Privacy Policy for DailyWander
1. Introduction
This Privacy Policy explains how DailyWander ("we", "our", or "the App") collects, uses, and protects your personal information. We are committed to protecting your privacy and complying with applicable data protection laws, including the General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA).
By using DailyWander, you agree to the collection and use of information in accordance with this policy.
2. Data Controller
The data controller responsible for your personal data is:
Joeri Vanthienen
Email: support@dailywander.app
Location: Netherlands
3. Information We Collect
3.1 Local App Data
- What We Collect: Walk history, saved routes, preferences, daily walk and shuffle counts, and premium status cached on device
- Purpose: To provide app functionality, remember your progress, and enforce free-tier limits
- Storage: Stored locally on your device using SwiftData, UserDefaults, and Apple system storage
- Legal Basis (GDPR): Necessary for contract performance and legitimate interest
- Retention: Stored until you delete the app or clear app data
3.2 Location Data
- What We Collect: Your precise location while generating routes or guiding active walks
- Purpose: To create nearby walking routes and provide navigation context
- Storage: Current location is processed on device; route requests may be sent to Apple Maps; saved walk history remains on device unless you export or share it
- Legal Basis (GDPR): Consent and necessary for contract performance
- Retention: Active location is used while the app is in use; any route history you keep remains on device until deleted by you
3.3 Health and Fitness Data
- What We Collect: Walking distance, active energy, workout routes, and related workout data you choose to read from or write to Apple Health
- Purpose: To track progress, calculate activity metrics, and export completed walks to Apple Health
- Storage: Stored in Apple Health and on your device; we do not store your raw HealthKit data on our own servers
- Legal Basis (GDPR): Explicit consent
- Retention: Controlled by you through Apple Health and iOS privacy settings
3.4 Subscription and Payment Data
- What We Collect: App Store transaction state, subscription status, product purchased, trial status, and pseudonymous identifiers used to reconcile purchase events
- Third Party: Apple (App Store) and RevenueCat
- Purpose: To manage subscriptions, validate receipts, and unlock premium features
- Storage: Processed by Apple and RevenueCat; RevenueCat may receive the PostHog distinct ID so subscription events line up with in-app analytics
- Legal Basis (GDPR): Necessary for contract performance
- Retention: Retained by Apple and RevenueCat according to their privacy policies
3.5 In-App Usage and Analytics Data
- What We Collect: Pseudonymous user ID, screen views, route generation and navigation events, paywall interactions, subscription state, app version, device model, locale, and other product interaction events
- Third Party: PostHog
- Purpose: To understand feature usage, measure conversions, improve reliability, and guide product decisions
- Storage: Processed by PostHog using pseudonymous identifiers; not used for advertising or cross-app tracking
- Legal Basis (GDPR): Legitimate interest
- Retention: Retained by PostHog according to their privacy policy and configured retention settings
3.6 Support Data
- What We Collect: Support chat messages, optional email address, app version, iOS version, device model, and the support context you choose to send us
- Third Party: Crisp
- Purpose: To provide customer support, troubleshoot issues, and respond to feature requests
- Storage: Processed by Crisp over encrypted connections
- Legal Basis (GDPR): Consent and legitimate interest
- Retention: Retained by Crisp according to their privacy policy and your support history
3.7 Website Analytics Data
- What We Collect: If you visit
dailywander.app, we may collect aggregate page visit and campaign performance data
- Third Party: Umami
- Purpose: To understand website traffic and which pages help users find the app
- Storage: Processed as website analytics and kept separate from in-app walk history
- Legal Basis (GDPR): Legitimate interest
- Retention: Retained by our website analytics provider according to their privacy policy
4. How We Use Your Information
We use collected information for the following purposes:
- Route Generation and Navigation: Using your location to create personalized walking routes and guide active walks
- Activity Tracking: Recording your walks, progress, and optional Apple Health exports
- Feature Access: Managing free-tier limits, premium subscriptions, and entitlement state
- Support: Responding to support conversations and troubleshooting issues
- Product Improvement: Understanding how features are used so we can improve the app and website
5. Data Sharing and Third Parties
We do NOT sell your personal data. We share data only with the following trusted third parties:
5.1 Apple
- Services: App Store, Apple Maps, HealthKit, Location Services
- Data Shared: Payment information, route requests, and HealthKit data you explicitly authorize
- Privacy Policy: https://www.apple.com/legal/privacy/
5.2 RevenueCat
- Purpose: Subscription management and receipt validation
- Data Shared: Pseudonymous user ID, subscription status, purchase events, and related entitlement data
- Privacy Policy: https://www.revenuecat.com/privacy/
5.3 PostHog
- Purpose: Product analytics and conversion measurement inside the app
- Data Shared: Pseudonymous identifiers, product interaction events, app/device metadata, and subscription state
- Privacy Policy: https://posthog.com/privacy
5.4 Crisp
- Purpose: Customer support chat
- Data Shared: Support messages, optional email address, and device/app context needed to help you
- Privacy Policy: https://crisp.chat/en/privacy/
5.5 Umami (Website Only)
- Purpose: Aggregate website analytics for
dailywander.app
- Data Shared: Website visit and campaign performance data
- Privacy Policy: https://umami.is/privacy
We do NOT use:
- Advertising networks
- Cross-app tracking
- Third-party social media trackers in the iOS app
- Session replay screenshots in the app
6. Your Rights (GDPR & CCPA)
You have the following rights regarding your personal data:
6.1 Right to Access
You can request a copy of personal data held by our third-party processors. Most app data is stored locally on your device and is available directly in the app.
