Privacy Policy
Effective Date: 10 December 2025
Last Updated: 10 December 2025
Ahimo ("the App") is operated by Radim Simanek ("we," "us," or "our"). We are committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and safeguard your personal data in accordance with the GDPR, the Swiss FADP, and Apple HealthKit requirements.
1. What Data We Collect
1.1 Health & Sensor Data (Processed Only On Your Device)
With your explicit consent, Ahimo may access and store the following only on your device:
- HealthKit Data: Sleep, steps, heart rate, blood pressure, calories burned (only those you authorize).
- Manual Entries: Mood, stress, fluid intake.
- Location Data: Coordinates are used locally and sent directly to Apple WeatherKit to retrieve forecast information. This allows the App to provide insights on how weather impacts your mood. We do not store or track your movement history on our servers.
We do not collect, transmit, or view your health or precise location data.
If you enable iCloud backup, this data may be included in your iCloud backup, with Apple as the data controller.
1.2 Technical Data (Non-Health)
Mandatory Crash & Performance Data — Legitimate Interest (GDPR Art. 6(1)(f))
Collected via Google Firebase Crashlytics to ensure app stability:
- Crash reports and error logs
- Device model and OS version
- App version
- Installation UUID (randomly generated)
Crash telemetry never includes health data.
Optional Usage Analytics — Consent (GDPR Art. 6(1)(a))
If you opt in, anonymized usage events are collected via Google Firebase Analytics. You may enable or disable analytics at any time in the App's Settings. This includes:
- Interaction events
- Approximate Location: City/Region derived from IP address (to understand where our users are located).
2. How Your Data Is Processed
2.1 On-Device Processing
- All health computations, weather correlations, statistics, and AI insights run entirely on your device.
- Your raw health data is never transmitted to us or any third party.
2.2 AI Processing
We utilize Apple's Foundation Models framework to generate health insights. This processing is performed entirely on your device using your device's local Neural Engine. Your health data is not transmitted to Apple's Private Cloud Compute or any other external AI service for this processing.
2.3 Server Processing (Technical Data Only)
Only crash logs and optional analytics (including approximate location) are processed by Google Firebase.
3. Legal Bases for Processing
| Health & Weather Data | Explicit Consent (Art. 9(2)(a)) |
| Given via iOS HealthKit and Location prompts. | |
| Crash Logs | Legitimate Interest (Art. 6(1)(f)) |
| Necessary for identifying bugs and ensuring app stability and security. | |
| Usage Analytics | Consent (Art. 6(1)(a)) |
| Optional and withdrawable at any time. |
4. How Long We Keep Your Data
- Health Data: Stored only on your device until you delete entries or uninstall the app.
- Crash Logs: Retained by Firebase for up to 90 days.
- Analytics: Retained for 2 months (per our configuration), then automatically deleted.
5. Sharing and Transfer of Data
We do not sell, rent, or share your personal health data. Furthermore, we do not use your HealthKit data for advertising, marketing, or user data mining purposes.
5.1 Third-Party Service Providers
The only third party receiving limited technical data (no health data) is:
Google Firebase (Google LLC) - Purpose: Crash reporting and optional analytics (including coarse location)
Data Location: Technical data may be processed in the United States
Safeguards: EU-US Data Privacy Framework or Standard Contractual Clauses (SCCs)
6. Your Rights
Under GDPR and the Swiss FADP, you may:
- Access your personal data
- Request deletion (delete local data or uninstall the app)
- Withdraw consent: Since Ahimo does not collect or store identifiable personal data, withdrawing consent simply means disabling Analytics in Settings or uninstalling the app. Anonymous analytics data processed by Firebase cannot be linked back to you and therefore cannot be individually deleted.
- Object to legitimate-interest processing
- File a complaint with your data protection authority
- U.S. residents: See Section 11 for additional rights
To exercise these rights, please contact the controller using the details below.
7. Data Storage & Security
On Device
Your health data is stored locally and protected using hardware-backed iOS encryption. We do not maintain any external health-data database.
iCloud Backup
If enabled, your data is stored on Apple's servers.
- Security and encryption of these backups are managed entirely by Apple.
- We do not add any additional encryption layer to these backups.
- Depending on your settings (e.g., Advanced Data Protection), Apple may hold the encryption keys.
Transmission Security
Technical data (e.g., crash logs) is transmitted via HTTPS/TLS.
8. Children
Ahimo is not intended for users under 16. We do not knowingly collect data from children.
9. Changes to This Policy
We may update this policy occasionally. Significant changes will be communicated through the App.
10. Contact (Data Controller)
Radim Simanek
Unterfeldstrasse 2
Stein, Switzerland
Email: info@ahimo.app
11. Addendum for U.S. Residents
This section supplements the information above and addresses requirements under U.S. state privacy laws, including the CCPA.
11.1 Categories of Data Collected (Last 12 Months)
| Category | Collected | Source | Purpose |
|---|---|---|---|
| Identifiers (Device ID, UUID) | Yes | Device | Crash Reporting & Analytics |
| Health & Medical Info | Yes (Local Only) | User / HealthKit | App Functionality |
| Internet Activity | Yes | Device | Analytics (if enabled) |
| Geolocation Data | Yes | Device (Weather) / IP Address (Analytics) | App Functionality & Analytics |
| Sensitive Personal Info (Health Data) | Yes | User / HealthKit | App Functionality |
11.2 "Do Not Sell or Share My Personal Information"
We do not sell your personal data.
We do not share data for cross-context behavioral advertising.
11.3 Your U.S. Privacy Rights
You may have the right to:
- Request to Know: Access the categories of data collected (all anonymous)
- Request Deletion: Delete local data or uninstall the App
- Limit Use of Sensitive Information: We already limit sensitive data strictly to essential app functionality
- Non-Discrimination: You will not be treated differently for exercising your rights
Because Ahimo does not collect identifiable data, Firebase analytics and crash logs cannot be associated with you personally and therefore cannot be individually deleted.
To exercise these rights, contact: info@ahimo.app
This policy is effective as of 10 December 2025 and will remain in effect except with respect to any changes in its provisions in the future, which will be in effect immediately after being posted on this page.