Mobile Tracking Policy

Last Updated: 12 May 2026
Version: 1.0.0


ProTilo is a native iOS application — not a website. We do not use web cookies, web beacons, pixel tags, fingerprinting, or any browser-based tracking technology. This document explains the small set of mobile identifiers we do use and why.

1. What We Mean by "Tracking"

"Tracking," as defined by Apple's App Tracking Transparency framework, means linking user or device data collected from our app with user or device data collected from other companies' apps, websites, or offline properties for targeted advertising or advertising-measurement purposes, or sharing such data with data brokers.

ProTilo does not track you in this sense. We do not display the App Tracking Transparency (ATT) prompt because we do not engage in any activity that requires it.


2. Mobile Identifiers We Use

IdentifierSourcePurposeLifetime
User ID Firebase Authentication (assigned at signup) To identify your account on our backend and link your data to your profile Until you delete your account
Identifier for Vendor (IDFV) Apple iOS (scoped to ProTilo) To distinguish your installation of the app. Used internally for analytics scoped strictly to the Service. The IDFV is not shared with any third party. Persists across launches; resets when you uninstall the app or reset all your iOS device's app-vendor IDs
Firebase Installation ID Firebase SDK (per app installation) To deliver push notifications and associate technical errors with your installation. Not used for cross-app tracking. Until you uninstall the app or sign out
Push Notification Token Apple Push Notification service (APNs) + Expo Push Service To deliver push notifications to your device. Rotated periodically by iOS. Until you uninstall the app, disable notifications, or iOS rotates the token
Sentry Pseudonymous ID Sentry SDK (generated per installation) To group crash reports from the same installation. Not linked to your email or name. Until you uninstall the app or clear app data

3. What We Do NOT Collect


4. Third-Party SDKs and Their Role

SDKProviderWhat it doesWhat it does not do
Firebase Authentication, Firestore, Cloud Functions, FCM Google (Firebase) Authenticates you, stores your data, runs server-side logic, delivers push Does not track you across apps; does not target ads
Sentry React Native SDK Sentry Reports crashes and runtime errors to help us fix bugs Does not collect health data; does not collect your email or name; data scrubbing is enabled for sensitive payloads
Expo Notifications Expo (650 Industries) Delivers push notifications Does not read other apps' notifications; does not advertise

What we explicitly do NOT use:


5. How to Control Tracking-Related Settings

5.1 Notifications

iOS Settings → Notifications → ProTilo. Disable to stop receiving push notifications. Your push token is no longer used until you re-enable notifications.

5.2 Apple Health Access

iOS Settings → Privacy & Security → Health → ProTilo. Toggle off any category to stop ProTilo reading that data type.

5.3 Reset Your Vendor Identifier

Uninstalling and reinstalling all apps from the same vendor will reset the IDFV.

5.4 Withdraw Diagnostic Consent

In-app: Settings → Privacy & Data → Manage Consents. Disabling diagnostics stops Sentry from collecting new error reports for your account.

5.5 Delete Your Account

In-app: Settings → Safety → Delete Account. All identifiers and data associated with your account are deleted within 7 days.


6. Changes to This Policy

If we add or remove tracking technologies, we will update this document, change the "Last Updated" date, and notify you by in-app notice and email at least 30 days in advance.


7. Contact

Privacy: privacy@protilo.com
Data Protection: dpo@protilo.com