6.2 Right to Rectification
You can update or correct data in the app settings or by contacting us for third-party records where applicable.
6.3 Right to Erasure ("Right to be Forgotten")
You can delete your data by:
- Deleting the app from your device (removes local app data)
- Contacting us to request deletion of data held by our third-party providers where applicable
- Canceling your subscription and requesting deletion where provider retention rules allow
6.4 Right to Data Portability
You can export your walk history and routes through the app's export features.
6.5 Right to Object
You can object to data processing by:
- Revoking location permissions in iOS Settings
- Revoking HealthKit permissions in iOS Settings
- Not using the support chat
- Contacting us regarding analytics or support data requests
6.6 Right to Restrict Processing
You can limit data processing by disabling specific permissions or avoiding optional features such as support chat and Apple Health integration.
6.7 Right to Withdraw Consent
You can withdraw consent at any time by:
- Disabling location services in iOS Settings -> Privacy & Security -> Location Services
- Disabling Apple Health access in iOS Settings -> Privacy & Security -> Health
6.8 Right to Lodge a Complaint
If you're in the EU/EEA, you can lodge a complaint with your local data protection authority.
7. Data Security
We implement appropriate security measures to protect your data:
- Local-First Storage: Walk history and preferences are primarily stored on your device
- Encryption: Network requests to third-party providers use HTTPS/TLS encryption
- Limited Processor Access: Third-party services receive only the data needed for subscriptions, support, analytics, or routing
- No Advertising Tracking: We do not use advertising SDKs or cross-app tracking
- Platform Protections: We rely on Apple platform security and the security controls of our service providers
8. Children's Privacy
DailyWander is suitable for all ages. We do not knowingly collect personal information from children under 13 without parental consent. If you believe a child has provided personal information through our services, please contact us.
9. International Data Transfers
While the app is available worldwide:
- Most walk history and preferences stay on your device
- Third-party providers such as Apple, RevenueCat, PostHog, Crisp, and Umami may process data outside your country of residence
- Where required, we rely on the safeguards offered by those providers, such as contractual commitments and applicable transfer mechanisms
10. Data Retention
- Local App Data: Retained on your device until you delete the app or clear app data
- Location Data: Used while generating or guiding routes; route history you keep remains on device
- Health Data: Controlled by you through Apple Health
- Subscription Data: Retained by Apple and RevenueCat according to their policies
- Analytics Data: Retained by PostHog according to configured retention settings and their policy
- Support Data: Retained by Crisp according to their policy and your support history
- Website Analytics Data: Retained by Umami according to their policy
11. Cookies and Tracking
- The iOS app does not use browser cookies
- We do not use advertising trackers or cross-app tracking
- We do use pseudonymous product analytics in the app through PostHog
- We do not enable session replay screenshots in the app
- Our website may use privacy-friendly aggregate analytics through Umami
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of significant changes by:
- Updating the "Last Updated" date
- Displaying an in-app notice (for material changes)
- Requesting renewed consent where required by law
Continued use of the app after changes constitutes acceptance of the updated policy.
13. Contact Us
If you have questions about this Privacy Policy or want to exercise your rights, contact us:
Email: support@dailywander.app
Response Time: We aim to respond within 30 days where required by law
14. Legal Basis for Processing (GDPR Summary)
| Data Type |
Legal Basis |
| Local App Data |
Contract Performance, Legitimate Interest |
| Location Data |
Consent, Contract Performance |
| Health Data |
Explicit Consent |
| Subscription Data |
Contract Performance |
| In-App Analytics Data |
Legitimate Interest |
| Support Data |
Consent, Legitimate Interest |
| Website Analytics Data |
Legitimate Interest |
15. California Privacy Rights (CCPA)
California residents have additional rights:
- Right to Know: What personal information we collect
- Right to Delete: Request deletion of your personal information
- Right to Opt-Out: We do not sell personal information
- Non-Discrimination: We will not discriminate for exercising your rights
This privacy policy complies with:
- EU General Data Protection Regulation (GDPR)
- California Consumer Privacy Act (CCPA)
- Apple App Store Guidelines
- ISO 27001 privacy principles