Privacy Policy

Last Updated: February 14, 2026

1. Introduction

This Privacy Policy describes how Bonded, Inc. ("Bonded," "we," "us," or "our") collects, uses, shares, and protects personal information when you use the Bonded mobile application (the "App"), the website at hugtimer.app (the "Site"), and related services (collectively, the "Service"). This policy applies to all users of the Service regardless of location.

By using the Service, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree, please do not use the Service. This Privacy Policy is incorporated into and subject to our Terms of Service.

2. Information We Collect

2.1 Information You Provide

Category	Data	Purpose
Account	Email address, display name	Account creation, authentication, communication
Profile	Profile photo (optional)	Personalization within your Inner Circle
Inner Circle	Contact names/identifiers	Enabling hug connections (stored encrypted)
Whispers	Short voice messages	Delivered end-to-end encrypted; we cannot access content

2.2 Information Collected Automatically

Category	Data	Purpose
Device	Device type, OS version, app version	Compatibility, debugging
Diagnostics	Crash logs, error reports	Improving app stability
Usage	App opens, feature usage (anonymized)	Product improvement (aggregate analytics only)
Subscription	Subscription status (from Apple)	Providing appropriate feature access

2.3 Information We Do NOT Collect

3. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve the Service
• Create and manage your account
• Process and deliver hug transmissions within your Inner Circle
• Send you service-related communications (account verification, security alerts, support)
• Monitor and analyze usage trends to improve user experience (aggregate data only)
• Detect, investigate, and prevent fraud, abuse, and security incidents
• Comply with legal obligations

We do not use your information for advertising, profiling, or sale to third parties. Ever.

4. Legal Basis for Processing (GDPR)

If you are in the European Economic Area (EEA), United Kingdom, or Switzerland, our legal bases for processing your personal data are:

• Contract Performance: Processing necessary to provide the Service you requested (account management, hug delivery).
• Legitimate Interests: Processing for our legitimate business interests (security, fraud prevention, analytics) where these are not overridden by your rights.
• Consent: Where you have given explicit consent (e.g., HealthKit integration, optional profile photo).
• Legal Obligation: Processing necessary to comply with applicable laws.

5. Information Sharing and Disclosure

We do not sell, rent, or trade your personal information to anyone. We may share limited information only in the following circumstances:

• Service Providers: Trusted third parties that help us operate the Service (e.g., cloud hosting, crash reporting), bound by confidentiality agreements and prohibited from using data for their own purposes.
• Legal Requirements: When required by law, subpoena, court order, or governmental authority. Note: due to end-to-end encryption, we cannot produce the content of hug transmissions or Whispers.
• Safety: To protect the rights, property, or personal safety of Bonded, our users, or the public.
• Business Transfer: In connection with a merger, acquisition, or sale of assets, with notice to affected users.

6. End-to-End Encryption

All hug transmissions, Whisper voice messages, and Inner Circle data are protected by end-to-end encryption. This means:

• Only you and the intended recipient can access the content of communications.
• Bonded's servers relay encrypted data but cannot decrypt it.
• We do not hold encryption keys for user content.
• Even if compelled by law enforcement, we cannot produce the content of encrypted communications because we do not have the ability to decrypt them.

We use industry-standard encryption protocols. While no system is perfectly secure, we are committed to maintaining the highest practical standard of data protection.

7. Apple HealthKit Data

If you enable HealthKit integration, the following strict rules apply in compliance with Apple's HealthKit guidelines:

• HealthKit data (hug frequency, affection metrics, wellness insights) is stored exclusively on your device within Apple's Health ecosystem. Bonded does not operate any servers or databases for health data.
• HealthKit data is never transmitted to Bonded's servers or any third party. Apple controls the storage, encryption, and protection of all HealthKit data on your device and in iCloud (if you enable iCloud Health sync).
• The privacy and security of your health data is governed by Apple's Privacy Policy and Apple's HealthKit framework. Apple encrypts HealthKit data at rest and in transit using hardware-level encryption on your device.
• Bonded can only read or write HealthKit data with your explicit permission, which you grant through Apple's standard HealthKit authorization prompts. You can revoke this access at any time.
• HealthKit data is never used for advertising, marketing, data mining, or any purpose other than providing health-related functionality directly to you on your device.
• HealthKit data is never sold or shared with third parties, including data brokers or advertisers.
• If you delete the Bonded app, any HealthKit data written by Bonded remains in Apple's Health app under your control. You can manage or delete it through the Apple Health app at any time.
• If you use iCloud Health sync, your HealthKit data is encrypted end-to-end by Apple and stored in your iCloud account. Bonded has no access to your iCloud data.

In summary: Apple — not Bonded — is the custodian of your health data. We simply write affection metrics to HealthKit on your behalf, and Apple handles all storage, encryption, backup, and security. For details on how Apple protects your health data, see Apple's Privacy Policy and Apple's Health data documentation.

Bonded is not a medical device and the Service is not intended to diagnose, treat, cure, or prevent any disease. HealthKit integration is provided for wellness tracking purposes only.

8. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes described in this Privacy Policy:

• Account data: Retained while your account is active. Deleted within 30 days of account deletion request.
• Encrypted communications: Relay data is purged from servers within 72 hours of delivery. We do not maintain long-term archives of encrypted content.
• Diagnostic data: Retained for up to 12 months, then anonymized or deleted.
• Usage analytics: Stored in aggregate, anonymized form and retained indefinitely for product improvement.

