Privacy Policy
Effective Date: 02/27/2026
Last Updated: 02/27/2026
To-Do Lock (“we,” “our,” or “us”) is operated by Epiphyte Gens LLC, registered in Miami, Florida, USA.
This Privacy Policy explains how we collect, use, disclose, and protect your information when you use our mobile application (“App”) and related services.
1. Information We Collect
We may collect the following categories of information:
A. Personal Information
- Name and email address (if you create an account or use Sign in with Google or Apple)
- Account authentication details (limited to the information you authorize us to receive)
- Profile photo (if provided)
We do not receive or store your Google or Apple passwords.
B. App Activity & Usage Data (Core Functionality)
Because To-Do Lock is a productivity and app-blocking application, we may collect or process:
- Screen time data
- App usage statistics
- Foreground app activity
- App open/close events
- Time spent in specific applications
- Lock/unlock attempts
- Task completion status
- Streak metrics
- Productivity analytics
On:
- iOS: Through Apple Screen Time / Device Activity APIs.
- Android: Through Usage Access and, if enabled, Accessibility Services.
We do not access the content inside other apps (such as messages, emails, photos, or passwords).
C. Location Information
We may collect:
- Approximate location
- Precise location (GPS-level data)
Location data may be used to:
- Enable location-based lock rules (e.g., auto-lock at specific places)
- Improve security and fraud prevention
- Personalize productivity insights
- Analyze regional usage trends
- Improve advertising relevance (if permitted)
Location access is optional and can be disabled in your device settings at any time.
D. App Blocking & Device Control Data
To enable enforcement features, we may process:
- List of installed apps
- Selected apps to block
- Blocking schedules
- Unlock attempts
- Overlay interaction events (Android)
- Accessibility events (Android, if enabled)
- Device configuration data required for enforcement
E. Identifiers & Tracking Data
- Device identifiers (Android Advertising ID, IDFA on iOS if consented)
- IP address
- Device type
- OS version
- App version
- Crash logs
- Diagnostic information
F. Uploaded Content
If future features allow:
- Image uploads
- Attachments
- Notes
- Profile customization
We may collect and store that content.
2. Permissions We Request
To-Do Lock may request the following permissions:
Core Enforcement Permissions
Screen Time / Device Activity (iOS)
Used to monitor app usage and enforce blocking rules.
Usage Access (Android)
Used to detect foreground apps for enforcement.
Accessibility Service (Android, optional)
Used to improve real-time detection and lock reliability.
Overlay Permission (Android)
Used to display blocking screens when restricted apps are opened.
Location Permissions
Precise Location (GPS)
Used for location-based locking rules, security verification, fraud prevention, and personalization features.
Approximate Location
Used for regional analytics and general feature personalization.
Location permissions are optional and can be disabled at any time through your device settings.
Authentication
Google Sign-In / Apple Sign-In
Used to authenticate and sync data.
Notifications
Used to:
- Remind you of tasks
- Notify you when lock sessions start or end
- Send streak or productivity alerts
Camera (Future Use)
If enabled in future versions:
- To scan QR codes
- To attach images to tasks
- For personalization features
We only access images you explicitly choose to share.
Storage / Media Access
Used to:
- Cache temporary data
- Store exports
- Save configuration backups
Internet Access
Required to:
- Sync data
- Deliver subscription features
- Process analytics
- Provide updates
3. How We Use Your Information
We use your information to:
- Enforce app blocking functionality
- Provide productivity metrics
- Generate streak tracking
- Improve enforcement reliability
- Prevent circumvention of lock rules
- Provide customer support
- Analyze performance
- Deliver and measure ads
- Comply with legal obligations
We do not sell your personal data.
4. Tracking & Advertising
We may use:
- SDKs
- Device identifiers
- Cookies
- Tracking technologies
For:
- Analytics
- Attribution
- Ad performance measurement
- Ad personalization (if consented)
On iOS, tracking requiring App Tracking Transparency (ATT) occurs only after user permission.
You can reset advertising identifiers via device settings.
5. Data Storage & Retention
Data is stored securely on cloud infrastructure.
Retention periods:
- Usage & screen time data: up to 24 months
- Account data: until deletion
- Analytics data: up to 36 months
- Location data: retained only as long as necessary for functionality and security
We may anonymize data for statistical analysis.
6. Data Sharing
We do not sell your data.
We may share limited data with:
- Cloud hosting providers
- Analytics providers (e.g., Firebase / Google Analytics)
- Advertising platforms (e.g., Meta Ads, Google Ads)
- Payment processors (Apple / Google Play)
- Legal authorities if required by law
Each provider operates under its own privacy policy.
7. Account & Data Deletion
You may request deletion at:
Upon verification:
- Account data is deleted
- Blocking history is deleted
- Identifiable data is removed
Some data may be retained if legally required.
8. Your Rights
Depending on your location, you may have rights to:
- Access
- Correct
- Delete
- Restrict processing
- Object to processing
- Withdraw consent
- Request portability
Contact: support@epiphytegens.com
9. Children’s Privacy
Not directed to children under 13 (or under the age of digital consent in their jurisdiction).
We will delete such data if identified.
10. Security
We use:
- TLS/SSL encryption
- Encryption at rest
- Access controls
- Monitoring
- Secure API design
No system is 100% secure.
11. International Users
By using the App, you consent to data processing in the United States and other countries where our providers operate.
12. Changes to This Policy
We may update this policy periodically.
The “Last Updated” date reflects revisions.
13. Contact Us
Epiphyte Gens LLC
Miami, FL, USA
Email: support@epiphytegens.com