Privacy Policy

Effective Date: April 13, 2026

Last Updated: April 13, 2026

Calda is operated by Blackhole Software, LLC (doing business as CrashBytes). We built Calda with a simple, unbreakable promise: your health data belongs to you. It stays on your device, under your control, and is never sold, shared, or used for advertising.

This Privacy Policy explains what data Calda collects, where it is stored, how it is used, and what rights you have. We've written it in plain language because you deserve to understand exactly what happens with your information.

If you have any questions, you can reach us at privacy@caldalife.com.

1. Data We Collect and Where It Lives

Calda handles several categories of data. Where each type is stored matters, so we've been very specific.

1.1 Health and Wellness Data (On-Device Only)

This includes:

  • Symptom logs (type, severity, timing, notes)
  • Medication and HRT records (names, doses, schedules)
  • Journal entries
  • Apple HealthKit data you choose to share with Calda (sleep, heart rate, activity, etc.)

Where it is stored: Exclusively on your device using Apple's SwiftData framework with encryption at rest. This data is never transmitted to Blackhole Software servers. We cannot see it. We cannot access it. We do not want to.

1.2 iCloud Sync Data (Your iCloud Account)

If you enable iCloud sync, your health and wellness data is synced across your Apple devices using Apple's CloudKit private database. This means:

  • The data lives in your personal iCloud account, not on our servers.
  • Apple manages the encryption in transit and at rest.
  • Blackhole Software cannot access, read, or retrieve your CloudKit private database. Only you (and Apple, as your iCloud provider) can access this data.
  • You can disable iCloud sync at any time in the app's settings or in your device's iCloud settings.

1.3 Account and Authentication Data

Calda uses Sign in with Apple for authentication. When you create an account, Apple provides us with:

  • A unique user identifier (an anonymous ID specific to Calda)
  • An email address (if you choose to share it; Apple offers a private relay option that hides your real email)
  • Your name (only if you choose to share it)

Where it is stored: Your Apple user ID is stored securely to associate your account with community features. If you provided an email via Apple's relay service, we store the relay address. We do not receive or store your Apple ID password.

1.4 Community Data (Our Servers)

If you participate in Calda's community features, the following data is stored on Cloudflare servers operated by Blackhole Software:

  • Your display name
  • Posts and comments you create
  • Any content you voluntarily share in community spaces

Important: Community data is separate from your health data. Your symptom logs, medications, journal entries, and HealthKit data are never included in community features unless you manually type that information into a post or comment.

1.5 Analytics Data (Aggregate Only)

We use TelemetryDeck, a privacy-first analytics service, to understand how the app is used in aggregate. TelemetryDeck collects:

  • Basic usage patterns (which screens are viewed, which features are used)
  • App version, device type, and operating system version

TelemetryDeck does not:

  • Track individual users
  • Collect personal information
  • Use advertising identifiers
  • Create user profiles
  • Link data to your identity

This data helps us understand which features are most useful so we can improve Calda. It cannot be used to identify you.

2. How We Use Your Data

Data Purpose
Health & wellness data To provide symptom tracking, medication management, pattern insights, and health reports — all processed on your device
iCloud sync data To sync your data across your Apple devices, at your request
Account data (Apple ID) To authenticate you and associate you with your community profile
Community data To display your posts and comments to other community members
Analytics data To improve the app based on aggregate usage patterns

We do not use your data for:

  • Advertising or ad targeting
  • Selling or sharing with data brokers
  • Behavioral tracking or profiling
  • Training machine learning models on your personal data

3. AI-Powered Features

3.1 AI Coaching (Future Feature, Opt-In Only)

Calda plans to offer an optional AI coaching feature powered by the Claude API by Anthropic. This feature will be entirely opt-in. If you choose to use it:

  • Relevant health data you select will be sent to Anthropic's API over an encrypted connection to generate personalized insights.
  • Anthropic does not store API request data and does not use it to train their models.
  • You will be clearly informed before any health data is sent, and you must explicitly consent each time.
  • You can disable this feature at any time without affecting any other functionality.

