Privacy Policy — Jitterbug

Jitterbug ("the app," "we," "us," or "our") is a caffeine tracking application for iOS, operated by HV Ventures LLC (the "operator" or "data controller"). Jitterbug is offered under the Kyvera brand. This Privacy Policy explains what information the app collects, how it is stored, who it is shared with, and the rights you have over your data. By using the app, you agree to this policy.

Plain-English summary

The short version: most of your data stays on your device. We use one anonymous analytics service (PostHog) that does not collect your IP address or anything that can identify you personally. The optional camera scan feature sends an image of your drink to AI providers to identify it. You can delete your data at any time by deleting the app or contacting us.

What we collect

The app collects only what is necessary for it to work:

Caffeine logs — the drink name, drink type, caffeine amount, cost, and timestamps you enter. Stored locally on your device.
User profile — your display name (optional), daily caffeine baseline, goal, taper pace, bedtime, half-life metabolizer profile, drink budget, implementation intentions, and notification preferences. Stored locally on your device.
Attribution source (optional) — during onboarding the app asks how you heard about Jitterbug. You may skip this question. The selection is stored locally on your device.
Anonymous usage events — aggregated events such as "drink logged," "paywall shown," and "scan completed" are sent to our analytics provider (see "Analytics" below). Each event is tagged with a randomly generated, anonymous identifier created on first launch. We do not collect your IP address, name, email, advertising ID, or any other personally identifiable information for analytics.
Subscription state — when you purchase a subscription or lifetime plan, an anonymized purchase receipt is processed by RevenueCat to remember whether you have premium access. We never see your payment card information.
Camera images (optional, only when you use scan) — when you tap the camera scan button, the captured image is sent to our backend, which forwards it to one or more AI providers to identify the drink. The image is processed for the response and not stored by us. See "AI scan feature" below.
Crash and diagnostic data — Apple's iOS may collect crash reports if you have opted in to share them with developers in your iOS Settings. This is governed by Apple's privacy practices.

We do not collect your legal name, email, postal address, phone number, contacts, photos library (except images you explicitly choose to scan), location, or any biometric data unless you contact us directly at support@kyvera.app.

How your data is stored

The app is offline-first. Your caffeine logs, profile, settings, and attribution selection are stored locally on your device using on-device key-value storage (MMKV). The app is fully functional without an internet connection, and your caffeine logs never leave your device unless you explicitly use a feature that requires the network (camera scan, AI search, subscription purchase).

We do not sell, rent, or trade your personal data with third parties for marketing or advertising purposes.

Apple Health integration

If you grant permission, Jitterbug writes the caffeine entries you log into Apple Health, so they appear in the iOS Health app alongside your other health data. The app does not read any data from Apple Health. No health data is transmitted off your device by Jitterbug. You can grant or revoke Apple Health access at any time in iOS Settings → Privacy & Security → Health → Jitterbug.

AI scan feature

The app's camera scanner is optional. You can avoid it entirely by logging drinks manually or by searching the built-in drink database.

When you use the scan feature, the captured image (or barcode value, or extracted text from the nutrition label) is sent over an encrypted connection to our backend infrastructure (Supabase Edge Functions, hosted in the United States), which forwards the request to one or more third-party AI and data providers and returns the identified drink and caffeine estimate.

Before the request is sent, the image is resized and re-encoded to reduce its size. We do not include your name, anonymous identifier, or any personal context in the request. The image is processed to generate a response and is not stored by us beyond the duration of the request.

The third-party processors involved in the scan feature are:

Google (Gemini Vision) — primary drink + nutrition label identification. policies.google.com/privacy
OpenAI — fallback drink identification when the primary provider is uncertain. openai.com/policies/privacy-policy
Groq — fallback for drink-name caffeine lookup. groq.com/privacy-policy
Cohere — secondary fallback for drink-name caffeine lookup. cohere.com/privacy
Open Food Facts — open-source product database used to look up barcodes. world.openfoodfacts.org/cgi/legal.pl
USDA FoodData Central — public US government nutrition database used as a barcode-lookup fallback. fdc.nal.usda.gov
Supabase — hosts the Edge Function proxy that brokers the requests above. Our use of Supabase is the data-processor relationship between Jitterbug and the AI providers. supabase.com/privacy

On-device features (no data leaves your phone)

Several features run entirely on your device with no network access:

On-device text recognition — when you scan a nutrition label, the app first tries Apple's on-device Vision framework (or ML Kit on Android) to read the text. If that succeeds, no image leaves your phone.
Caffeine math — your daily total, rolling 7-day average, mascot stage, withdrawal phase, sleep forecast, and burndown curve are all computed locally from your logs.
Notifications — your morning, evening, last-call, and personalized "if-then" notifications are scheduled and delivered by iOS itself based on your settings. Notification content is generated on-device.

