Privacy policy

Last updated:

Jan 6, 2026

Halo ("we", "us", or "our") is operated by Amos Whitewolf Webb. This Privacy Policy explains how we collect, use, and protect information when you use the Halo mobile application.

What Halo Does

Halo is a parental safety app that helps parents monitor voice chat in their children's games. Parents set monitoring schedules, and the child's device records game audio during those times. The audio is analyzed on-device to detect potential safety concerns.

Information We Collect

Account Information

  • Email address (from Google or Apple Sign-In)

  • Name (if provided via Apple Sign-In)

Family Information

  • Child nicknames (entered by parent)

  • Monitoring schedules (days and times set by parent)

Session Data

  • Session timestamps (when monitoring started and ended)

  • Safety flags (green, orange, or red status)

  • Category scores (numeric risk levels for safety categories)

Device Information

  • Device pairing token (to link child device to parent account)

  • Last seen timestamp (when child device was last active)

Information We Do NOT Collect

  • Audio recordings - Audio is processed entirely on-device using Apple's speech recognition and is never uploaded to our servers

  • Transcripts - Voice-to-text conversion happens on-device and is not stored

  • Location data

  • Contacts, photos, or other personal files

  • Browsing or search history

How We Use Information

We use collected information to:

  • Create and manage your account

  • Link parent and child devices within a family

  • Display session history and safety summaries to parents

  • Send local notifications about monitoring schedules

How Audio Processing Works

  1. During scheduled monitoring, the child device captures game audio

  2. Audio is transcribed on-device using Apple's Speech framework

  3. The transcript is analyzed on-device for safety concerns

  4. Only the resulting safety scores (not audio or text) are sent to our servers

  5. Audio files are deleted from the device after processing

Data Storage and Security

Your data is stored securely using Supabase, a cloud database platform with encryption at rest and in transit. We do not sell your data. We may share limited data with the third-party service providers described below to operate the app, measure marketing performance, and manage subscriptions.

Third-Party Services

  • Supabase - Database hosting and authentication (EU data center)

  • Apple/Google - Sign-in authentication

  • Sentry - Crash reporting and error tracking (EU data center)

  • Singular - Mobile measurement and attribution analytics (MMP)

  • Meta (Facebook SDK) - Advertising attribution for Meta platforms

  • Superwall - Paywall presentation and subscription management

Sentry Crash Reporting

We use Sentry to identify and fix app crashes and errors. When an error occurs, Sentry may collect:

  • Crash data (stack traces, error messages)

  • Device info (device model, OS version, app version)

  • Breadcrumbs (a trail of app events before the crash, e.g., "recording started", "user signed in")

Sentry does NOT collect:

  • IP addresses (we have disabled this)

  • Email addresses or names

  • Audio, transcripts, or any content from monitoring sessions

Sentry data is stored in the EU and is used solely to improve app stability.

Advertising, Analytics, and Paywalls

We use Singular and the Meta (Facebook) SDK to measure the effectiveness of our marketing (e.g., installs and subscriptions attributed to campaigns). We use Superwall to present paywalls and determine subscription access.

These services may process:

  • Device identifiers (such as IDFV)

  • Advertising Identifier (IDFA) if you grant permission via Apple's App Tracking Transparency prompt

  • App events (e.g., sign up completed, onboarding completed, subscription started)

  • Purchase/subscription metadata (such as product identifier, currency, and amount) for attribution and analytics

  • Push notification device token (APNs token) for uninstall attribution (no notification content is shared)

If you do not allow tracking, we do not access the IDFA and attribution is limited (e.g., via SKAdNetwork where available).

Children's Privacy

Halo is designed for parents to monitor their children's online safety. The parent account holder is responsible for:

  • Setting up and authorising monitoring on the child's device

  • Pairing the child device via QR code

  • Configuring monitoring schedules

Children do not create accounts. The child device operates in a limited monitoring mode controlled by the parent.

Data Retention and Deletion

  • Session data is retained while your account is active

  • You may request deletion of your account and all associated data by emailing hello@halosafe.app

  • Upon deletion request, we will remove your data within 30 days

Your Rights

You may:

  • Access your data within the app

  • Request a copy of your data via email

  • Request deletion of your account and data

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via the app or email.

Contact Us

If you have questions about this Privacy Policy, contact us at:

Email: hello@halosafe.app

Amos Whitewolf Webb
Halo App