3.2 Community Content Moderation

To keep the community safe and supportive, we use an AI moderation system (Ollama, hosted on our own servers) to review community posts and comments for harmful content, spam, and policy violations. This system:

  • Only processes community post and comment text that you voluntarily publish.
  • Does not have access to your health data, symptom logs, medications, journal entries, or any on-device data.
  • Runs on infrastructure we own and operate — community text is not sent to third-party AI services for moderation.

4. Third-Party Services

Calda integrates with a limited number of third-party services. We do not use any advertising SDKs, behavioral tracking tools, or data brokers.

Service Purpose Data Shared
Apple (Sign in with Apple) Authentication User ID, optional email (relay), optional name
Apple (CloudKit) iCloud sync (optional) Your health data in your own iCloud account
Apple (HealthKit) Health data integration (optional) Read-only access to data you approve; stays on device
TelemetryDeck Privacy-first analytics Aggregate, anonymous usage data only
Cloudflare Community feature hosting Display name, posts, comments
Anthropic (Claude API) AI coaching (future, opt-in) Health data you select, sent encrypted, not stored

5. Apple App Privacy Labels

In accordance with Apple's App Store requirements, here is how Calda's data practices map to Apple's privacy nutrition labels:

Data Used to Track You

None. Calda does not track you across apps or websites owned by other companies.

Data Linked to You

  • Identifiers (Apple user ID) — used for your account and community features only.

Data Not Linked to You

  • Health & Fitness — symptom logs, medications, HealthKit data. Stored on your device only. Not transmitted to us. Not linked to your identity.
  • Usage Data — aggregate app interaction data collected by TelemetryDeck. Cannot be tied to your identity.

6. Data Security

We take the security of your data seriously:

  • On-device encryption: Health data is stored using SwiftData with encryption at rest, protected by your device's security (passcode, Face ID, Touch ID).
  • iCloud encryption: CloudKit data is encrypted by Apple in transit and at rest within your iCloud account.
  • Server security: Community data on our Cloudflare infrastructure is protected by industry-standard encryption (TLS 1.3 in transit, encryption at rest).
  • API encryption: Any data sent to the Claude API (future AI coaching) will be transmitted over encrypted connections (TLS).
  • No unnecessary data collection: The best way to protect data is to not collect it. We collect the minimum data necessary for each feature to function.

7. Data Retention

  • On-device health data: Retained on your device until you delete it within the app or delete the app itself.
  • iCloud data: Retained in your iCloud account until you delete it from the app, disable iCloud sync, or delete your iCloud data through Apple's settings.
  • Account data: Retained until you delete your Calda account.
  • Community data: Posts and comments are retained until you delete them individually or delete your account. When you delete your account, all your community content is permanently removed from our servers within 30 days.
  • Analytics data: TelemetryDeck retains aggregate data according to their privacy policy. This data cannot be traced back to you.

8. Your Rights and Choices

Regardless of where you live, you have the following rights with Calda:

8.1 General Rights (All Users)

  • Export your data: You can export your health data in CSV or PDF format at any time from within the app.
  • Delete local data: You can delete any or all health data stored on your device through the app's settings.
  • Delete your account: You can request complete account deletion, which removes your account data and all community content from our servers.
  • Control iCloud sync: You can enable or disable iCloud sync at any time.
  • Control HealthKit access: You can grant or revoke Calda's access to Apple HealthKit at any time through your device's Health settings.
  • Opt out of AI coaching: The AI coaching feature is opt-in. You never have to use it, and you can disable it at any time.