Subscriptions and purchases

Jitterbug offers optional paid plans processed entirely through Apple's In-App Purchase system. We use RevenueCat to manage subscription state and entitlements. RevenueCat receives anonymized purchase receipts from Apple — no payment card information. We never see or store your payment details at any point.

RevenueCat's privacy practices: revenuecat.com/privacy

Analytics

Jitterbug uses PostHog for anonymous product analytics. We collect aggregated events about how the app is used (for example, "drink logged," "paywall shown," "scan completed") so we can find bugs and improve the app. We do not collect your IP address, name, email, advertising identifier, or any other personally identifiable information through analytics. Each install is tagged with a randomly generated identifier created on your device that has no link to your identity.

If you would prefer to opt out of analytics entirely, contact us at support@kyvera.app and we can suppress analytics collection for your device.

PostHog's privacy practices: posthog.com/privacy

Push notifications

If you grant notification permission, the app schedules optional reminders (morning hydration cue, evening summary, last-call alert before your bedtime cutoff, and personalized "if-then" plan notifications you set up during onboarding). All scheduling is performed on-device and the content of notifications is generated locally. You can revoke notification permission at any time in iOS Settings → Notifications → Jitterbug.

Data retention

Local data (caffeine logs, profile, settings) is retained on your device until you delete the app or clear its data through iOS Settings. Anonymous analytics events are retained by PostHog according to their retention policy (typically 7 years for product-analytics tier). Camera images sent through the AI scan feature are processed for the response and are not retained by us.

International data transfers

Our backend infrastructure is hosted in the United States (AWS us-west-1 region via Supabase). PostHog is hosted in the United States. AI providers may operate servers in the United States, the European Union, or other regions per their own infrastructure. If you are located outside the United States — including in the European Economic Area, the United Kingdom, Switzerland, or other countries with different data-protection rules — your data may be transferred to and processed in the United States, where data-protection law may differ from your home country. By using the app you consent to that transfer.

Your privacy rights

Subject to applicable law, you may have rights to access, correct, delete, or limit the use of your personal data, and to data portability. Because most of your data lives on your device, you can exercise most of these rights yourself: open the app to view your data, edit logs and profile fields directly, or delete the app to remove all device-stored data.

To request server-side action — for example, deletion of analytics events tagged with your anonymous identifier, or any other rights request under GDPR (EU/UK), CCPA/CPRA (California), or similar frameworks — email us at support@kyvera.app from the device where Jitterbug is installed (we may need a technical signal from your device to identify the anonymous identifier). We respond within 30 days.

California — "Do Not Sell or Share My Personal Information"

We do not sell your personal information, and we do not share your personal information with third parties for cross-context behavioral advertising as those terms are defined under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA). You do not need to take any action to opt out of selling or sharing because we do not engage in either practice.

California residents have the additional rights to know, delete, correct, and limit the use of sensitive personal information. To exercise those rights, contact us at support@kyvera.app.

Account deletion

Jitterbug does not require you to create an account. To delete your data:

Local data — delete the app from your iPhone, or use iOS Settings → General → iPhone Storage → Jitterbug → Delete App.
Apple Health entries — open the iOS Health app → Browse → Caffeine → Show All Data → swipe to delete the entries you want removed.
Subscription — manage or cancel through iOS Settings → your Apple ID → Subscriptions.
Anonymous analytics events — email support@kyvera.app from the device where Jitterbug is installed and request deletion of analytics events tied to your anonymous identifier. We will action the request within 30 days.

Cookies and website tracking

This website (where you are reading this policy) does not use tracking cookies, pixels, or behavioral advertising. The site loads fonts from Google Fonts and a CSS framework from a public CDN; those services may receive standard server-log information (IP address, user-agent) when the page is rendered. The website itself does not set any cookies.

Children's privacy

Jitterbug is not directed at children under 13 and we do not knowingly collect data from children under 13. If you believe a child has provided us information, please contact us and we will delete it promptly.

Changes to this policy

We may update this privacy policy from time to time. When we make material changes, we will update the "Last updated" date at the top of this page and surface the change inside the app on the next launch. Continued use of the app after a material change means you accept the updated policy.

Contact

Questions, concerns, or rights requests? Reach us at support@kyvera.app.