If applicable data protection law gives you rights that cannot be waived or limited by this Policy, those rights remain available to you.

Information We Collect

Personal Information

• Name: We collect your name during the onboarding process to personalize your experience.
• Email Address: If you choose to sign in with Apple, we may receive your email address (you can choose to hide it).
• User ID: We receive a unique identifier from Apple when you sign in with Apple.

Health Data

• Sleep Data: With your explicit permission, we access sleep data from Apple Health (HealthKit) to provide sleep analytics and personalized recommendations.
• How We Use It: We use this data solely to display your sleep patterns and suggest relevant meditation content. We do not share this data with third parties.

Usage Data

• Meditation Progress: We track your meditation journey progress, including completed sessions and days.
• Preferences: We store your selected goals, experience level, and app preferences.
• Mood Data: We store your mood selections to provide personalized content.
• Listening History: We track which meditations you've listened to for progress tracking.

Audio and Voice Data

• Microphone Access: When you use our AI meditation feature, we request access to your microphone to record your voice input.
• Speech Recognition: Your voice is converted to text using Apple's on-device Speech Recognition framework.
• How We Use It: Voice input is used solely to generate personalized meditation scripts. The audio recording is processed on-device and converted to text before being sent to our AI service.

Background Audio

• Background Audio Permissions: Our App plays audio content in the background to allow you to listen to meditations while using other apps or when your device is locked. This requires background audio permissions, which are used solely for this purpose.

Notifications

• Push Notifications: If you enable notifications, we may send you reminders about your meditation practice. You can disable notifications at any time in your device settings.

Analytics and Tracking

• Firebase Analytics: We use Google Firebase Analytics to understand app usage and improve our services. This service collects anonymized usage data such as app events and session information. Data is processed in accordance with Google's privacy policy and is not used to identify individual users.
• Meta SDK: The App includes Meta's mobile software development kit (SDK) for limited technical purposes. We do not use it to track you across other companies' apps or websites for advertising, or to build individual behavioral profiles. Any data the SDK may process is described in Meta's privacy policy.

Community Leaderboard

Our app includes an optional community leaderboard feature that displays meditation progress to encourage collective mindfulness practice.

• What We Collect:
  • Your chosen username
  • Total number of mindful days
  • Last activity timestamp
• How We Use It:
  • Public display on community leaderboard
  • Community progress statistics and encouragement
• Your Control:
  • Participation is completely optional
  • You can opt-out at any time
  • Data is permanently deleted upon opt-out
  • No personal information is shared

How We Use Your Information

We use the collected information for the following purposes:

• To provide and maintain our meditation services
• To generate personalized AI meditation content based on your input
• To track and display your meditation progress and journey completion
• To provide sleep analytics and recommendations (if HealthKit access is granted)
• To display community leaderboard information (if you opt-in to the community leaderboard feature)
• To improve and personalize your app experience
• To respond to your inquiries and provide customer support

Third-Party Services

We use the following third-party services that may collect or process your information:

OpenAI

• Purpose: We use OpenAI's API to generate personalized meditation scripts based on your voice input and preferences.
• Data Sent: Text converted from your voice input, conversation context, and preferences.
• Privacy Policy: https://openai.com/privacy

ElevenLabs

• Purpose: We use ElevenLabs' text-to-speech service to convert meditation scripts into audio.
• Data Sent: Generated meditation text content.
• Privacy Policy: https://elevenlabs.io/privacy

Cloudflare

• Purpose: We use Cloudflare Workers for our backend API and Cloudflare R2 for media storage.
• Data Sent: API requests, cached content requests.
• Privacy Policy: https://www.cloudflare.com/privacy/

Firebase (Google)

• Firebase Analytics: We use Google Firebase Analytics to understand app usage and improve our services. This service collects anonymized usage data such as app events and session information.
• Firestore: We use Firebase Firestore to store community leaderboard data (username, mindful days, last activity timestamp) for users who opt-in to the community leaderboard feature.
• Data Sent: Anonymized usage data (Analytics) and optional leaderboard data (Firestore).
• Data Storage: Leaderboard data is stored securely on Firebase/Firestore, encrypted in transit and at rest, and subject to Google's privacy policy for data processing.
• Privacy Policy: https://policies.google.com/privacy

Meta (Meta Platforms)

• Purpose: The App includes Meta's mobile SDK for limited technical purposes. We do not use it to track you across other companies' apps or websites for advertising, or to build individual behavioral profiles.
• Data: The SDK may process limited technical or device-related information as described in Meta's privacy policy. We do not use the SDK to send HealthKit data or other health information to Meta.
• Privacy Policy: https://www.facebook.com/privacy/policy

Apple Services

• Sign in with Apple: Used for authentication. We receive only the information you choose to share.
• HealthKit: Used to access sleep data with your explicit permission.
• Speech Recognition: Used for on-device voice-to-text conversion.

