Privacy Policy

This Privacy Policy describes how Undrift LLC (“we”, “us”, “our”) collects, uses, and shares information about you when you use the Tether mobile app, the Tether website, and any related services (collectively, the “Services”). By using the Services you agree to this Policy. If you do not agree, please stop using the Services.

Tether is a digital-wellness app that helps you block distracting apps and websites and optionally ties your focus sessions to an accountability partner (a “tether”). We designed Tether to collect as little personal data as the product needs.

• Legal entity: Undrift LLC
• Contact: hello@hitpause.app
• Data protection requests: privacy@hitpause.app

We collect only the data types we need to run the app. In Apple App Store terms, every category below is linked to your identity and not used for tracking. The purposes are strictly App Functionality:

Account data you give us

• Email address — to create and sign you in to your account, deliver verification emails, and contact you about your account.
• Name (first name, last name, username) — to personalize the app and show your tethers who you are.
• Profile picture (optional) — only if you upload one. Stored in Supabase Storage.
• Referral code — automatically assigned to your account so you can invite others.

Data the app generates

• User ID and Device ID — stable identifiers so your sessions, shields, and tethers sync across your devices.
• Product interaction — focus sessions you start and end, shields you configure, domains you block, tether relationships, unlock requests, and similar in-app actions. We need this for the core feature set (history, analytics you can see, tether accountability).
• Push notification tokens — so we can send you session reminders and notify your tether when you request an unblock.

What we do NOT collect

• We do not collect the list of apps you block via Apple's Screen Time / FamilyControls API. That data is stored by iOS on-device as opaque tokens and never leaves your phone.
• We do not collect your location.
• We do not collect your browsing history.
• We do not use third-party advertising trackers or any tracking SDKs. Our Apple privacy manifest declares NSPrivacyTracking = false and an empty NSPrivacyTrackingDomains.

• Run the product: create your account, authenticate you, sync sessions and shields across your devices, fulfill accountability (tether) requests, deliver push notifications.
• Customer support: answer your questions when you email us.
• Legal and safety: protect against abuse, comply with valid legal process, enforce our Terms of Service.
• Product improvement: aggregate, non-identifying metrics (how many sessions ran, error rates) to fix bugs and improve the app. We do not build advertising profiles.

We do not sell or rent your personal data. We share data only with service providers who help us run Tether, and only to the extent those providers need to do their job. Those providers are:

• Supabase, Inc. — database, authentication, storage, realtime sync. Supabase privacy policy.
• Vercel Inc. — hosting the web app and edge functions. Vercel privacy policy.
• Resend — transactional email delivery (verification, password reset, tether notifications). Resend privacy policy.
• Apple Inc. — App Store delivery, in-app purchases, push notification relay (APNs). Governed by Apple's policy.
• Google LLC — if you choose to sign in with Google, we receive your email and profile name as provided by Google's OAuth flow.

We may also share data when required by law (valid subpoena, court order) or in connection with a merger, acquisition, or sale of assets — in which case we will notify you.

We keep your account data for as long as your account is active. When you delete your account we remove your profile, sessions, shields, and tether relationships from our production systems within 30 days. Backup copies age out within 90 days.

We may keep a minimal log of abuse-related events (e.g. spam reports) for up to one year even after deletion, for safety and to protect other users.

All data is encrypted in transit (TLS 1.2+) and at rest (AES-256 on Supabase). Access to production data is limited to the minimum number of engineers, uses hardware-backed MFA, and is logged. No system is perfectly secure, but we follow industry-standard practices to protect your information.

You have the right to access, correct, delete, or export your personal data. To make a request, email privacy@hitpause.app from the email associated with your account. We will respond within 30 days.

California residents (CCPA / CPRA)

You have the right to know what personal information we collect, to delete it, to correct it, and to opt out of its “sale” or “sharing”. We do not sell or share your personal information as defined by the CCPA.

EU / UK residents (GDPR / UK GDPR)

Our lawful bases for processing are: (a) performance of the contract you enter when you create an account, (b) your consent where collected (e.g. optional profile picture, notifications), and (c) our legitimate interests in running and securing the Service. You have the right to access, rectification, erasure, restriction, data portability, and objection. You may also lodge a complaint with your local supervisory authority.

Tether is not directed to children under 13, and we do not knowingly collect personal information from children under 13. If you believe a child has provided us data, contact privacy@hitpause.app and we will delete it promptly.

Undrift LLC is based in the United States. When you use Tether your data is transferred to and stored in the United States (Supabase, Vercel, and Resend's US regions). For transfers from the EEA, UK, or Switzerland we rely on the Standard Contractual Clauses issued by the European Commission.

In addition to this policy, Tether publishes an Apple App Store privacy label covering the same categories of data listed in Section 2. The iOS app also includes a privacy manifest (PrivacyInfo.xcprivacy) that declares we do not use tracking and the Apple “required reason” APIs we rely on. Tether uses Apple's FamilyControls framework to apply your blocklists at the OS level; selections made via FamilyControls are stored on-device as opaque tokens and are never transmitted to our servers.

We may update this Policy from time to time. When we do, we will change the “Last updated” date at the top and, for material changes, notify you by email or in-app banner before the changes take effect.

Questions? Requests? privacy@hitpause.app. Mail: Undrift LLC, privacy inquiries.