LimitX Privacy Policy

i Introduction

LimitX ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains in detail how we collect, use, disclose, and safeguard your information when you use our iOS application and Safari extension ("App").

By downloading, installing, or using LimitX, you agree to this Privacy Policy. If you do not agree, please do not use the App.

                Key Points:
                We collect only data necessary to provide our services
Your data is encrypted in transit and at rest
You have full control over your data and can delete it at any time
We comply with GDPR for EU users
AI features require explicit consent before activation

            

📊 Information We Collect

We collect the following categories of information:

1. Account Information Required

Data Type	Purpose	Storage
Email Address	Account creation, authentication, password recovery	Supabase Cloud (encrypted)
Password	Authentication (stored as secure hash, never plain text)	Supabase Cloud (hashed)
Display Name	Personalization within the app	Supabase Cloud

2. Protection & Monitoring Data Required for core features

Data Type	Purpose	Retention
Blocked URLs/Domains	Content blocking accountability	90 days
Violation Timestamps	Activity tracking and reporting	90 days
Violation Types	Categorization (adult, keyword, etc.)	90 days
Device Identifier	Multi-device support	Until account deletion

3. Progress & Gamification Data Optional

Data Type	Purpose
Streak Count	Track consecutive clean days
Mission Progress	Challenge completion tracking
Points & Rewards	Gamification features

4. Preferences & Settings

We store your app preferences locally on your device:

Protection toggle settings
Whitelist/blacklist custom domains
Keyword blocklist
Notification preferences
Safe search settings

⚠ AI Companion Data Sharing

🚨 Important Notice About AI Features

The Urgo AI Companion feature sends data to a third-party AI service. This feature is entirely optional and disabled by default. Data is only sent after you explicitly enable this feature and consent to data sharing.

What Data is Sent to the AI Service

When you use the Urgo AI Companion, the following data is transmitted:

Data Sent	Purpose	Sent When
Chat Messages	Your typed messages to the AI companion	Each message you send
Conversation History	Previous messages in current session for context	Each message you send
Streak Information	Your current streak count for personalized responses	When starting a chat
Selected Mood	Your emotional state selection (if provided)	When you select a mood

Who Receives This Data

🤖 Groq, Inc.

Groq is an AI infrastructure company that processes chat messages to generate AI responses.

API Endpoint: api.groq.com

Privacy Policy: https://groq.com/privacy-policy/

Model Used: compound-mini (optimized for supportive conversations)

How We Obtain Your Consent

Data Protection by Groq

Groq, Inc. provides the following protections for your data:

Data is transmitted over encrypted HTTPS connections
Groq does not use your conversations to train their AI models
Conversations are not stored permanently by Groq
Groq complies with applicable data protection regulations

🔒 Your Control Over AI Data:

You can disable AI features at any time in Settings
You can delete your chat history within the app
Disabling AI stops all future data transmission to Groq
You can use LimitX's core protection features without ever enabling AI

🔗 Third-Party Services

LimitX uses the following third-party services. Each service has its own privacy policy:

☁ Supabase (Backend Infrastructure)

Provides authentication, database, and API services.

Data Shared: Account information, violation logs, progress data

Privacy Policy: https://supabase.com/privacy

🤖 Groq AI (AI Companion - Optional)

Powers the Urgo AI companion chat feature.

Data Shared: Chat messages, conversation context, mood selection

Consent Required: Yes, explicit opt-in

Privacy Policy: https://groq.com/privacy-policy/

 Apple StoreKit (Payments)

Handles in-app purchases and subscriptions.

Data Shared: Transaction data (managed by Apple)

Privacy Policy: https://www.apple.com/legal/privacy/

Third-Party Data Protection:

All third-party services we use are contractually obligated to protect your data and provide equal or greater privacy protections than described in this policy.

🛠 How We Use Your Information

We use your information for the following purposes:

Core App Functionality

Provide content blocking and protection services
Authenticate your account and maintain your session
Track your progress (streaks, missions, rewards)
Sync settings across your devices

Parental & Accountability Features

Send email alerts to designated accountability partners
Generate activity reports via the web portal
Provide real-time monitoring dashboard

AI Companion (When Enabled)

Generate supportive, personalized AI responses
Provide encouragement based on your progress
Maintain conversation context within sessions

Service Improvement

Analyze aggregated, anonymized usage patterns
Fix bugs and improve app performance
Develop new features

                We DO NOT:
                Sell your personal data to third parties
Use your data for targeted advertising
Share your data with data brokers
Access the content of websites you visit (only blocked domains)

            

🕑 Data Retention

Data Category	Retention Period	Deletion Method
Account Information	Until account deletion	Settings > Delete Account
Violation History	90 days	Automatic deletion
Chat History (AI)	Until manually deleted	AI Companion > Clear History
Progress Data	Until account deletion	Settings > Delete Account
Local Preferences	Until app uninstall	Uninstall app

🏴 Your Rights (GDPR)

If you are located in the European Union, you have the following rights under GDPR:

Right to Access: Request a copy of your personal data
Right to Rectification: Correct inaccurate or incomplete data
Right to Erasure: Request deletion of your data ("right to be forgotten")
Right to Restrict Processing: Limit how we use your data
Right to Data Portability: Receive your data in a machine-readable format
Right to Object: Object to certain processing activities
Right to Withdraw Consent: Withdraw consent at any time for optional features

To exercise these rights, contact us at privacy@limitx.app. We will respond within 30 days.

🔒 Data Security

We implement robust security measures to protect your data:

Encryption in Transit: All data transmitted using TLS 1.3 encryption
Encryption at Rest: Database encrypted using AES-256
Password Security: Passwords hashed using bcrypt algorithm
Access Controls: Strict access controls and authentication
Regular Audits: Periodic security reviews and updates
Secure Infrastructure: Hosted on enterprise-grade cloud infrastructure

👪 Children's Privacy

LimitX is designed to help users of all ages build healthier digital habits. We take children's privacy seriously:

Users under 13 should use LimitX with parental supervision
Parents can monitor activity through our Parental Dashboard (portal.limitx.app)
We do not knowingly collect personal information from children under 13 without parental consent
Parents can request deletion of their child's data at any time

If you believe we have collected data from a child without parental consent, please contact us immediately at privacy@limitx.app.

🌐 International Data Transfers

Your data may be transferred to and processed in countries outside your country of residence, including the United States. These countries may have different data protection laws.

We ensure appropriate safeguards are in place:

Standard Contractual Clauses (SCCs) with service providers
Data Processing Agreements with all third parties
Compliance with EU-US Data Privacy Framework where applicable

🔄 Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

Posting a notice within the App
Sending an email notification to your registered email
Updating the "Last Updated" date at the top of this policy

We encourage you to review this Privacy Policy periodically. Continued use of the App after changes constitutes acceptance of the updated policy.

📧 Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:

Email: privacy@limitx.app
Website: https://limitx.app
Support Portal: https://portal.limitx.app

Data Controller:
DownLabs
European Union

For EU residents, you also have the right to lodge a complaint with your local data protection authority.

📋 Data Collection Summary

Category	Collected	Shared With	User Consent
Account Data	Yes	Supabase (backend)	At signup
Violation Data	Yes	Supabase (backend)	At consent screen
Progress Data	Yes	Supabase (backend)	At signup
AI Chat Data	Optional	Groq AI	Explicit opt-in
Payment Data	No*	Apple only	At purchase

*Payment data is handled entirely by Apple and is not accessible to us.

📋 Related Documents

Please also review our other legal documents:

Terms of Use (EULA): https://limitx.app/apple/eula.html
Apple Standard EULA: Apple's Licensed Application End User License Agreement