Kwilt

Privacy Policy

Last updated: January 2, 2026

Effective date: January 2, 2026.

Kwilt Labs LLC ("Kwilt", "we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, share, and safeguard information when you use the Kwilt mobile app (the App) and related services we provide, including kwilt.app and go.kwilt.app (together, the Service).

By using the Service, you agree to the collection and use of information in accordance with this Privacy Policy and our Terms of Service.

At a glance

  • Kwilt is local-first: your Arcs/Goals/Activities and profile live on-device by default.
  • Some features send data off-device, such as sign-in and shared goals, AI coaching (via an AI proxy), attachments uploads, analytics, and subscription entitlement checks.
  • We use third-party providers (including cloud infrastructure, analytics, and subscription providers) to operate the Service, and LLM providers via the AI proxy to generate AI responses.
  • We do not sell your personal information (and do not use it for targeted advertising).
  • We do not intentionally send user-entered free-form text to analytics; we apply client-side redaction of user-entered text fields.

1. Scope and key definitions

This Privacy Policy uses the following terms:

  • App: the Kwilt mobile app.
  • Local-first: your Arcs/Goals/Activities and profile live on-device by default; some features call cloud services.
  • Kwilt account: an identity from our authentication provider (Sign in with Apple/Google).
  • Shared goal: a goal with memberships; supports invite links and a “signals-only” default.
  • Signals-only: check-ins + lightweight reactions/cheers by default; activity titles/notes are not shared unless explicitly enabled.
  • AI proxy: the server endpoint the App uses to call LLM providers with quotas/limits.

2. Local-first data handling (on-device vs. cloud)

Kwilt is designed to be local-first. This means your workspace data generally lives on your device unless you use features that require cloud services.

  • On-device data (by default). Arcs/Goals/Activities, user profile fields, preferences, drafts, notification schedules/ledgers, and other workspace state.
  • Cloud-processed data (feature-dependent). Using AI coaching, shared goals, attachments uploads, analytics, subscriptions, and certain link/invite flows will transmit specific data off-device.

3. Information we collect

We collect information depending on how you use the App and Service:

  • Account/identity data (if you sign in). User ID, email (optional), name (optional), avatar URL (optional), and auth provider (Apple/Google).
  • User-generated content (UGC). Arcs, goals, activities (titles, descriptions, notes, steps, tags, schedules), “coach context” text (long-form identity/background), and derived summaries such as a “coach context summary.” Shared-goal check-ins + reactions may be included when implemented.
  • Attachments (if enabled). Photos/videos/documents/audio recordings you upload, plus metadata such as filename, MIME type, size, timestamps, and sharing flags (for example, whether shared with goal members).
  • Device/app identifiers. An install-scoped identifier (install ID) used for quotas/abuse prevention/attribution. This identifier may be stored on-device and sent in requests (for example in headers like x-kwilt-install-id).
  • Usage and diagnostics. Analytics events (for example onboarding started/completed, notification opened, paywall viewed, invite created/accepted) and basic device/app metadata as collected by analytics SDKs.
  • Notifications data. Notification preferences and in-app ledgers for scheduling/open tracking (local-first). Notification content may include user-entered text (for example activity titles).
  • Subscription/billing data. Subscription customer and entitlement state from our subscription platform provider. Purchases and payment details are handled by Apple (and/or the applicable app store).
  • Location data (if enabled). If you enable location features and grant permissions, the App may access approximate or precise location for features like “attach place” or location-based prompts. You control location permissions via your OS settings.
  • Calendar export data. If you export an .ics file, its content may include activity titles and optional descriptions (which may include goal titles/notes). Export happens under your control via share/import flows.
  • Link and website data. If you visit invite/referral links (for example /i/... or /r/...), we may process codes in the URL to route you. Our website infrastructure may also collect basic server logs (IP address, user agent, timestamps, requested URLs) for security and reliability.

4. Purposes of processing

We use information to:

  • Provide core App functionality (store and display your workspace locally).
  • Provide shared goals (invites, memberships, member roster, signals-only interactions).
  • Provide AI features (generate suggestions, summaries, drafts, and coaching responses).
  • Enforce quotas, prevent abuse, and secure the Service.
  • Process subscriptions and manage entitlements (subscription platform provider / app store).
  • Measure product performance and reliability (analytics; notification open metrics).
  • Communicate with you and provide support.
  • Comply with legal obligations and enforce our Terms.

5. Third-party processors and services

We use the following third parties as processors/subprocessors as applicable:

  • Cloud infrastructure provider(s) (authentication, server-side functions, database, storage) for sign-in, shared goals, the AI proxy, and attachments uploads.
  • LLM provider(s) via the AI proxy to process prompts/context and generate AI responses.
  • Analytics provider(s) for analytics event collection.
  • Subscription platform provider for subscription/entitlement management (the app store handles payments).
  • Image search provider (Arc banners) when enabled; requests may include the user’s search query and device network metadata.
  • GIF/media provider for celebration GIF search when enabled; requests may include search queries derived from app context (not free-form user text).

