Onka — Privacy Policy

01Quick summary

What Onka is. A daily task list app. You sign in with Apple, write tasks for each day, and optionally use the AI ("Ask Onka") to add or change tasks in natural language.
What we store about you. An account record (Apple-issued ID, name, and email if you choose to share it), the tasks and day notes you create, your subscription state, your "About You" personalization profile if you choose to write one, and a small amount of product analytics so we know what features people use.
Where it's stored. In Google's Firebase services (Authentication and Firestore), hosted in the United States.
Who else sees it. Google Cloud (as our infrastructure provider) and Google's Gemini AI service (when you use the Ask feature, your prompt and a bounded snapshot of your tasks are sent to Gemini to interpret the command). We do not sell your data, we do not show you ads, and we do not track you across other apps or websites.
What you can do. See and edit your data inside the app, sign out, delete your account directly from Settings → Authentication → Delete Account, request a data export by email, or cancel your subscription through the App Store.

The rest of this policy is the long form. Section 2 lists every category of information; sections 3–6 cover how we use it, share it, store it, and your rights.

02Information we collect

2.1 — Account information

You sign in to Onka using Sign in with Apple. Apple shares with us:

A stable per-app Apple user identifier, which we map to a Firebase user ID (UID). Your Firebase UID is the primary key for everything else we store.
Your name, if you choose to share it during the Sign in with Apple flow. Stored on your account record (displayName).
Your email address, if you choose to share it. This may be your real address or an Apple-managed private relay address (...@privaterelay.appleid.com). Stored on your account record (email).

Sharing name and email is optional and controlled by you at sign-in. If you choose to keep either private, we will not have it and the App will work without it.

2.2 — Content you create in the App

When you use Onka, the following are stored on Google Cloud (Firestore) under your account:

Tasks ("items"). The text of each task; whether it's done; nesting/indent and order; optional fields including due time, notes, URL, priority, and tags. The data model retains optional location-name and coordinate fields for a future feature, but the current build does not write them.
Day metadata. An optional header, an optional free-form day note, and an item count. The data model retains optional city/weather snapshot fields for a future feature; the current build does not write them.
Recurring task rules you create (e.g. "every weekday at 7 AM").
Personalization profile ("About You"). If you are a Plus user and choose to fill it in, a free-form text field (capped at 500 characters) describing yourself for the AI's context. Stored at users/{uid}/profile/personalization. You can edit or clear this at any time in Settings.

2.3 — Subscription and purchase information

Payment processing. Handled entirely by Apple (StoreKit). We do not receive your credit-card or billing information.
What we store. Your subscription tier (free / monthly / yearly), the App Store product ID, the original transaction ID, the expiration date of your current entitlement, and the platform (iOS or macOS) you most recently used.
Admin mirror. A copy of these subscription fields is mirrored to an internal admin-only collection so we can look up your subscription state to provide support.

2.4 — Usage and quota information

A weekly counter of how many natural-language ("Ask") commands you've successfully applied, plus a separate counter for "Smart" (Gemini Pro) commands when applicable.
Your "active platform" (iOS or macOS) for the sticky-first-device rule on the free tier, and the cooldown timestamp if you've recently swapped.

2.5 — AI ("Ask Onka") inputs

When you type a prompt into the Ask Onka bar, we send the following to Google Gemini (via Firebase AI Logic) on a per-request basis:

The text of your prompt.
A bounded snapshot of nearby tasks (a small window of days around the current view, with task IDs, text, done-state, indent, and due time).
Your locale and timezone (so date phrases like "next Friday" resolve correctly).
If applicable, the focused row's text/ID, and your "About You" personalization text.

These prompts are processed by Google's Gemini API and governed by Google's API terms. We do not store the raw prompt content on our servers. Your conversation thread and last several Ask prompts are stored on your device only, in app preferences (UserDefaults).

2.6 — Shared "On This Day" content

Onka shows a daily factoid for each calendar day. This factoid is generated once per day (by the first user who opens the app that day) and shared across all users via a global cache (daily_facts/{date}). The cache stores the date, the generated factoids, and the Firebase UID of the user who first triggered the generation. It does not contain any of your tasks, notes, or personal content.

2.7 — Product analytics (iOS only)

Events like task_created, task_completed, paywall_shown, nlp_command_applied. Event parameters are limited to enums, counts, and booleans. We do not log task text, day notes, About You text, or any other free-form content.
User properties describing your subscription tier, whether you are an admin account, platform, and a coarse bucket of your weekly NLP usage.
Device-vendor identifier (IDFV) used by Firebase Analytics. We do not use the advertising identifier (IDFA) and do not show the App Tracking Transparency prompt.

Analytics is currently active on iOS only. The macOS app does not log analytics events.

2.8 — Information stored locally on your device

A JSON cache of your tasks and days in the app's Application Support directory.
Your Ask command history and conversation thread, stored in app preferences.
Your in-app settings and preferences via standard iOS/macOS preferences.

This local data is removed when you delete the App from your device, and when you delete your account from Settings.

2.9 — Information we do NOT collect

No location. The App does not request or read your location.
No contacts, calendar, photos, microphone, or camera access.
No advertising identifier (IDFA), no cross-app tracking, no third-party advertising or marketing SDKs, no social sign-in beyond Apple.
No payment card or billing data. Apple handles all of that.

