This Privacy Policy explains how the Nolapse application ("the App") processes personal data in accordance with the General Data Protection Regulation (GDPR — Regulation (EU) 2016/679) and other applicable law.
The data controller is Carlos Santos, an individual developer based in Portugal, European Union. For privacy-related enquiries: support@getnolapse.app
Nolapse was built with a single guiding principle: your data stays on your device. Impulse logs, check-in history, risk window configuration, progress statistics, and savings estimates are created and stored locally on your device. None of this is transmitted to the Developer, to any server, or to any third party as part of normal app operation.
The Developer has no access to your usage of the App. What you log, how often you use the filter, how many impulses you block, and how much money you estimate saving — none of this leaves your device. Remote data processing is limited exclusively to subscription management via RevenueCat.
The following data is created and stored locally on your device. It is not transmitted to the Developer as part of normal app operation:
| Data | Purpose |
|---|---|
| Impulse log — intensity, trigger, estimated spend, outcome | History and pattern display (Pro) |
| Risk window configuration — days and time blocks | System scheduling and filter calibration |
| Average session spend | Savings estimation |
| Progress statistics and resistance rate | Dashboard display |
| App settings and preferences | Personalisation |
If you uninstall the App or clear its local data, this information may be deleted from the device, subject to any device-level backup or synchronisation settings outside the Developer's control.
The App uses RevenueCat to manage subscription entitlement and purchase-status verification. This may include subscription status, app-user identifiers, and store purchase identifiers. Payment card data is processed exclusively by the App Store (Apple) or Google Play (Google), not by the Developer.
Legal basis: Performance of contract (Art. 6(1)(b) GDPR).
If you contact the Developer, the information you include in your message — such as your email address and the contents of your request — may be processed to respond and provide support.
Legal basis: Legitimate interests in handling support requests (Art. 6(1)(f) GDPR).
Personal data is not sold and is not shared for advertising purposes. The Developer does not use your data for third-party behavioural advertising.
The App relates to impulsive gambling behaviour, which users may consider sensitive. The Developer never receives this information. Impulse logs, check-in records, trigger categories, session estimates, and all other usage data created within the App are stored exclusively on the user's device and never leave it through any mechanism controlled by the Developer.
The only data the Developer or its service providers process is subscription-related identifiers and, where applicable, direct support communications. No usage data is ever accessible to the Developer.
Subscription-related identifiers processed by RevenueCat are retained for as long as necessary to manage active subscriptions and resolve related issues. Data processed by RevenueCat may be retained according to their own applicable retention practices. RevenueCat privacy information ↗
Support communications are retained only for as long as necessary to resolve the request and comply with applicable law, and are deleted within 90 days of resolution unless a longer period is required to establish, exercise, or defend legal claims.
All other app data — your impulse history, settings, and statistics — lives on your device and is under your control. Uninstalling the App removes it.
Under the GDPR, you may have the following rights regarding the personal data processed by the Developer:
To exercise any applicable rights, contact: support@getnolapse.app. The Developer aims to respond within one month, subject to applicable data protection law timelines.
You also have the right to lodge a complaint with your local supervisory authority, or in Portugal with the CNPD (cnpd.pt).
The Developer implements appropriate technical and organisational measures, proportionate to the nature of the processed data, to protect personal data against unauthorised access, accidental loss, misuse, or unlawful disclosure. These measures include encrypted communications (HTTPS/TLS) and access-control restrictions for backend services.
Some service providers used by the App may process personal data outside the European Economic Area, including in the United States. Where personal data is transferred internationally, such transfers are intended to be safeguarded through mechanisms recognised under applicable data protection law, which may include Standard Contractual Clauses approved by the European Commission.
The App does not use cookies, advertising SDKs, or behavioural tracking technologies. The Developer does not track user behaviour for analytics, marketing, or profiling purposes. There are no third-party analytics tools in the App.
RevenueCat uses minimal identifiers strictly to verify subscription status. This is not used for tracking, profiling, or advertising in any form.
The App is intended for adults only and is not directed to children. The Developer does not knowingly collect personal data from minors.
The Developer may update this Privacy Policy from time to time. If material changes are made, users will be notified through the App or by other appropriate means at least 15 days before the changes take effect, unless a shorter period is required for legal or security reasons.
The effective date shown at the top of this Policy indicates when the current version came into force.
For questions about privacy or personal data processing: support@getnolapse.app
You may also contact the supervisory authority of your country of residence in the EU, or the Portuguese CNPD (cnpd.pt).