Privacy Policy

Last updated: April 13, 2026

Introduction

Daily OK is provided by Pearson Media LLC ("Daily OK," "we," "our," or "us"). This Privacy Policy explains how we collect, use, disclose, retain, and safeguard personal information when you use our mobile applications, website, and related services (collectively, the "Service").

By using the Service you agree to the practices described here. If you do not agree, please do not use the Service. This Policy is incorporated into our Terms of Use.

Summary of Key Practices

  • We do not sell or "share" personal information for cross-context behavioral advertising.
  • We do not use third-party advertising or tracking SDKs.
  • Location is optional and only collected with your in-app permission.
  • You can export or delete your data at any time from app settings.
  • We honor opt-out and deletion requests for residents of all U.S. states with applicable privacy laws.

Information We Collect

Information You Provide

  • Account Information: Email address, display name, and optionally a phone number for SMS escalation alerts.
  • Profile Information: Optional profile photo and time zone.
  • Family Group Data: Information about family groups you create or join, member roles (Owner, Receiver, Viewer), and check-in schedules you configure.
  • Check-In Data: Timestamps when a Receiver checks in and an optional mood selection (happy, neutral, or tired).
  • Optional Location: If a Receiver enables the location feature, we collect approximate coordinates (typically accurate to ~100 meters) attached to a check-in or significant change in location, so the family group knows the Receiver is in their usual area. Location collection is off by default, requires the operating system permission prompt, and can be revoked at any time.
  • Communications: Messages you send to support, including the contents of those messages and any attachments.

Information Collected Automatically

  • Device & Push Tokens: Device type, operating system version, app version, locale, and the Apple Push Notification service (APNs) or Firebase Cloud Messaging (FCM) token used to deliver notifications.
  • Diagnostic & Usage Data: Aggregate signals such as feature usage counts and crash reports. Our mobile apps use TelemetryDeck, which one-way hashes identifiers on the device before sending, and our website uses Cloudflare Web Analytics, which does not set cookies or identify individuals. Neither provider is used for advertising, and we do not share usage data with data brokers.
  • Log Data: Server logs (IP address, request path, status, and user agent) used for security, abuse prevention, and debugging. Log entries are retained for up to 30 days.

Information We Do Not Collect

  • Health, fitness, biometric, or genetic data
  • Microphone, camera, or photo library content
  • Browsing or search history outside the Service
  • Contacts list, calendar, or email body content
  • Payment card numbers (handled by Apple App Store and Google Play; we never see your card details)
  • Precise advertising identifiers (we do not show ads)

How We Use Your Information

We process personal information for the following purposes:

  • To provide, operate, and maintain the Service
  • To send daily check-in notifications and on-demand check-in requests
  • To deliver escalation alerts (push, SMS, or in-app) when a check-in is missed
  • To display history, streaks, and trends to authorized members of your family group
  • To process and manage your subscription
  • To authenticate users and protect against fraud, abuse, and security threats
  • To respond to support requests, legal requests, and to comply with our legal obligations
  • To improve features, fix bugs, and develop new functionality

SMS Messaging (A2P 10DLC)

Daily OK uses SMS for two purposes only. We do not use phone numbers for marketing, and we do not share or sell phone numbers or opt-in information with third parties for promotional purposes.

Message types and consent

  • Invitation message (one-time): When a family Owner adds a family member as a Receiver inside the Daily OK app, the Owner provides that person's phone number and confirms they have permission to invite them. The Receiver then receives a single SMS with a link to download the app. By providing the phone number and accepting the invitation, the Receiver consents to receive this one-time message.
  • Escalation alerts: SMS escalation is OFF by default. After joining a family group, a user must explicitly enable SMS escalation in the app's Receiver Settingsbefore any alert messages are sent to family Owners or Viewers. Alerts are only sent when a Receiver misses their scheduled daily check-in after two push notification reminders go unanswered.