App stores may collect information independently as part of distributing the App and processing purchases.

6. AI-specific privacy disclosures

When you use AI features, the App may send information to the AI proxy to generate responses, summaries, drafts, and suggestions.

  • What is sent. Your prompts/messages, relevant workspace context (for example arcs/goals/ activities summaries), and profile summaries used for personalization.
  • Where it goes. From device → AI proxy (server-side function) → LLM provider(s).
  • Why. To generate responses, summaries, drafts, and suggestions.
  • Retention and logging. We may retain limited proxy telemetry (for example counts, timestamps, status codes, and latency) for security, quotas, and reliability. Whether prompts/responses are logged depends on the configuration of the Service; where enabled, access is restricted and protected. If you have questions about current retention windows, contact support@kwilt.app.
  • Model training. We do not intend to use your prompts or AI outputs to train our own models. We also do not intend to allow LLM providers to train on your content when they act as our processors. Provider handling may vary by vendor and configuration; if you have questions about current settings, contact support@kwilt.app.
  • User choice. You can avoid sending data to AI by not using AI features (and by using any in-app AI toggle if offered).

7. Sharing disclosures (shared goals and attachments)

Shared goals are “signals-only” by default. That generally means membership and signals (check-ins and lightweight reactions/cheers) may be visible to other members, while activity titles/notes are not shared unless you explicitly enable sharing.

If you enable sharing toggles (for example, sharing attachments with goal members), that content becomes visible to other members and may remain visible until unshared or deleted (subject to caching and backups).

You are responsible for what you share, including how you distribute invite links and what content you choose to make visible to other members.

8. Analytics minimization and redaction

We use analytics to understand product performance and reliability. We do not intentionally send user-entered free-form text to analytics, and we apply client-side redaction of user-entered text fields.

Analytics may include identifiers (such as an analytics distinct ID and/or install ID) and usage events. We do not use analytics for personalized advertising.

If the App provides an analytics opt-out setting, you can use it to limit analytics collection. If an opt-out setting is not available in your current version, contact support@kwilt.app.

9. How we share information

We do not sell your personal information. We may share information in limited cases:

  • Service providers. We share information with vendors listed above only as needed to operate the Service, under appropriate contractual obligations.
  • Legal and safety. We may disclose information if required by law or if we believe disclosure is necessary to protect the rights, property, or safety of Kwilt, our users, or others.
  • Business transfers. If we're involved in a merger, acquisition, or sale of assets, information may be transferred as part of that transaction.

10. Data retention and deletion

We aim to retain information for the shortest time necessary to operate the Service, meet legal obligations, and protect security. Retention depends on the feature and the systems involved:

  • On-device data. You can delete local data by uninstalling the App, and (if available) using an in-app “Erase local data” action.
  • Account data. You may request account deletion by contacting support@kwilt.app. Account deletion may affect shared-goal memberships and access to shared content.
  • Attachments. You may be able to delete uploaded attachments in the App. Deleted content may remain in backups for a limited period.
  • Analytics and logs. We retain analytics events and logs for limited periods consistent with operational needs and vendor configuration. In many systems, logs/telemetry are retained for weeks to months and analytics may be retained longer to measure product performance. Contact support@kwilt.app for current retention details.

11. Your choices and controls

  • Permissions. You can control notifications, photo library, microphone, and location permissions via your OS settings.
  • AI features. You can avoid sending data to AI by not using AI features (and by using any in-app AI toggle if offered).
  • Sharing. You control whether to join shared goals and whether to enable sharing toggles for content that is not shared by default.

12. Regional disclosures and rights

Depending on where you live, you may have rights such as access, deletion, correction, portability, and objection/opt-out. Where applicable, we rely on legal bases such as contract performance, legitimate interests, and consent (for example, where required for certain permissions or processing).

California. If you are a California resident, you may have rights to know, delete, correct, and access your personal information, and to opt out of certain sharing. We do not sell personal information or share it for cross-context behavioral advertising. You (or an authorized agent) can submit requests by emailing support@kwilt.app. We may need to verify your request before responding.

We do not sell or “share” personal information for cross-context behavioral advertising (as those terms may be defined under certain privacy laws).

13. Data security

We use reasonable safeguards designed to protect information, including encryption in transit (HTTPS) and access controls for cloud features like shared goals and attachments. However, no method of transmission or storage is 100% secure, and we cannot guarantee absolute security.

14. Children's privacy

The Service is not directed to children under 13, and we do not knowingly collect personal information from children under 13.

15. International users

Kwilt is operated from the United States. If you access the Service from outside the United States, you understand that information may be processed in the United States and other locations where our vendors operate.

Where required, we use appropriate safeguards for international data transfers (for example, contractual protections) when transferring personal information across borders.

16. Changes to this Privacy Policy

We may update this Privacy Policy from time to time. We will update the "Last updated" date at the top when we do.

17. Contact us

If you have questions about this Privacy Policy, or want to exercise privacy rights, contact us at support@kwilt.app.