Privacy Policy

Last updated: April 13, 2026

GreenLight ScreenTime ("GreenLight", "we", "us", or "our") is operated by Colin Griffin. This Privacy Policy explains how we collect, use, and protect your information when you use our iOS application and related services.

1. Information We Collect

We collect the following information when you use GreenLight:

• Phone number — Used for account verification via one-time SMS codes (OTP). We do not use your phone number for marketing or share it with third parties.
• Display name — The name you choose to show to your buddies and group members.
• App usage data — We track which apps you have blocked and your Focus Score. This data is stored securely and used only to provide the accountability features of the app.
• Buddy and group data — Information about your buddy connections, group memberships, challenge participation, and request history.
• Device token — Used solely for delivering push notifications (e.g., buddy requests, approvals, session expiry).

2. How We Use Your Information

Your information is used exclusively to:

• Verify your identity during sign-up and login via SMS verification code
• Connect you with accountability buddies and groups
• Send push notifications for buddy requests, approvals, and session updates
• Calculate and display your Focus Score and leaderboard rankings
• Track challenge progress within your groups

3. SMS Messaging

GreenLight sends SMS messages solely for phone number verification during account registration and login. We use Twilio's Verify service to deliver one-time passcodes (OTP). You will receive one SMS per sign-up or login attempt. No marketing, promotional, or recurring SMS messages are sent. Standard message and data rates may apply.

By providing your phone number and tapping "Send Code" in the app, you consent to receive a one-time SMS verification code.

4. Data Storage and Security

Your data is stored securely using Supabase (hosted on AWS). We use row-level security policies to ensure users can only access their own data. All data is transmitted over HTTPS/TLS encryption.

5. Third-Party Services

We use the following third-party services:

• Supabase — Backend database, authentication, and real-time services
• Twilio Verify — SMS verification codes only
• Apple Push Notification Service (APNs) — Push notifications
• Resend — Transactional email (welcome emails only)

We do not sell, share, or provide your personal information to advertisers or data brokers.

6. Data Retention

Your data is retained as long as your account is active. If you delete your account, your personal data will be removed from our systems within 30 days. Anonymized, aggregated data may be retained for analytics purposes.

7. Children's Privacy

GreenLight is designed for users aged 13 and older. We do not knowingly collect personal information from children under 13. If we become aware that we have collected data from a child under 13, we will delete it promptly.

8. Your Rights

You have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your account and data
• Opt out of SMS verification (note: this will prevent account access)

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify users of significant changes through the app or via email.

10. Contact Us

If you have any questions about this Privacy Policy, please contact us at:

Email: hello@greenlightapp.org