Privacy Policy for We Do Recover

Last Updated: October 21, 2025

Introduction

We Do Recover is committed to protecting your privacy and maintaining your anonymity in accordance with 12-step principles. This Privacy Policy explains how we handle your data when you use our mobile application.

The fundamental principle: We Do Recover does not collect, store, or transmit any of your personal recovery data. All your information stays on your device.

Data Collection and Storage

We Do Recover is designed as an offline-first application. This means:

No Personal Data Collection: We do not collect any personal information from users. Your name, contact information, or any identifying details are never requested or transmitted to us.
Local-Only Storage: All data you create in the app—including daily inventory entries, voice memos, emotional check-ins, contacts, service logs, and lessons—is stored exclusively on your device using local databases (SQLite and Hive).
No Cloud Sync: We do not use cloud servers or databases. Your data is never transmitted to any remote server, cloud storage service, or third-party backup system.
No Analytics on Your Recovery Data: We do not track, analyze, or monitor your recovery activities, journal entries, or app usage patterns related to your personal program work.

Third-Party Services

We Do Recover integrates the following third-party services, which have their own privacy policies:

Google AdMob (Advertising)

What it does: If you use the free version of the app with ads, Google AdMob displays advertisements and collects anonymous analytics.
What data it collects: AdMob may collect device information (device type, operating system version, ad interaction data, approximate location based on IP address). AdMob does not have access to your recovery data (inventories, voice memos, contacts, or emotional check-ins).
AdMob Privacy Policy: https://policies.google.com/privacy
Opt-Out: You can remove ads entirely with a one-time $4.99 in-app purchase, which disables AdMob completely.

In-App Purchases (Premium Unlock)

What it does: Allows you to purchase a premium unlock to remove ads.
Payment Processing: Purchases are processed through Apple App Store or Google Play Store. We do not store your payment information—it is handled entirely by Apple or Google.
What we receive: We receive a receipt confirmation that a purchase was made, but no credit card numbers, billing addresses, or personal financial information.

No User Accounts

We Do Recover does not require you to create an account, register with an email address, or provide login credentials. The only authentication mechanism is a local PIN or biometric authentication (Face ID, Touch ID, fingerprint), which is stored securely on your device using iOS Keychain or Android KeyStore. We never have access to your PIN or biometric data.

Device Permissions

We Do Recover requests the following device permissions to provide app functionality. All permissions are optional and used only for local features:

Microphone (RECORD_AUDIO): Used for two purposes:
- Voice Memos: Record audio notes for your daily inventory, gratitude lists, or personal reflections. All recordings are saved locally on your device only and never transmitted anywhere.
- Speech-to-Text: Convert your spoken words into text for journal entries and inventory work. Voice recognition processing happens on your device using system APIs. No audio data is sent to our servers (we don't have any servers). Speech recognition may use your device's built-in speech services (Google Speech on Android, Apple Speech on iOS), which have their own privacy policies.
Contacts (READ_CONTACTS): Used to import sponsor or core group contacts from your device's contact list for quick access in the app. This is read-only access, and no contact data is transmitted anywhere or stored outside the app's local database.
Storage (WRITE_EXTERNAL_STORAGE - Android only): Used to export encrypted backup files of your recovery data to your device's storage, allowing you to save or share backups via email, cloud storage, or other methods. You control where exported files go.
Notifications: Used to send local reminders for daily inventory, Just For Today readings, and service commitments. These are local notifications generated on your device—not push notifications from a server.
Biometric Authentication: Used for Face ID (iOS), Touch ID (iOS), or Fingerprint (Android) to unlock the app. Biometric credentials are stored in your device's secure enclave and never leave your device.

Important: You can deny any permission and the app will still function, though specific features requiring that permission will be unavailable. You can change permission settings at any time in your device's system settings.

Data Retention and Deletion

How long is data kept? Your data is kept on your device indefinitely until you manually delete it or uninstall the app.
How to delete your data:
- To delete all app data, use the "Forgot PIN" feature in the app's login screen, which erases all local data.
- Alternatively, uninstalling the app removes all local data permanently.
Data Backup and Export: You can export your data as an encrypted backup file (password-protected) for safekeeping. This export is stored locally or shared via your device's share sheet (email, cloud storage, etc.). We do not have access to exported backups.

Data Security

We take your data security seriously:

Encryption: Sensitive data (PIN, settings) is stored using iOS Keychain or Android KeyStore, which are hardware-encrypted.
Local Database Protection: SQLite databases are stored in the app's private directory, inaccessible to other apps.
No Network Transmission: Since your recovery data never leaves your device, it is not exposed to network security risks (man-in-the-middle attacks, server breaches, etc.).

Children's Privacy

We Do Recover is intended for users aged 12 and older, given the mature themes of recovery from substance use. We do not knowingly collect personal data from children under 12. If a parent or guardian believes a child under 12 has used the app, please contact us, though note that we do not have access to any user data.

International Users

We Do Recover is available worldwide and supports 20+ languages. Since all data is stored locally on your device, no data crosses international borders or is subject to data transfer regulations (GDPR, CCPA, etc.). Your data stays in your country, on your device.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in the app or legal requirements. We will notify users of significant changes via an in-app announcement. Continued use of the app after changes constitutes acceptance of the updated policy.

Current Version: 1.0 (October 21, 2025)

Your Rights

Because we do not collect your data, there is no data to request, correct, or delete from our servers. You have full control over your data:

Access: You can access all your data within the app at any time.
Export: You can export your data as an encrypted backup.
Delete: You can delete all data using the "Forgot PIN" feature or by uninstalling the app.

Compliance with 12-Step Traditions

We Do Recover respects the anonymity principle of 12-step programs (Tradition 12). We do not collect names, require accounts, or track personal identities. Your recovery journey is private and remains yours alone.

Contact Us

If you have questions or concerns about this Privacy Policy or how We Do Recover handles data, please contact us:

Email: privacy@wedorecover.com
Website: https://wedorecover.com

We will respond to privacy inquiries within 30 days.