03How we use information

1Provide the Service — sign you in, sync your tasks across your devices, render your timeline, run recurring task rules, enforce subscription entitlements, and process purchases.
2Run the AI features — interpret your natural-language prompts, return suggestions, and keep the per-week usage counters that gate free-tier quota and the Plus "Smart" mode.
3Personalize the AI (Plus only) — inject your "About You" text into the AI prompt as soft context.
4Understand product usage — measure which features are used, identify friction points in onboarding and the upgrade funnel, and prioritize what to build next (iOS analytics only).
5Provide support and prevent abuse — look up your subscription state, diagnose sync issues, enforce per-week request ceilings, and respond to terms-of-service or law-enforcement matters where required.
6Communicate with you — only operationally (e.g. transactional sign-in or purchase emails handled by Apple/Firebase). We do not run a marketing mailing list.

We do not use your data to train AI models. Per Google's published terms for paid Gemini API usage, prompts and responses are not used to train Google's foundation models.

04How we share information

We do not sell your personal information. We share it only with the following parties, and only to the extent necessary to operate the Service:

Party	What they receive	Why	Their policy
Apple	Your Apple ID identifier, name and email (if shared), and subscription transactions.	Sign in with Apple; App Store payments and entitlements.	apple.com/legal/privacy
Google (Firebase Authentication, Firestore, Analytics, AI Logic)	Your Firebase UID, account email/name, all task/day/profile content, subscription mirror data, weekly usage counters, analytics events.	Hosting of authentication, your data store, analytics, and the AI gateway to Gemini. Project ID: `daydream-186cf`.	policies.google.com/privacy · firebase privacy
Google AI (Gemini API)	The text of your Ask prompts, a bounded snapshot of your nearby tasks, your timezone/locale, and your About You text (Plus only).	To interpret natural-language commands and return structured task actions.	Gemini API terms

We may also disclose information if required by law (subpoena, court order, lawful government request) or if we believe in good faith that disclosure is necessary to protect rights, property, or safety.

A small number of internal administrators (currently only the founder) can read every user's Firestore subtree to provide support and investigate abuse. Administrator access is enforced by Firestore security rules and audited via Firestore's built-in access logs.

05Where your data is stored

Your account record, tasks, day notes, About You profile, subscription mirror, and usage counters are stored in Google Cloud Firestore in the United States (Firebase project daydream-186cf, multi-region nam5).

If you use Onka from outside the United States, you are consenting to the transfer of your information to and processing in the United States. For users in the European Economic Area, the United Kingdom, or Switzerland, we rely on Google Cloud's standard contractual clauses for international data transfer.

06Data retention

Active accounts. While your account is active, we retain your data so the App works.
Local cache. The on-device cache is removed when you delete the App from your device.
Account deletion. When you delete your account from Settings, we immediately delete your Firestore data — tasks, days, recurrences, profile, subscription mirror, usage counters, and the admin subscription mirror — and clear the on-device cache. Your Firebase Authentication record is also deleted on a best-effort basis.
- Your past App Store subscription transactions are retained by Apple per Apple's policies, not ours.
- Anonymized, aggregated analytics events (event counts, funnel rates) may be retained for statistical purposes.
Backups. Google Cloud retains short-term operational backups; deleted data may persist in those backups for a limited period before rolling off, per Google Cloud's standard retention.

07Your rights and choices

We honor the substance of these rights for all users regardless of jurisdiction.

Access / portability. You can see all of your tasks, day notes, recurrences, About You profile, and subscription state inside the App. To request a machine-readable export, email us at hello@onka.day.
Correction. You can edit or delete any task, day note, or profile field directly in the App.
Deletion. Use Settings → Authentication → Delete Account to permanently delete your account and all associated data. Deletion is immediate and irreversible. Active App Store subscriptions are not automatically cancelled — manage those separately under your Apple ID. To have us handle deletion for you, email hello@onka.day.
Sign out. You can sign out at any time from Settings → Authentication → Sign Out. Signing out stops syncing on that device but does not delete your data.
Cancel subscription. Manage or cancel Onka Plus anytime from Apple ID Settings → Subscriptions, or via the in-app link in Settings → Plus.
Object / restrict. If you are in the EEA, UK, or Switzerland, you have the right to object to or restrict certain processing under GDPR. Contact us at hello@onka.day.
Complaint. EEA / UK / Swiss users may lodge a complaint with their local data protection authority.
California (CCPA/CPRA). California residents have the right to know what categories of personal information we collect, the sources, the purposes, and the categories of third parties we share with — all of which are listed above. We do not sell or share personal information for cross-context behavioral advertising. To exercise your rights, email hello@onka.day.

We will not discriminate against you for exercising any of these rights.

08Security

We rely on Google Cloud / Firebase's industry-standard security controls (encryption in transit and at rest; access controls). Authentication is handled by Apple and Firebase Authentication. Firestore access is gated by per-user security rules so that a user can only read or write their own subtree (users/{uid}/...); the security rules are versioned with the app source and reviewable.

No system is perfectly secure; if we ever become aware of a breach affecting your information, we will notify you in accordance with applicable law.

09Children

Onka is not directed to children under 13 (under 16 in jurisdictions where that is the relevant age, including parts of the EEA). We do not knowingly collect personal information from children below those thresholds. If you believe a child has provided us with personal information, please contact us at hello@onka.day and we will delete it.

Sign in with Apple includes Apple's own age-gating; users below the local threshold are typically prevented from creating an Apple ID without parental consent under Family Sharing.

10Changes to this policy

We may update this Policy from time to time. When we do, we will update the "Last updated" date above. For material changes (new categories of data, new third-party recipients, new uses), we will give reasonable notice in-app or by email before the change takes effect. Your continued use of the Service after the effective date constitutes acceptance of the updated Policy.

11Contact us

Email. hello@onka.day

For App Store related issues (refunds, billing), please contact Apple Support directly.