gollog
Back to home

Privacy Policy

Last updated: March 22, 2026

gollog ("the App") is a personal time-management app that logs your day in 10-minute tiles and provides AI-powered insights. This policy explains what data the App collects, how it is used, and how it is stored.

1. Data We Collect

Data TypeDetailsCollection Method
Activity logs10-minute time-block entries (sleep, work, exercise, meals, etc.)User input
TasksTask title, priority, completion statusUser input
Health & Fitness (optional)Step count, heart rate, sleep analysis (stages & duration), workout sessions, active energyApple HealthKit (read-only)
Location (optional)Latitude, longitude, place name. May be collected in the background when permission is granted.Core Location
Calendar (optional)Event title, timeApple EventKit (read-only)
Voice & audio (optional)Voice recordings during voice-chat sessionsMicrophone & Speech Recognition
Device context (optional)Wi-Fi network name (SSID), charging status, battery level. SSID is compared against user-registered home/car Wi-Fi networks for automatic place detection.System APIs (automatic)
NotificationsPush tokenSystem permission
Device identifierRandom UUID (anonymous)Auto-generated on first app launch
PurchasesSubscription statusApple StoreKit

The App does not require account registration and does not collect your name, email, or phone number.

2. Apple HealthKit Data

Apple HealthKit Compliance
  • HealthKit data is accessed in read-only mode. The App does not write data to HealthKit.
  • HealthKit data is never used for advertising, marketing, data brokerage, or tracking.
  • HealthKit data is never sold to third parties.
  • HealthKit data is not stored on iCloud or any server; it is processed on-device only.
  • When the AI analysis feature is used, sleep and workout summary text may be included in AI prompts sent to the OpenAI API (see Section 4).

3. Location Data

  • Location is used to attach geographic context (place name) to time-block entries and to provide local weather information.
  • The App may request "Always" location permission to record location while in the background. You can choose "While Using the App" or deny location access entirely.
  • Latitude and longitude are sent to the Open-Meteo API (a free, open-source weather service) to retrieve current weather. No API key or user identifier is included in these requests.
  • Location data is stored on-device only and is never used for advertising or tracking.

4. AI Features & Data Processing

The App uses AI to deliver personalised insights based on your time-block data.

Processing ModeDescriptionData Transmission
On-device AIAnalysis via Apple Intelligence or local analysis engineNo external transmission
Cloud AI (default)App connects directly to OpenAI API for analysisCurrent message and anonymised data summary sent directly to OpenAI (see below)
User-supplied API key (BYOK)User enters their own OpenAI keySent directly to the user's own OpenAI account
Direct-to-OpenAI Architecture — Privacy Guarantee

When using Cloud AI, the app establishes a direct TLS connection to the OpenAI API (api.openai.com). The gollog server (api.gollog.app) handles only authentication and API key provisioning — it physically cannot receive or intercept your conversation content.

  • Server role (key provisioning only): The gollog server authenticates your device and issues a short-lived OpenAI API key. The app then connects to OpenAI directly using that key. There is no technical path through which the server could access your conversations.
  • What is sent to OpenAI: Only the current message and an anonymised data summary (time-block statistics, sleep/workout summaries) per request. Previous conversation turns are not sent.
  • What the server records: Device ID (anonymous UUID), key issuance timestamp, subscription status. Used for authentication and billing only. Message content, AI responses, and token usage are never recorded.
Conversation History — On-Device Only
  • Conversation history is stored locally on your device in the app's SwiftData database. It is never sent to any server and never leaves your device.
  • You can view and delete your conversation history at any time from within the app.
  • Each AI interaction sends only the current user message and a context summary — no previous conversation turns are included.

Voice chat mode: When using voice chat, audio recordings are sent directly to OpenAI Whisper for speech-to-text transcription, and AI responses may be synthesised via OpenAI Text-to-Speech. Temporary audio files are deleted immediately after processing.

Your messages are processed by OpenAI, Inc. (San Francisco, USA). Data sent to OpenAI does not include your name, email, or device identifiers. HealthKit data sent to OpenAI is anonymised (summary statistics only, no raw health records). For details on how OpenAI handles API data, see OpenAI Privacy Policy and OpenAI API Data Usage Policies.

