BeAChallenger

Privacy Policy

This page outlines how BeAChallenger collects, uses, and protects your data, and how you can control your privacy preferences.

Last updated: 11/04/2026

BeAChallenger is an independent hobby project operated by an individual creator (“we”, “our”, “us”). This Privacy Policy explains how we collect, use, store, and protect your information when you use our website, mobile application, widget extension, and related services (the “Service”).

1. Information We Collect

We collect only the data reasonably necessary to operate and improve the Service.

Information you provide directly

  • Email address for account creation, authentication, password resets, and service emails
  • Display name, username, profile image, and other profile details you choose to add
  • Leaderboard, challenge, community, and social activity linked to your account, including follows, joins, invites, and moderation actions
  • Challenge submissions, including scores, notes, and any attached proof
  • Proof media you choose to upload, capture, or save, including images, videos, and generated proof images

Information from optional native device features

  • Apple Health data, if you grant permission and choose to import it. We currently read recent workouts and step totals to help you submit eligible challenge scores.
  • Camera, microphone, and photo library access, if you choose to capture, upload, save, or manage proof media
  • Push notification token, if you enable push notifications on iOS
  • Local reminder preferences, such as your selected reminder time, if you enable daily iPhone reminders
  • Minimal widget summary data synced to on-device shared storage if you use the iOS Home Screen widget
  • Sign in with Apple data, if you choose that login method, including your Apple identity token and any name or email Apple shares with us

Information collected automatically

  • Device, browser, app, and operating system information
  • IP address and security-related metadata for abuse prevention and account protection
  • Usage and diagnostic data, such as pages visited, features used, and actions taken in the Service

2. How We Use Your Information

We use your information to:

  • Create and manage your account
  • Authenticate users, process password resets, and support login methods such as Sign in with Apple
  • Display leaderboards, rankings, and profiles
  • Enable communities, follows, social notifications, and other core product features
  • Process score submissions, generate proof, and review and moderate submission content
  • Enable native iOS features such as Apple Health score import, widgets, quick access routes, and reminders
  • Send transactional emails, push notifications, and on-device reminders you choose to enable
  • Validate and manage Pro subscriptions and restore purchases
  • Review and moderate submissions
  • Maintain platform integrity and security
  • Comply with legal obligations

We do not sell your personal data.

3. Apple Health, Widgets, and Notifications

Some iPhone-only features use additional permissions or on-device storage.

Apple Health

  • We request read-only access only. We do not write data back to Apple Health.
  • We use Apple Health data only to help you import eligible challenge scores, prefill submissions, and generate proof inside the app.
  • We do not use Apple Health data for advertising, data brokerage, or unrelated profiling.
  • We do not keep a separate long-term copy of raw Apple Health data unless you choose to turn imported data into a submission, note, or proof artifact.

Widgets and on-device summaries

  • If you add the BeAChallenger widget, the app syncs a small summary to shared on-device storage so the widget can render.
  • This summary can include active leaderboard count, pending submissions, approval rate, primary leaderboard title, best rank, best challenge name, and a route back into the app.
  • This widget data stays on your device and is cleared when the app resets widget data, such as when you sign out.
  • Because widgets can be visible on the Home Screen, information shown there may be visible to someone using or viewing your device.

Notifications

  • If you enable push notifications, we store your iOS device token so we can send app updates such as rank, submission, and account-related alerts.
  • If you enable daily reminders, those reminders are scheduled locally on your device through iOS and can be turned off in the app or in iOS Settings.

4. Proof Media, Camera, Microphone, and Photo Library

If you upload or capture proof for a submission:

  • Camera, microphone, and photo library access are used only when you choose to use those features.
  • Proof media is stored temporarily.
  • Proof is stored in a private bucket and accessed with short-lived signed links.
  • Proof is accessible only to you and authorized moderators/admins.
  • Generated proof images are saved to your photo library only if you ask us to save them.
  • Proof is deleted after moderation and periodically purged after retention windows.

We do not retain proof media longer than necessary.

5. Purchases and Sign-In Options

  • If you buy Pro on iOS, Apple processes the payment. We do not receive your full card or bank details.
  • To validate and manage subscriptions, we may process product identifiers, receipt or transaction data, original transaction identifiers, subscription plan, subscription status, and renewal or expiry information.
  • If you use Sign in with Apple, we process the identity token and any name or email Apple provides to authenticate and create your account.

6. Legal Basis for Processing (GDPR)

We process personal data under the following legal bases:

  • Performance of a contract (providing the Service)
  • Legitimate interests (security, fraud prevention, moderation)
  • Consent (optional profile information and optional device permissions such as Apple Health, notifications, camera, microphone, and photo library access)

7. Data Sharing

We do not share your personal data with third parties except:

  • Service providers necessary to operate the Service, such as hosting, storage, authentication, email delivery, push delivery, Apple sign-in, and App Store subscription processing or receipt validation
  • Authorized moderators or admins where needed to review submissions and proof media
  • Other users where information is intentionally made visible through the Service, such as usernames, profiles, rankings, community activity, and leaderboard participation, subject to the Service’s visibility settings
  • When required by law or legal process

If you choose to import Apple Health data and then submit it as a score or proof, that submitted content is treated like other submission content and may be visible to authorized moderators/admins during review.

8. Data Retention

  • Account data is retained while your account is active
  • Submission history, moderation records, and community or leaderboard activity are retained while needed to operate the Service and enforce rules, or until deletion where applicable
  • Proof media is deleted after moderation and scheduled retention cleanup jobs
  • Push device tokens are retained while notifications are enabled and while needed to deliver notifications, or until removed, disabled, or your account is deleted
  • Raw Apple Health reads are requested on demand and are not stored long-term unless you choose to turn them into a submission, note, or proof artifact
  • Widget summary data and local reminder settings remain on your device until cleared, disabled, or removed
  • You may request account deletion at any time; this removes profile/content data and your authentication account record, subject to any limited retention required for security, fraud prevention, or legal compliance

9. Your Rights (GDPR)

You have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Request deletion of your data
  • Restrict or object to processing
  • Data portability

To exercise these rights, contact:beachallenger@outlook.com

10. Security

We implement appropriate technical and organizational measures to protect your data, including:

  • Authentication controls
  • Access restrictions
  • Private storage and signed access for proof media
  • Secure storage and encryption where applicable

No system is 100% secure, but we take security seriously.

11. Children’s Privacy

The Service is not intended for users under 16. We do not knowingly collect data from children.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted with an updated date.

13. Contact

If you have questions about this policy or your data:

Data controller/operator: Individual creator of BeAChallenger (not a registered company).

Email: beachallenger@outlook.com