Preamble
This Privacy Policy explains how Wotter (the "App") collects, uses, stores, and shares information when you use it. Wotter is a hydration-tracking app that helps you set a daily water goal, log your intake, sync with Apple Health, and receive reminders.
Wotter is operated by:
- Operator: Théo Grelet (operating as "Wotter")
- Address: 11 Boulevard Saint-Marcel, 75013 Paris, Île-de-France, France
- Privacy contact: privacy@trywotter.com
If you have any questions about this policy or your data, contact us at the email above.
A key point up front: Wotter does not operate its own user-account server. Your hydration data lives on your device, in your personal iCloud account (Apple CloudKit), and — only if you allow it — in Apple Health. We do not host a copy of your hydration log on our servers.
1. Information We Collect
Information you provide directly
- Onboarding profile: during setup you may provide your weight, biological sex / physiology, age range, activity level, and climate, along with your motivation for tracking hydration. This information is used only to calculate a personalized daily hydration goal.
- Hydration logs: the amounts and times of water (and other drinks) you record.
- Reminder preferences: your chosen reminder schedule and notification settings.
- Support communications: if you contact us, we receive the content of your message and your contact details.
Information collected automatically
- Usage and product-analytics data: which screens you view, which features you use, onboarding progress, paywall interactions, and similar in-app events. This is collected through PostHog (see Section 5).
- Device information: device model, operating-system version, app version, language/region, and a generated analytics identifier. This identifier is not your name.
- Crash and error reports: diagnostic information when the app encounters an error.
Information from Apple frameworks
-
Apple Health (HealthKit): if you grant
permission, Wotter reads and writes water-intake data
(
dietaryWater) to Apple Health so your hydration stays in sync across your Apple devices and apps. Health data is a special category of personal data under GDPR; see Section 4 and Section 11. - iCloud / CloudKit: your hydration data can sync through your own iCloud account so it is available across your devices. This data is stored under your Apple ID, not on our infrastructure.
- Subscriptions (Apple In-App Purchase + RevenueCat): when you purchase a subscription, we receive subscription and entitlement status (for example, whether you are a Premium user, renewal dates, and a non-identifying purchase identifier) via RevenueCat. Apple processes your payment; we never receive your full payment-card details.
Data we do NOT collect
- We do not require you to create an account with an email and password.
- We do not collect your name, precise location (GPS), contacts, photos, or advertising identifiers for cross-app tracking.
- We do not receive your payment-card number.
2. How We Collect Information
- Directly from you through the onboarding quiz, in-app logging, and settings.
- Automatically through the analytics and error-reporting SDKs embedded in the app.
- Through Apple frameworks (HealthKit, CloudKit, StoreKit) with your permission, and through RevenueCat for subscription management.
We ask for the relevant iOS permissions (Apple Health access, notifications) before accessing those features. You can decline or revoke them at any time in iOS Settings.
3. How We Use Information
- Provide the core service: calculate your daily hydration goal, record and display your intake, and sync with Apple Health and iCloud.
- Send reminders according to the schedule you configure (local notifications).
- Improve the product: analyze which features are used and where users struggle in onboarding, so we can prioritize improvements.
- Manage subscriptions: determine whether you have access to Premium features and restore purchases.
- Diagnose and fix problems: investigate crashes and errors.
- Communicate with you: respond to support requests.
- Comply with legal obligations and enforce our terms.
We do not sell your personal data, and we do not use it for third-party advertising.
4. Legal Basis for Processing
Under the GDPR, we rely on the following legal bases:
- Calculating your goal, logging intake, providing core features: performance of a contract / provision of the service you requested.
- Reading and writing Apple Health data: explicit consent (special-category health data).
- iCloud sync: provision of the service you enabled.
- Product analytics and error reporting: consent and/or legitimate interest in improving the app.
- Subscription management: performance of a contract.
- Support communications: legitimate interest / performance of a contract.
- Legal compliance: compliance with a legal obligation.
You may withdraw consent at any time (for example, by revoking Apple Health access in iOS Settings).
5. Data Sharing and Third Parties
We share limited data with the following service providers ("processors"), each only to the extent needed to run the app:
- PostHog — product analytics and error reporting, hosted in the European Union (EU region). Receives usage events, device information, and the generated analytics identifier.
- RevenueCat — subscription management. Receives subscription/entitlement status and a purchase identifier.
