Effective date: 2026-06-03
This Privacy Policy applies to CareBear users in the United States. CareBear is a free mobile app provided by Redefine Impacc LLC ("we," "our," or "Service Provider"). If you use CareBear in Japan, please refer to the Japan Privacy Policy. Language preferences do not change which jurisdiction policy applies.
When you create an account, we collect account data such as your email address, encrypted password, internal user ID, account timestamps, and account status information.
Sign in with AppleIf you choose Sign in with Apple, Apple authenticates you and shares the email address you elect to provide. CareBear may store the Apple provider identifier or UID needed to connect that Apple sign-in to your CareBear account.
Device, Push, and Session DataWe collect device and session data such as iOS device identifiers, APNs push tokens, bundle ID, APNs environment, preferred language, OAuth access tokens and grants, server ping records, and APNs response data needed for device registration, push delivery, localization, and session security.
Motion and Check-In DataWith your permission, CareBear uses iOS Motion and Fitness and Core Motion to process motion activity type and timestamp. CareBear may also process manual check-in times or device check-in times. CareBear does not collect GPS, precise location, route history, address, or real-time location.
Follower and Invite DataIf you use follower features, we collect follower relationships, nicknames, invite tokens, invite URLs, accepted follower user IDs, and limited activity metadata needed to invite followers and route lost-contact alerts.
Delayed Messages, Notifications, and Email DeliveryIf you create a delayed message, we collect the configured wait period, trigger state, free-text message content, in-app notification records, notification titles and content, email delivery records, APNs response data, and related delivery results. Custom message text may be copied into in-app notifications, push notifications, email message content, notification records, and delivery-related records when an alert fires.
Support, Deletion, Diagnostics, and Legal RecordsWe collect support emails, deletion records, request metadata, crash reports, error reports, Sentry events, logs, and legal or security records needed to support the service, process requests, maintain security, prevent abuse, and document deletion or compliance activity.
We use your information for authentication, account management, Apple sign-in, device registration, push delivery, Motion and Fitness and Core Motion permission handling, motion-based inactivity detection, server pings, manual check-ins, follower invitations, follower activity visibility, lost-contact alert delivery, email delivery, support, security, abuse prevention, legal compliance, deletion processing, diagnostics, and service reliability.
We do not use motion data, delayed-message content, or diagnostic data for marketing, advertising, or profiling.
We do not sell, trade, or rent your personal information.
Service ProvidersWe use service providers and processing channels to operate CareBear, including:
Accepted followers may see limited activity metadata, such as latest activity type, latest activity time, and latest check-in time, before a lost-contact alert fires. If an alert fires, followers may receive your configured delayed-message content through in-app notifications, push notifications through Apple Push Notification service (APNs), and email. This is a user-to-user disclosure needed for the follower feature.
Legal Requirements and SafetyWe may disclose personal information if required by law or if reasonably needed to protect CareBear, our users, or others from fraud, abuse, security incidents, safety risks, or legal claims.
You can grant or revoke Motion and Fitness permission at any time in iOS Settings. If you revoke permission, lost-contact detection may not work as expected.
Follower and Message ChoicesYou can manage followers and delayed messages in the app where available. Do not include passwords, door codes, financial credentials, government IDs, medical details, precise location details, dangerous instructions, or another person's information unless it is necessary and you are authorized to do so. Push notifications and emails may be visible outside the unlocked app.
California Privacy RightsTo exercise privacy rights, email [email protected] with "Privacy Request" in the subject line. We may verify your identity before responding. For verified account deletion requests, we will delete or de-identify active account data within 45 days unless retention is required or permitted for legal, security, fraud-prevention, support, backup, or operational purposes.
We retain personal information for as long as needed to provide CareBear, support the purposes described in this policy, comply with legal obligations, maintain security, prevent abuse, resolve disputes, process deletion requests, support debugging, and maintain backups.
If you have any questions or requests regarding privacy while using CareBear in the United States, please contact us at:
Redefine Impacc LLC
Email: [email protected]