Privacy Policy

Your data, your business

Blooml is a mood tracking app that handles sensitive, personal information. This policy explains what we collect, why, and what control you have over it.

Effective April 3, 2026

Overview

Blooml ("we," "us," "our") is a personal mood tracking and reflection app available on iOS. This Privacy Policy describes how we collect, use, store, and protect your information when you use the Blooml mobile application and the blooml.app website (together, the "Service").

Blooml is currently available in the United States. This policy is written to address the obligations that apply to a US-based consumer wellness app, including requirements under the FTC Act, COPPA, the FTC Health Breach Notification Rule, and state consumer health data laws.

We treat mood data, reflective notes, and emotional tags as sensitive personal information. That principle shapes every decision described below.

Information we collect

Information you provide directly

Category Examples Why we collect it
Mood entries Mood rating, free-text notes, emotional tags, timestamps Core product functionality — tracking, history, trends, and insights
Account information Email address (provided by Apple Sign-In) Authentication, account recovery, and support communications
Onboarding responses Answers to personalization questions during setup Tailoring the app experience to your preferences
Notification preferences Reminder time, enabled/disabled status, private mode setting Scheduling daily check-in reminders on your device

Information generated by your use of the app

Category Examples Why we collect it
Engagement events Feature interactions (e.g., viewing insights), timestamps Powering in-app features like the Bloom growth system
Subscription status Whether you have an active premium subscription Unlocking premium features

Information we do not collect

Blooml does not collect your location, contacts, photos, calendar, health data from Apple HealthKit, microphone audio, browsing history, or device advertising identifiers. We do not use any advertising SDKs or cross-app tracking, and we do not request App Tracking Transparency permission because we have nothing to track.

How we use your information

We use the information we collect for the following purposes and no others:

  • Providing the Service — displaying your mood history, generating trends and insights, syncing entries across signed-in devices, and powering features like data export and the Bloom growth system.
  • Authentication — verifying your identity when you sign in with Apple and maintaining your session.
  • Notifications — scheduling local reminders on your device at the time you choose. Reminder notifications are generated and delivered entirely on-device; no notification content is sent to our servers.
  • Product improvement — understanding onboarding completion patterns in aggregate to improve the setup experience. We do not analyze the content of your mood notes for product analytics.
  • Support — responding to your requests or questions when you contact us.

No advertising, no data sales. Blooml does not use your mood data, notes, tags, or any other personal information for advertising. We do not sell or share your personal information with data brokers, advertisers, or any third party for their own marketing purposes.

How we store and protect your data

On your device

Blooml is designed to work offline first. Your mood entries are stored locally on your device in an app-sandboxed database so the app works quickly and can recover from connectivity issues. Your authentication session is stored in your device's secure hardware-backed keychain (Expo SecureStore). Notification preferences and other settings are stored in local app storage.

In the cloud

When you sign in, your mood entries, onboarding responses, and engagement data are synced to our cloud database hosted by Supabase, a backend-as-a-service provider. All data in transit between your device and Supabase is encrypted using TLS (HTTPS). Access to your data on Supabase is restricted by row-level security policies that ensure each user can only access their own records.

Security practices

  • All network communication uses HTTPS/TLS encryption.
  • Authentication sessions are stored in hardware-backed secure storage, not in plain app storage.
  • Server-side database access is restricted per-user via row-level security policies.
  • Server-side logs hash user identifiers before recording them to limit exposure in the event of a log breach.
  • Account deletion triggers both server-side data removal and a local device wipe.

We maintain security practices appropriate to the sensitivity of the data we handle. No system is perfectly secure, and we cannot guarantee absolute security, but we design our systems with the assumption that mood and wellness data deserves strong protection.

Third-party services

We use a limited number of third-party services to operate Blooml. Each service receives only the data necessary for its function.

Service Purpose Data shared
Supabase Cloud database, authentication, server-side functions Account data, mood entries, onboarding responses, engagement events
RevenueCat Subscription management A user identifier and subscription status — RevenueCat does not receive your mood data, notes, or tags
Apple Authentication (Sign in with Apple), in-app purchases, app distribution Authentication tokens, purchase and subscription records — managed under Apple's own privacy policy

We do not use any third-party analytics SDKs (such as Google Analytics, Mixpanel, or Amplitude), advertising networks, crash reporting services, or AI/ML APIs that process your data. Product analytics are derived from first-party, aggregate database queries that do not expose individual mood content.