Upon account deletion, we will delete or anonymize your personal data within 30 days, except where retention is required by law.

9. Data Security

We implement appropriate technical and organizational measures to protect your personal information, including:

• End-to-end encryption for all communications
• Encryption at rest for stored data
• TLS 1.3 for data in transit
• Regular security audits and penetration testing
• Access controls limiting employee access to personal data
• Secure software development practices

While we strive to protect your personal information, no electronic transmission or storage method is 100% secure. In the event of a data breach, we will notify affected users and relevant authorities as required by applicable law.

10. Your Privacy Rights

Depending on your location, you may have the following rights regarding your personal data:

• Access: Request a copy of the personal data we hold about you.
• Correction: Request correction of inaccurate or incomplete data.
• Deletion: Request deletion of your personal data.
• Portability: Request a portable copy of your data in a machine-readable format.
• Objection: Object to processing of your data for certain purposes.
• Restriction: Request that we restrict processing of your data.
• Withdrawal of Consent: Withdraw consent where processing is based on consent.

To exercise any of these rights, please contact us at privacy@hugtimer.app. We will respond within 30 days (or sooner as required by applicable law).

11. California Privacy Rights (CCPA/CPRA)

If you are a California resident, you have the following additional rights under the California Consumer Privacy Act (as amended by the California Privacy Rights Act):

• Right to Know: You can request disclosure of the categories and specific pieces of personal information we have collected about you.
• Right to Delete: You can request deletion of your personal information, subject to certain exceptions.
• Right to Opt-Out of Sale: We do not sell personal information. No opt-out is necessary.
• Right to Non-Discrimination: We will not discriminate against you for exercising any of these rights.
• Right to Correct: You can request correction of inaccurate personal information.
• Right to Limit Use of Sensitive Personal Information: We do not use sensitive personal information for purposes other than providing the Service.

To make a verifiable consumer request, contact us at privacy@hugtimer.app. We will verify your identity before processing your request. You may also designate an authorized agent to make a request on your behalf.

We do not sell personal information. We have not sold personal information in the preceding 12 months and have no plans to do so.

12. European Privacy Rights (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have additional rights under the General Data Protection Regulation:

• All rights listed in Section 10 above.
• Right to Lodge a Complaint: You have the right to lodge a complaint with your local data protection authority.
• Data Transfers: If we transfer your data outside the EEA, we ensure adequate safeguards are in place (see Section 14).

Our EU representative can be contacted at privacy@hugtimer.app.

13. Colorado Privacy Act (CPA)

If you are a Colorado resident, you have rights under the Colorado Privacy Act, including:

• Right to access, correct, and delete your personal data.
• Right to data portability.
• Right to opt out of targeted advertising (we do not engage in targeted advertising), the sale of personal data (we do not sell data), and profiling in furtherance of decisions that produce legal or similarly significant effects (we do not engage in such profiling).

To exercise these rights, contact us at privacy@hugtimer.app. You may appeal a decision regarding your request by contacting us at the same address.

14. International Data Transfers

Bonded is based in the United States. If you are accessing the Service from outside the United States, your data may be transferred to and processed in the United States. We ensure that any international data transfers comply with applicable data protection laws by implementing appropriate safeguards, such as standard contractual clauses approved by the European Commission.

15. Children's Privacy (COPPA)

The Service is not directed to children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe that your child under 13 has provided us with personal information, please contact us immediately at privacy@hugtimer.app. If we become aware that we have collected personal information from a child under 13 without parental consent, we will take steps to delete such information promptly.

Users between 13 and 18 may use the Service only with parental or guardian consent.

16. Cookies and Tracking Technologies

The App does not use cookies. The Site (hugtimer.app) uses only essential cookies necessary for website functionality. We do not use:

• Advertising cookies or trackers
• Third-party analytics cookies
• Social media tracking pixels
• Cross-site tracking technologies

We respect Do Not Track (DNT) browser signals. When we detect a DNT signal, we ensure no optional tracking is performed.

17. Third-Party Services

The Service integrates with the following third-party services:

• Apple App Store: For distribution, subscription billing, and payment processing. Governed by Apple's Privacy Policy.
• Apple HealthKit: For optional health data integration. Data is stored only on your device per Apple's requirements.
• Crash Reporting: We may use crash reporting services that receive anonymized diagnostic data.

We encourage you to review the privacy policies of these third-party services.

18. Data Breach Notification

In the event of a security breach that compromises your personal data, we will:

• Notify affected users via email within 72 hours of becoming aware of the breach.
• Notify relevant data protection authorities as required by applicable law.
• Provide details about the nature of the breach, data affected, and steps taken to mitigate harm.
• Provide guidance on steps you can take to protect yourself.

Note: Due to end-to-end encryption, a breach of our servers would not expose the content of your communications, as this data is encrypted with keys we do not possess.

19. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you through the App or by email at least 30 days before the changes take effect. The "Last Updated" date at the top of this policy indicates when it was last revised. Your continued use of the Service after the effective date of any changes constitutes your acceptance of the revised Privacy Policy.

20. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Bonded, Inc.
Email: hello@hugtimer.app
Privacy Inquiries: privacy@hugtimer.app
Website: hugtimer.app

For privacy-related requests, we will respond within 30 days. For GDPR requests, we will respond within the timeframes mandated by applicable law.

← Back to Bonded