Message frequency

Invitation messages are sent once per invited Receiver. Escalation alert frequency depends on missed check-ins; under normal conditions users receive zero SMS messages on most days.

Opt-out and help

You may opt out at any time by replying STOP to any message, or by disabling SMS escalation in the app's settings. Reply HELP for assistance, or contact support@dailyok.net.

Carrier and rates

Message and data rates may apply. Carriers are not liable for delayed or undelivered messages. Supported carriers include all major U.S. carriers.

Legal Bases for Processing (EEA, UK, Switzerland)

If you are located in the EEA, the United Kingdom, or Switzerland, we rely on the following legal bases:

  • Performance of a contract — to provide the Service you signed up for.
  • Consent — for optional location, marketing email, and similar opt-in features. You may withdraw consent at any time.
  • Legitimate interests — to secure the Service, prevent abuse, and improve product quality, balanced against your rights.
  • Legal obligation — to comply with applicable law, court orders, or regulatory requests.

Sharing and Disclosure

We do not sell personal information, and we do not "share" it for cross-context behavioral advertising as those terms are defined under the California Consumer Privacy Act, as amended by the CPRA. We disclose information only as follows:

  • Within Your Family Group: Check-in status, mood, optional location, and activity history are visible to other members of your family group based on their assigned role. The Owner controls roles and can remove members.
  • Service Providers (Sub-processors): We use vetted vendors to host infrastructure, deliver notifications, and process payments. A current list of sub-processors is below.
  • Legal & Safety: When required by law, valid legal process, or to protect the rights, property, or safety of users, the public, or Daily OK.
  • Business Transfers: In connection with a merger, acquisition, financing, or sale of assets, with notice and continued protection of your data.

Sub-processors

  • Supabase (PostgreSQL hosting and authentication) — primary application database, encrypted at rest.
  • Contabo / Coolify (VPS hosting) — hosts our edge functions in the European Union.
  • Cloudflare — content delivery, DDoS protection, and privacy-first web analytics.
  • TelemetryDeck — aggregate, hashed analytics for the iOS and Android apps. User identifiers are one-way hashed before leaving the device; no personal information is transmitted.
  • Apple Push Notification service (APNs) — delivery of iOS push notifications.
  • Google Firebase Cloud Messaging (FCM) — delivery of Android push notifications.
  • Twilio (SMS) — escalation text messages where SMS fallback is enabled.
  • Apple App Store and Google Play — payment processing for subscriptions.

International Data Transfers

Daily OK is operated from infrastructure located in the European Union and the United States. Where personal data is transferred across borders, we rely on appropriate safeguards such as the European Commission's Standard Contractual Clauses (SCCs), the UK International Data Transfer Addendum, and equivalent mechanisms. A copy of the safeguards used for a specific transfer is available on request to privacy@dailyok.net.

Data Retention

We retain personal information only as long as necessary for the purposes described in this Policy:

  • Account information: for the life of your account, plus up to 30 days after deletion to complete removal from backups.
  • Check-in history: 90 days for Caregiver plan, 1 year for Family plan, unlimited for Family+ plan, or until deletion is requested — whichever comes first.
  • Optional location data: attached to the corresponding check-in record and deleted on the same schedule; never retained as a separate location history.
  • Server logs: up to 30 days.
  • Support communications: up to 24 months.
  • Tax and billing records: retained for 7 years to comply with U.S. Internal Revenue Service requirements.

Security

We implement administrative, technical, and physical safeguards designed to protect personal information. These include TLS 1.2+ encryption in transit, encryption at rest for the application database, role-based access control with least-privilege defaults, multi-factor authentication for staff, secrets management, dependency vulnerability scanning, and PostgreSQL row-level security for tenant isolation. No method of transmission or storage is 100% secure, and you are responsible for keeping your account credentials confidential.

If we discover a security incident affecting your personal information, we will notify you and applicable regulators as required by law (typically within 72 hours for jurisdictions with such obligations).