Notifications and lock screen privacy

Blooml can send daily check-in reminders if you enable them. These reminders are scheduled and delivered entirely on your device — no push notification tokens are sent to our servers, and no notification content passes through any external service.

Because reminder text could appear on your lock screen, Blooml includes a private reminder mode that replaces all notification content with a neutral message ("Open the app for your daily check-in") so that nothing on your lock screen reveals mood or mental-health context.

Data export and portability

You can export your mood history as a CSV file from the Settings screen in the app. Blooml creates a temporary file on your device and opens the system share sheet so you can save or send the file wherever you choose.

Once you share an export outside the app, that copy is controlled by the destination you chose — not by Blooml.

Account deletion and data removal

You can delete your account at any time from the Settings screen in the app. When you delete your account:

  1. Your user profile and all associated data (mood entries, onboarding responses, engagement events) are permanently removed from our cloud database.
  2. The app wipes all Blooml data stored locally on your device, including the mood database, cached exports, notification settings, and session credentials.

If you prefer, you can also request account and data deletion by emailing support@blooml.app from the email address associated with your account.

Some subscription and billing records may continue to be retained by Apple or RevenueCat under their own legal and operational requirements. Those records are governed by their respective privacy policies.

Data retention

We retain your mood entries, onboarding responses, and engagement data for as long as your account is active. We do not have a fixed retention schedule that automatically deletes older entries, because the value of a mood journal often grows over time.

When you delete your account, all associated data is permanently removed from our systems. There is no grace period or recovery window after deletion completes.

Children's privacy

Blooml is not intended for anyone under the age of 16. We do not knowingly collect personal information from children under 16. The app requires users to meet the minimum age requirement, which may vary by jurisdiction.

Because Blooml collects mood, wellness, and reflective information that may be treated as consumer health data under applicable law, we believe a higher age threshold than the COPPA minimum of 13 is appropriate for this type of product.

If we learn that we have collected personal information from someone under 16 without proper authorization, we will take steps to delete that information and disable the associated account as promptly as possible.

If you are a parent or guardian and believe that someone under 16 has provided personal information to us, please contact us at support@blooml.app.

Consumer health data

Blooml is not a medical device, and we are not a HIPAA-covered entity. However, we recognize that mood ratings, emotional notes, and wellness-related tags may qualify as consumer health data under state laws including the Washington My Health My Data Act, Connecticut's data privacy law, and similar statutes.

We handle this data accordingly:

  • We collect mood and wellness data only because it is necessary to provide the core product experience you signed up for.
  • We do not sell, share, or disclose consumer health data to third parties for advertising, marketing, or profiling purposes.
  • You can delete all consumer health data associated with your account at any time through the in-app deletion feature or by contacting us.
  • We do not use consumer health data to discriminate against or deny services to any user.

Breach notification

In the event of a security breach involving your personal information, we will notify affected users and, where required, the Federal Trade Commission, in accordance with the FTC Health Breach Notification Rule and any applicable state breach notification laws. Notification will occur without unreasonable delay and will describe the nature of the breach, the data involved, and the steps you can take to protect yourself.

Your choices

  • Export your data — download a CSV of your mood history from Settings.
  • Delete your account — permanently remove all data from our servers and your device from Settings, or by emailing us.
  • Sign out — sign out while keeping local data on the device.
  • Wipe local data — clear all Blooml data from the current device from Settings.
  • Control notifications — enable, disable, or switch to private reminder mode at any time.
  • Contact us — submit any privacy-related request, question, or complaint to support@blooml.app.

Changes to this policy

We may update this Privacy Policy from time to time to reflect changes in our practices, the Service, or applicable law. When we make material changes, we will update the "Effective" date at the top of this page and, where appropriate, provide notice through the app.

We encourage you to review this policy periodically. Your continued use of Blooml after changes take effect constitutes acceptance of the updated policy.

Questions or concerns?

For privacy-related questions, data requests, or to report a concern, reach out to the Blooml team. Include "Privacy" in the subject line for faster routing.

support@blooml.app