- Apple Inc. — provides iCloud/CloudKit storage, HealthKit, and processes In-App Purchases. Your data handled by Apple is governed by Apple's own privacy policy.
We may also disclose information to legal authorities where required by law or valid legal process, and to a successor entity in the event of a merger, acquisition, or asset sale (with notice to you).
6. International Data Transfers
Our analytics data (PostHog) is stored in the European Union, so it is not transferred outside the EEA. Other providers may process limited data outside the EEA (for example, RevenueCat and Apple operate in the United States). Where this occurs, transfers are protected by appropriate safeguards such as the EU Standard Contractual Clauses or an applicable adequacy decision.
7. Data Retention
- Hydration logs, profile, and reminder settings: retained on your device and in your iCloud account until you delete them or uninstall the app. Because this data lives under your control, deleting it in the app or in iCloud removes it.
- Apple Health data: controlled by you within the Apple Health app; deleting the Wotter app does not automatically delete data already written to Apple Health.
- Analytics and error data (PostHog): retained for 12 months (PostHog EU default), then deleted or anonymized.
- Subscription records (RevenueCat / Apple): retained as required for billing and legal/accounting obligations.
8. Your Rights
Depending on where you live, you may have the following rights:
- Access — request a copy of the personal data we hold about you.
- Rectification — correct inaccurate data.
- Erasure — request deletion ("right to be forgotten").
- Restriction — limit how we process your data.
- Portability — receive your data in a portable format.
- Objection — object to processing based on legitimate interests.
- Withdraw consent — for example, revoke Apple Health access at any time.
- Lodge a complaint — with your local supervisory authority (in France, the CNIL).
Much of your data is directly under your control: you can delete your hydration history in the app, manage Apple Health permissions and data in the Health app, and disable analytics/notifications in Settings. For any request we handle directly, contact privacy@trywotter.com. We aim to respond within 30 days.
9. Cookies and Tracking
Wotter is a native iOS app and does not use browser cookies. It does not use the Apple advertising identifier (IDFA) or engage in cross-app tracking under Apple's App Tracking Transparency framework. It uses a first-party analytics identifier solely for in-app product analytics, as described in Section 5.
10. Security
We take reasonable technical and organizational measures to protect your data, including:
- Encryption in transit for analytics and subscription communications.
- Reliance on Apple's iCloud/CloudKit and HealthKit security models, which encrypt data at rest under your Apple ID.
- Minimal data collection and no self-hosted copy of your hydration data.
No system is completely secure. While we work to protect your information, we cannot guarantee absolute security.
11. Health Data
Wotter interacts with Apple Health to read and write your water-intake data. In line with Apple's HealthKit requirements and GDPR:
- We access Apple Health only with your explicit permission.
- Health data is used only to provide hydration-tracking features within the app.
- We do not use Apple Health data for advertising, and we do not share it with third parties for marketing.
- We do not sell Apple Health data.
12. Children's Privacy
Wotter is rated for general audiences (all ages) and is not specifically directed at children. The App does not require an account and collects only the minimal profile data described in Section 1.
Because the App may be used by minors, note that:
- We do not knowingly collect personal data from children below the digital-consent age in their jurisdiction (16 in France, subject to member-state variation; 13 under US COPPA) without appropriate parental consent.
- We do not use the data for advertising or profiling of minors.
If you believe a child has provided personal data without the required consent, contact us and we will delete it.
13. Contact and Rights Requests
- Privacy contact: privacy@trywotter.com
- Postal address: 11 Boulevard Saint-Marcel, 75013 Paris, France
- Response time: within 30 days of a verified request
- EU supervisory authority (France): Commission Nationale de l'Informatique et des Libertés (CNIL)
14. Changes to This Policy
We may update this Privacy Policy from time to time. When we make material changes, we will update the "Last updated" date and, where appropriate, notify you in the app. Your continued use of Wotter after changes take effect constitutes acceptance of the updated policy.
15. Additional Provisions
- No sale of data: we do not sell or rent your personal data to third parties.
- No third-party advertising: we do not use your data to serve third-party ads.
- Third-party services: Apple, PostHog, and RevenueCat process data under their own privacy policies; we are not responsible for their independent practices.
- Governing law: this policy is governed by the laws of France, with the mandatory consumer and data-protection protections of the EU/UK preserved.