Data Storage

Local Storage

• UserDefaults: We store your preferences, progress, and app settings locally on your device.
• Local Cache: Audio files and images are cached on your device to improve performance.
• Documents Directory: AI-generated meditations are stored locally on your device.

Cloud Storage

• Backend API: We use Cloudflare Workers to process API requests. We do not store personal data on our backend servers.
• Media Files: Meditation audio files and images are stored on Cloudflare R2 and served through our CDN.
• Community Leaderboard: Leaderboard data (username, mindful days, last activity timestamp) is stored securely on Firebase/Firestore for users who opt-in to the community leaderboard feature. Data is encrypted in transit and at rest.

Data Security

We strive to implement reasonable technical and organizational measures intended to protect your information. These measures cannot guarantee absolute security:

• We aim to use encrypted transmission (such as HTTPS) where applicable; availability of encryption depends on configuration and third-party infrastructure.
• Much personal data is stored locally on your device, which carries device-level risks (loss, theft, malware) outside our control.
• We aim to protect API keys and sensitive credentials on our systems; compromise of third-party or device environments may still occur.
• Health data is accessed only with your explicit permission when you grant it; we do not intend to share HealthKit data with third parties for their independent use, subject to how the App functions and applicable law.

To the maximum extent permitted by applicable law, we are not liable for any unauthorized access, disclosure, loss, or alteration of information arising from events outside our reasonable control (including third-party incidents, device compromise, or user configuration choices).

Your Rights

You have the following rights regarding your information:

• Access: You can view your data stored locally in the app settings.
• Deletion: You can delete all your data by uninstalling the app. This will remove all locally stored data.
• Revoke Permissions: You can revoke HealthKit access in Settings > Privacy & Security > Health > Loomoo, or microphone access in Settings > Privacy & Security > Microphone.
• Opt-Out: You can stop using AI features at any time, which will prevent further voice data processing.
• Community Leaderboard Opt-Out: You can opt-out of the community leaderboard feature at any time through the app settings. Upon opt-out, your leaderboard data will be permanently deleted from our servers.

Children's Privacy

Our App is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

Data Retention

• Local Data: Data stored on your device remains until you uninstall the app.
• Third-Party Services: Data sent to third-party services (OpenAI, ElevenLabs) is processed according to their respective privacy policies. We do not retain copies of this data on our servers.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time by posting an updated version on this page and updating the "Last Updated" date. To the maximum extent permitted by applicable law, we are not obligated to provide individual notice (for example by email) unless required by applicable law.

You are responsible for reviewing this page periodically. Continued use of the App after changes are posted constitutes your acknowledgment of the updated Policy, except where applicable law requires a different process.

International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence (including through third-party providers). Those countries may have different data protection rules. Where applicable law requires a lawful basis for transfers, we aim to rely on an appropriate mechanism where required.

To the maximum extent permitted by applicable law, you acknowledge that international processing involves inherent risks and limitations, and you use the App understanding those risks.

Limitation of liability (privacy-related)

To the maximum extent permitted by applicable law, Loomoo and its affiliates will not be liable for any indirect, incidental, special, consequential, exemplary, or punitive damages, or any loss of profits, revenues, goodwill, or data, arising from or related to your use of the App, your inability to use the App, or your reliance on this Privacy Policy—except where liability cannot be excluded or limited under applicable law (for example, certain mandatory consumer or data-protection rules).

For claims not excluded by law, if any liability is found, to the maximum extent permitted by applicable law, our aggregate liability arising from or related to privacy practices described in this Policy will be limited to the greater of: (a) amounts you paid to Loomoo for the App in the twelve (12) months before the claim; or (b) fifty (50) in the currency associated with your Apple ID App Store country or region at the time of the claim. This paragraph is subject to your rights under the Terms of Service, which may contain additional or overlapping limitations.

Contact Us

If you have questions about this Privacy Policy or wish to exercise rights that may apply to you, contact us at:

---

Effective Date: May 2, 2026
Last Updated: May 2, 2026