How We Handle Anonymous Analytics

Last updated: July 5, 2026

The detail companion to the privacy policy, focused on the one thing that actually reaches us: a small amount of health-free app-usage analytics. This is the same document shown inside the app.

Last updated: July 5, 2026

This is the detail companion to the privacy policy, focused on one thing: the small amount of app-usage analytics that actually reaches us. Your health journey never does (see the privacy policy, sections 1 and 3). Everything below is health-free by design.

Why we collect anything at all

SnipSmart is made by one person, not a big company, and there's no way to watch over your shoulder to see what's confusing. Anonymous, aggregate usage data is how we learn that, say, a lot of people reach the "set a date" step and stop, so we can fix it. That's the whole goal: make the app clearer and more useful. It is never used to advertise to you, profile you, or make decisions about you.

What we never include

No analytics we collect ever contain:

If it could reveal something about your health or identify you, it is not in the analytics. Full stop.

Tier 1 - anonymous counts (always on)

These are simple tallies with no identifier attached, for example "the app was opened" or "the Learn tab was viewed." They cannot be linked to you or your device. We aggregate them and suppress any group too small to be anonymous. Because this data cannot identify you, it is not personal data, and it is on for everyone. There is nothing here to turn off, because there is nothing that points back to a person.

Tier 2 - usage flow (on by default, off whenever you want)

This is a health-free picture of how you move through the screens, which steps you reach and where you drop off, so we can find and fix the rough spots. In the United States it is on by default; you can turn it off any time in You, Privacy and security, and turning it off deletes the flow from our servers. Where the law requires opt-in (for example, the EU/UK), it stays off until you choose to turn it on.

The flow is tied to a random, pseudonymous ID generated on your device. It is not your name, email, or phone number, there is no account to attach it to, and it exists only to stitch one session's steps together. Alongside the flow we attach coarse context only: app version, platform, your current phase (exploring, pre-procedure, recovery), the coarse profile bands you may have entered (age band, number-of-children band, relationship), and your device's country-level region (noted automatically from your device settings; never precise location). No exact values, ever.

Your controls

Where it goes

All of it is first-party: our own analytics, stored on Amazon Web Services in the United States, encrypted in transit and at rest. No third-party analytics or advertising SDKs are in the app (no Google Analytics, no Meta, no PostHog, no ad networks). We do not sell or share any of it.

Questions: privacy@snip-smart.com.