Privacy Policy

Last updated: April 21, 2026

What Pactit Does

Pactit is a social commitment app. You pick apps you want to avoid, set a duration, and lock in a pact. If you open a blocked app during the pact, your device detects it. Pactit monitors — it doesn't block. You always have the choice to open any app. But if you choose wrong, there are consequences.

App Selection Privacy

When you pick apps to avoid, Apple's system picker returns an encrypted token — not a list of app names. Pactit literally cannot see which apps you selected. We can count how many apps are in your selection, but we never know what they are. This is enforced by Apple's operating system, not by our code.

From Apple's documentation: "Your app cannot determine which apps the user has selected. This preserves the user's privacy about the apps installed on their device."

On-Device Processing

Your screen time usage data is processed entirely on your device. Usage charts you see in the app are rendered by Apple's own sandboxed process — a separate, OS-enforced container that our code cannot inspect. The charts show your data on your screen, but the underlying numbers never pass through Pactit's code and never leave your device.

This is the same privacy model as Apple's built-in Screen Time feature in Settings.

What Goes to the Server

Only derived, minimal signals leave your device:

  • Breach event — a boolean ("did you open a blocked app?") plus a timestamp. Never which app.
  • Qualification check — a boolean confirming you have meaningful historical usage of the apps you picked.
  • Pact records — title, duration, start/end dates, status, your username.

The server never receives: app names, bundle identifiers, usage durations as numbers, your list of installed apps, or screenshots of your usage.

Data Storage

Your account and pact data are stored on Supabase (PostgreSQL database hosted on AWS infrastructure). Auth session tokens are stored securely on your device using iOS Keychain (via Expo Secure Store).

All database tables are protected by Row Level Security (RLS) policies, ensuring you can only access your own data.

Optional Proof System

Pactit offers an optional proof-of-commitment feature. If you opt in, a screenshot of your off-limits list is captured, uploaded to private storage, and validated server-side. The validation process may use Google Cloud Vision OCR to extract visible app names from the screenshot for anti-forgery verification.

Proof screenshots are stored in a private bucket accessible only to you. This feature is entirely optional and does not affect the core pact monitoring.

Third-Party Services

  • Supabase — database, authentication, edge functions, and file storage.
  • Apple — Sign in with Apple authentication, Screen Time / Family Controls API for device monitoring.
  • Google — Google Sign-In authentication, Cloud Vision API (optional proof OCR).

No Advertising

Pactit does not sell, share, or provide your data to advertisers, analytics companies, or data brokers. Your data exists to power your commitments, not to profile you.

Data Retention & Deletion

Your data is retained as long as your account is active. When you delete your account, all associated data — pact records, proof screenshots, breach events, and authentication credentials — are permanently deleted from our servers.

Contact

Questions about this policy or your data? Reach us at privacy@pactit.club .