Legal

Privacy Policy

Last updated: 28 April 2026 · Applies to Mooni Bedtime (iOS app)

      Short version: We do not collect personal data from children. All profile data (names, avatars, photos) is stored locally on your device. We use RevenueCat solely to process in-app purchases. No data is sold or shared for advertising.
    

1. Data Controller

The controller responsible for processing your personal data is:

r6lab Radosław Józefowicz
ul. Akacjowa 3
55-003 Krzków
Poland

EU VAT: PL9730929262
Email: radek@jozefowicz.dev

2. What Data We Process and Why

2.1 Data stored locally on your device (no server transfer)

Child profiles — first name, avatar style, accent colour, optional photo. Stored exclusively on-device in the app's private Documents directory. Never transmitted to us.
Checklist progress and streaks — which tasks were completed and on which date. Stored on-device only.
App settings — chosen language, checklist layout, reminder times. Stored on-device only.

Legal basis: Legitimate interest (Art. 6(1)(f) GDPR) — the app cannot function without persisting user-created profiles locally.

2.2 In-app purchases — RevenueCat

When you purchase the Premium upgrade, we use RevenueCat (RevenueCat, Inc., 633 Tasman Drive, San Jose, CA 95134, USA) to verify entitlements. RevenueCat receives:

A pseudonymous device/user identifier generated by Apple
Purchase receipt data from Apple

RevenueCat does not receive your name, email, or payment details — those remain between you and Apple. RevenueCat's privacy policy: revenuecat.com/privacy.

Legal basis: Contract performance (Art. 6(1)(b) GDPR) — processing is necessary to deliver the Premium features you purchased.

2.3 Push notifications (reminders)

If you enable bedtime reminders, iOS schedules notifications locally on your device. No notification content or timing data is sent to us or any third party.

Legal basis: Consent (Art. 6(1)(a) GDPR) — you explicitly grant permission via the iOS notification prompt. You can withdraw consent at any time in iOS Settings → Notifications.

2.4 Crash and diagnostic reports

If you have enabled "Share with App Developers" in iOS Settings → Privacy → Analytics & Improvements, Apple may share anonymised crash logs with us. We use these solely to fix bugs. No personal data is included in these reports.

Legal basis: Legitimate interest (Art. 6(1)(f) GDPR) — improving app stability.

3. Data We Do Not Collect

We do not require account registration or collect email addresses.
We do not use advertising networks or tracking SDKs.
We do not collect data about children directly — profile names are entered by parents/guardians and never leave the device.
We do not use analytics tools (e.g. Firebase, Mixpanel).

4. Data Transfers Outside the EU/EEA

RevenueCat is based in the United States. Transfers are covered by Standard Contractual Clauses (SCCs) pursuant to Art. 46(2)(c) GDPR. You can request a copy of the applicable transfer mechanism by contacting us.

5. Retention

Local device data is retained until you delete the app or manually remove a profile within the app. Purchase verification records held by RevenueCat are subject to RevenueCat's own retention policy. Crash logs held by Apple are subject to Apple's retention policy.

6. Your Rights Under GDPR

As a data subject in the EU/EEA you have the right to:

Access — request a copy of personal data we hold about you (Art. 15).
Rectification — ask us to correct inaccurate data (Art. 16).
Erasure — request deletion of your data ("right to be forgotten") (Art. 17).
Restriction — ask us to restrict processing in certain circumstances (Art. 18).
Portability — receive your data in a machine-readable format (Art. 20).
Objection — object to processing based on legitimate interest (Art. 21).
Withdraw consent — where processing is based on consent, withdraw it at any time without affecting prior processing.

To exercise any of these rights, contact us at radek@jozefowicz.dev. We will respond within 30 days.

You also have the right to lodge a complaint with the Polish supervisory authority: Urząd Ochrony Danych Osobowych (UODO), ul. Stawki 2, 00-193 Warsaw — uodo.gov.pl.

7. Children's Privacy

The app is designed for use by parents and guardians with their children. We do not knowingly collect personal data from children. Profile names entered into the app are stored solely on the parent's/guardian's device and are not accessible to us.

8. Changes to This Policy

We may update this policy from time to time. The "Last updated" date at the top of this page will reflect any changes. Continued use of the app after an update constitutes acceptance of the revised policy.

9. Contact

Questions or requests: radek@jozefowicz.dev