Your Privacy Rights

Subject to applicable law, you may have the following rights regarding your personal information:

  • Access / Know: request a copy of the information we hold about you.
  • Correction / Rectification: ask us to correct inaccurate information.
  • Deletion / Erasure: ask us to delete your information.
  • Portability: receive your information in a portable, machine-readable format (CSV or JSON).
  • Opt-Out of Sale/Sharing: we do not sell or share personal information; this right is honored by default.
  • Limit Use of Sensitive Personal Information: we do not use sensitive personal information for purposes that would require an opt-out.
  • Withdraw Consent: for processing based on consent (e.g., optional location, marketing email).
  • Non-Discrimination: we will not discriminate against you for exercising any of these rights.
  • Appeal: if we deny your request, you may appeal by replying to our response email; we will respond within 45 days.

You can exercise most of these rights directly from app settings (Export Data, Delete Account). You may also contact us at privacy@dailyok.net. We will verify your identity by matching the request to the email address on your account before fulfilling it. Authorized agents may submit requests on your behalf with proof of authorization.

U.S. State Privacy Disclosures

In addition to the rights above, residents of the following states have specific rights under their state's privacy law: California (CCPA/CPRA), Colorado (CPA), Connecticut (CTDPA), Virginia (VCDPA), Utah (UCPA), Texas (TDPSA), Oregon (OCPA), Montana (MCDPA), Iowa, Tennessee, Indiana, Florida, New Jersey, Delaware, New Hampshire, Minnesota, Maryland, Rhode Island, and Kentucky. We honor verified consumer requests in line with the law of the consumer's state of residence.

California (CCPA/CPRA)

In the preceding 12 months we collected the categories of personal information described in "Information We Collect" above. We collected this information for the purposes described in "How We Use Your Information," and we disclosed the following categories to sub-processors for operational purposes: identifiers, account information, device and connection information, and check-in content including optional location. We did not sell or share personal information.

California residents may submit requests via privacy@dailyok.net. You may also direct an authorized agent to submit requests on your behalf.

Colorado, Connecticut, and similar states

We honor opt-out preference signals (such as the Global Privacy Control) where required. Sensitive data (precise location, where collected) is processed only with affirmative consent.

Children's Privacy

The Service is intended for users who are at least 13 years old. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe a child under 13 has provided us with personal information, please contact privacy@dailyok.net and we will promptly delete the information and the associated account.

For users who are minors (13 to the local age of majority), the Owner of the family group is responsible for obtaining parental or legal-guardian consent before adding the minor as a Receiver or Viewer. Owners must be at least 18.

Cookies and Similar Technologies

The Daily OK website does not use advertising cookies or third-party tracking cookies. We use a small number of strictly necessary technologies to operate the site (for example, session storage for navigation state) and a privacy-first analytics provider that does not set cookies. See our Cookie Notice for details.

Do Not Track

Our website does not respond to browser "Do Not Track" signals because no consistent industry standard exists. We do, however, honor recognized opt-out preference signals such as Global Privacy Control where required by law.

Third-Party Services and Links

The Service may include links to third-party websites or services (such as the App Store, Google Play, or support documentation). Their privacy practices are governed by their own policies, and we are not responsible for them.

Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will provide reasonable advance notice (typically 30 days) by email, in-app notice, or a banner on our website. The "Last updated" date at the top of this page indicates when the Policy was most recently revised.

Contact Us

For questions about this Policy or to exercise your privacy rights, please contact:

Pearson Media LLC — Daily OK Privacy
Email: privacy@dailyok.net
Mailing address: Pearson Media LLC, 1234 Example Street, Salt Lake City, UT 84101, USA (operations address; update as required when finalized)
Website: dailyok.net/support

EU/UK Representative: Daily OK does not currently maintain a physical establishment in the EU or UK. EEA, UK, and Swiss residents may contact us at the email address above for privacy matters and may also lodge a complaint with their local supervisory authority.