8.2 Rights for European Economic Area (EEA) Users — GDPR

If you are located in the European Economic Area, the United Kingdom, or Switzerland, you have additional rights under the General Data Protection Regulation (GDPR):

  • Right of access: You can request a copy of all personal data we hold about you.
  • Right to rectification: You can request that we correct inaccurate personal data.
  • Right to erasure ("right to be forgotten"): You can request that we delete your personal data from our servers.
  • Right to data portability: You can request your data in a structured, commonly used, machine-readable format (CSV).
  • Right to restrict processing: You can request that we limit how we use your data.
  • Right to object: You can object to our processing of your personal data.
  • Right to withdraw consent: Where processing is based on consent, you can withdraw that consent at any time.
  • Right to lodge a complaint: You have the right to file a complaint with your local data protection authority.

Legal bases for processing: We process your personal data based on: (a) your consent (e.g., opting into AI coaching or community features), (b) performance of a contract (providing the app's services), and (c) our legitimate interests (improving the app through anonymous analytics, keeping the community safe through moderation).

Data Protection Contact: For GDPR-related inquiries, contact our data protection team at privacy@caldalife.com. We will respond to your request within 30 days.

8.3 Rights for California Residents — CCPA/CPRA

If you are a California resident, you have rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA):

  • Right to know: You can request details about the categories and specific pieces of personal information we have collected about you, the sources of that data, our purposes for collecting it, and the categories of third parties with whom we share it.
  • Right to delete: You can request that we delete your personal information from our systems.
  • Right to opt out of the sale or sharing of personal information: We do not sell your personal information. We do not share your personal information for cross-context behavioral advertising. There is nothing to opt out of, because we simply do not engage in these practices.
  • Right to correct: You can request that we correct inaccurate personal information.
  • Right to limit use of sensitive personal information: We only use sensitive personal information (health data) for the purposes of providing the app's features, and it remains on your device.
  • Right to non-discrimination: We will not discriminate against you for exercising any of your CCPA/CPRA rights. You will not receive different pricing, a different quality of service, or any penalty.

To exercise any of these rights, contact us at privacy@caldalife.com. We will verify your identity and respond within 45 days as required by law.

9. Children's Privacy

Calda is rated 12+ on the App Store. However, account creation and use of the app's features require confirmation that you are 18 years of age or older.

We do not knowingly collect personal information from children under 13. If we learn that we have inadvertently collected data from a child under 13, we will delete that data promptly. If you believe a child under 13 has provided us with personal information, please contact us immediately at privacy@caldalife.com.

10. Health and Medical Disclaimer

Calda is a wellness tool, not a medical device. Calda is not intended to diagnose, treat, cure, or prevent any disease or medical condition.

The information provided by Calda — including symptom tracking, pattern analysis, AI-generated insights, and community discussions — is for informational and wellness purposes only. It should not be considered medical advice.

Always consult a qualified healthcare provider before making decisions about your health, medications, hormone replacement therapy, or any medical treatment. Do not disregard professional medical advice or delay seeking it because of information you received through Calda.

If you are experiencing a medical emergency, contact your local emergency services immediately.

11. International Data Transfers

Your health data remains on your device (and in your iCloud account if you enable sync), so it is not transferred internationally by us.

Community data is hosted on Cloudflare's global infrastructure and may be processed in various countries. Cloudflare maintains appropriate safeguards, including Standard Contractual Clauses (SCCs), for international data transfers.

If you opt into the AI coaching feature, data will be processed by Anthropic in the United States under their data processing terms.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we make significant changes, we will:

  • Update the "Effective Date" and "Last Updated" dates at the top of this page.
  • Notify you through the app with a clear summary of what changed.
  • For material changes that affect how your health data is handled, we will request your renewed consent before those changes take effect.

We encourage you to review this policy periodically. Continued use of Calda after changes are posted constitutes acceptance of those changes, except where renewed consent is required.

13. Contact Us

If you have questions about this Privacy Policy, want to exercise your data rights, or have concerns about your privacy, we're here to help:

For GDPR-related requests, please include "GDPR Request" in your subject line. For CCPA/CPRA requests, please include "CCPA Request." We will acknowledge receipt of your request within 72 hours and respond fully within the timeframes required by applicable law.