Privacy policy
Last updated: June 19, 2026.
Bloon One is built with privacy as a founding principle. Your personal data (credits, contacts, tasks, focus) stays encrypted locally on your device. The Bloon One server only stores the minimum technical metadata required for your account to work. This page explains exactly what's collected, why, and your rights.
What data do we collect?
On your device (AES-256 encrypted, never transmitted): credits, contacts, tasks, focus, statistics, settings, backups. On our servers (Neon Postgres, AWS US East 1 region, Virginia, USA): your email address, your name (optional), your language, your account creation date, the list of your registered devices (model, OS, app version), and the timestamp of your last login. No credit, contact or task content is ever sent to our servers.
Tracking and ads
Bloon One contains no third-party trackers, no marketing SDKs, no ads, no Google or Meta analytics. We only measure aggregated, anonymized stats (daily active users) to understand the health of the service. None of these measurements can identify you individually.
Required permissions
The app asks for access to your contacts (only if you choose to import), storage (for backups), biometrics (for lock), and push notifications (optional). No permission is used without your knowledge.
Magic-link authentication
To sign in, you enter your email. We send you a secure single-use link that expires after 15 minutes. No password is ever asked or stored. The IP address and browser of the request are logged temporarily to prevent abuse.
Backups and synchronization
Exported JSON backups are stored locally or shared via tools of your choice (email, AirDrop, personal cloud). In v1.0, no cloud sync is active: your content never leaves your device. End-to-end encrypted sync (E2EE) is planned for v1.1 and will remain opt-in.
Sub-processors
Neon Inc. (Postgres hosting, Canada/USA), Railway Corp. (API hosting, USA), Resend Inc. (sign-in emails, USA), Vercel Inc. (website and back-office hosting, USA). All are SOC 2 certified and GDPR compliant. None of them has access to the content inside your app.
Your rights (GDPR / Quebec Law 25)
Right of access, rectification, erasure, portability, and objection. You can delete your account at any time from the app (Profile → Account → Delete): server data is wiped immediately, the email is anonymized, tokens revoked. Uninstalling the app also wipes all local data.
Data retention
Active account: as long as you use it. Deleted account: email anonymized immediately, audit logs kept 90 days then purged. Local backups: under your exclusive control.
Contact us
Data controller: Bloon Tech inc., Quebec, Canada. To exercise your rights or any question: hello@bloon-one.app. Maximum response time: 30 days.