Privacy Policy

Reforgr is built privacy first. We do not require an account. We never ask for your name, your email, your phone number, or anything else that identifies you. This policy explains who we are, what data stays on your device, the few things that leave it, who we rely on to process them, and the rights you have.

Who we are

Reforgr is a focus and self-discipline wellness app for iPhone. The data controller is Nomis IT, a French single-member limited liability company (societe a responsabilite limitee a associe unique) with share capital of 1,000 EUR, registered with the Trade and Companies Register (RCS) of Lille Metropole under number 921 726 170 (SIREN 921 726 170). Its registered office is at 2 ter rue d'Anchin, 59242 Templeuve-en-Pevele, France. The legal representative (gerant) and director of publication is Simon Brienne. You can reach us at support@reforgr.com.

The app is distributed through the Apple App Store (Apple Inc., One Apple Park Way, Cupertino, CA 95014, USA). Our backend and static pages are hosted by Cloudflare, Inc., 101 Townsend Street, San Francisco, CA 94107, USA.

Our privacy-first model

Everything you do in Reforgr is stored on your device, and, if your device has it enabled, in your own private iCloud Key-Value Store: your streak, your relapse history, your completed program days, your day notes and written reflections, your answers to the in-app questions, your daily check-ins, your urge logs, and your conversation history with the in-app coach. That iCloud copy is controlled by Apple under your Apple ID and syncs only across your own devices signed in to that Apple ID. We do not keep our own copy of any of it. When you use the AI features (your personalized plan and the coach), some of this content is sent anonymously, processed to generate a response, and never stored, exactly as described below. Nothing we process is linked to your identity.

We want to be honest rather than overclaim: it is not true that nothing ever leaves your phone. A small, deliberate set of data does leave the device for specific features, described next. Everything outside that set stays local.

Exactly what leaves your device

The optional anonymous leaderboard. Only if you choose to join it. When you opt in, the app stores a randomly generated anonymous identifier, a nickname you pick, your streak numbers, and an optional short public bio line in our Cloudflare database. This contains no personal information. The bio line is checked automatically to remove links, contact handles, and offensive words. You can leave the leaderboard at any time, which deletes that entry.

The AI features. Reforgr offers two optional AI features: a personalized 30-day program and a supportive coach chat. When you use them, the app sends an anonymous payload to our backend Worker. For the program this includes the codes of the options you selected, coarse progress signals, the day titles your earlier plans already covered, and the reflections you have written in the program, so your next plan can build on your own words. For the coach this includes your message, the same coarse context, and your recent reflections. This payload contains no name, email, or other identifier. It is processed to generate a response and then discarded. We do not store these payloads on our server, and they are not linked to your identity.

Purchases. If you subscribe or buy the lifetime option, the purchase is handled by Apple In-App Purchase and managed for us through RevenueCat using an anonymous app user identifier. We never receive your Apple ID, your email, or your payment details. The app only learns whether your paid access is currently active.

Your IP address. When your device contacts our backend, Cloudflare processes your IP address transiently for security and to apply a per-IP rate limit that prevents abuse. We do not use it to identify you and we do not build a profile from it.

What we do not do

• We do not show ads.
• We do not track you across other apps or websites.
• We do not use advertising identifiers.
• We do not sell or share your data with anyone for their own purposes.

Cookies and tracking

The app uses no cookies and no tracking technologies. Our marketing website uses only Google Fonts to display its typefaces, which may cause your browser to log a font request to Google when the page loads. The website has no analytics, advertising, or tracking cookies. We do not use advertising identifiers.

The third parties we rely on

To run the features above we use a small number of processors, each acting on our instructions for the limited purposes described:

• Apple distributes the app and processes all purchases through In-App Purchase.
• RevenueCat verifies and manages purchase status using an anonymous app user identifier.
• Cloudflare hosts our static pages, our backend Worker, and our database, processes IP addresses for security and rate limiting, and provides Cloudflare Workers AI as the fallback AI processor.
• OpenCode Zen, which runs a DeepSeek model, is our primary AI processor for the program and coach features.

The anonymous, categorical AI payloads are processed only to return a response and are not stored on our server by us or by these processors for their own use.

Legal bases under the GDPR

Where the GDPR applies, we rely on the following legal bases:

• Consent (Article 6(1)(a)) for joining the anonymous leaderboard and for using the optional AI features, since both are opt-in. You can withdraw consent at any time by leaving the leaderboard or by not using the AI features.
• Performance of a contract (Article 6(1)(b)) to provide the app and to process your purchase and entitlement status through Apple and RevenueCat.
• Legitimate interests (Article 6(1)(f)) to keep the service secure and available, including the transient processing of your IP address for security and rate limiting and the automated moderation of the public bio line.

International transfers

Some of our processors are located in the United States (Apple, RevenueCat, and Cloudflare). Our AI processor OpenCode Zen may process your anonymous payloads outside the European Economic Area. When data is processed there, the transfer is governed by appropriate safeguards under the GDPR, such as the European Commission's Standard Contractual Clauses, together with the technical measures described in this policy, in particular that the data leaving your device is anonymous and not linked to your identity.

Data retention

The data stored on your device and in your iCloud stays until you delete it, for example by deleting the app or clearing its data. This data is under your control. Deleting the app removes the local copy from your phone. The iCloud copy is held by Apple under your Apple ID and stays under your control, so you decide when to remove it.

Your optional leaderboard entry is kept while you remain opted in and is deleted when you leave the leaderboard. Leaving the leaderboard deletes that entry.

The anonymous AI payloads are not stored. Each payload is processed to produce a response and then discarded.

The per-IP records that Cloudflare uses for the security rate limit are kept only for about one hour, then expire. We keep no server-side profile of you.

Purchase records are kept by Apple and RevenueCat for as long as needed to manage your access and meet their legal obligations.

Your rights

Because we hold almost no data about you, most of your information is already under your direct control on your device, where you can view, edit, and delete it at any time. For any data that does leave the device, and to the extent the GDPR applies, you have the right to access, rectification, erasure, restriction of processing, objection, and portability, as well as the right to withdraw consent where processing is based on consent.

To exercise any of these rights, email us at support@reforgr.com. We answer requests to exercise your rights within one month, as required by the GDPR. Please note that the leaderboard and AI data are anonymous and not linked to your identity, so we may be unable to find an entry that belongs to you without information that you provide, such as your chosen nickname. You also have the right to lodge a complaint with the French data protection authority, the CNIL (Commission Nationale de l'Informatique et des Libertes), 3 Place de Fontenoy, TSA 80715, 75334 Paris Cedex 07, France, www.cnil.fr.

Children

Reforgr is intended for users aged 13 and over. It is not directed to children under 13, and we do not knowingly collect data from anyone under 13.

Not a medical service

Reforgr is a wellness, focus, and discipline tool. It is not a medical device, it makes no medical claims, and it does not diagnose, treat, or cure any condition. It is not a substitute for care from a qualified professional.

Changes to this policy

If this policy changes, we will update this page and the date at the top. For significant changes affecting the few things that leave your device, we will make the update clear.

Contact

Questions about your privacy or this policy? Email support@reforgr.com.