Cross-Border Data Transfer

When you use Cloud AI features, your messages are transmitted directly from your device to OpenAI, Inc. servers located in the United States. This constitutes a cross-border transfer of personal data under the Korean Personal Information Protection Act (PIPA).

ItemDetails
Data transferredChat messages, optionally: anonymized health summaries, calendar event titles, todo items
RecipientOpenAI, Inc. (San Francisco, CA, United States)
PurposeAI-powered response generation within the app
Method & timingDirect HTTPS transmission from device to OpenAI API at the time of each request
Retention by recipientOpenAI retains API data for up to 30 days per their API Data Usage Policy. API data is not used for model training.
Right to refuseYou may refuse cross-border transfer by using On-Device AI mode or disabling Cloud AI. Refusing limits AI functionality to on-device processing only.
Architecture guarantee: The Gollog server (api.gollog.app) only provides API authentication keys. It physically cannot receive, store, or view your messages or AI responses. All content flows directly between your device and OpenAI.

HealthKit Data & AI Processing

If you enable the Health AI Context option (Settings → Privacy & Security), anonymized summaries of your sleep and workout data may be included in AI queries sent to OpenAI.

  • What is sent: Anonymized summaries only (e.g., "8h sleep, score 82/100, 25% deep sleep"). No raw health records, heart rate data, or exact timestamps.
  • Default: OFF — Health data is not included in AI queries unless you explicitly enable it.
  • Control: You can disable this at any time in Settings → Privacy & Security.
  • On-device mode: When using On-Device AI, health data never leaves your device.

Device Identification & Data Retention

  • Device ID: A random UUID generated on first app launch, stored in Keychain. Used for API key provisioning and rate limiting. Not linked to your name, email, or Apple ID.
  • API keys: Provisioned keys expire after 6 hours and are automatically refreshed.
  • Blocklist: If a device is blocked for abuse, the device ID record is retained for 30 days, then automatically deleted.
  • Subscription status: Cached on server for up to 6 hours for verification purposes.

5. Data Storage & Retention

  • Activity logs, tasks & chat history: Stored on-device in SwiftData.
  • HealthKit data: Processed in device memory only; never persisted in the App's own database.
  • API keys & usage counters: Encrypted and stored in the iOS Keychain. Note: Keychain items may persist after the App is uninstalled. To remove them, reset the Keychain via iOS Settings or contact us.
  • Voice recordings: Temporary WAV files are created during voice chat and deleted immediately after transcription.
  • Retention: All SwiftData records are deleted when the App is uninstalled. Keychain entries may remain (see above).

6. Purpose of Data Use

PurposeApplicable
App functionality (time logging, location context, sleep/workout display, weather, notifications)Yes
AI-powered personalised insightsYes
Third-party advertisingNo
Developer advertising or marketingNo
Analytics (user behaviour measurement)No (in-app)
Tracking (cross-app data linking)No

7. Third-Party Sharing

The App does not sell personal data or share it with data brokers.

Third PartyData SharedPurpose
OpenAITime-block summary, tasks, sleep/workout summary text, voice audio (in voice-chat mode)AI insight generation, speech-to-text, text-to-speech
Open-MeteoLatitude, longitudeWeather forecast retrieval (no API key or identifier sent)
Apple (StoreKit)Subscription transaction infoIn-app purchase processing

If you configure a custom analysis server (Glogger), time-block data may also be sent to that user-specified HTTPS endpoint.

8. Your Rights

  • Access: You can view all recorded data directly within the App.
  • Deletion: Uninstalling the App removes all on-device SwiftData records. To clear Keychain items, go to iOS Settings or contact us.
  • Revoke permissions: You can revoke HealthKit, Location, Calendar, Microphone, Speech Recognition, and Notification permissions at any time in iOS Settings.
  • Contact: For privacy requests, email [email protected].

9. Website Analytics

The gollog.app website uses Google Analytics and Microsoft Clarity. These cookies are activated only after user consent and do not apply to the App itself. See our Cookie Policy for details.

10. Children's Privacy

The App does not knowingly collect personal data from children under the age of 14.

11. Changes

If this policy is updated, the revised version will be posted on this page with an updated date.

한국어