Folio
Last updated: July 2026
Folio is a quiet digital notebook for closing the day, developed by PurposeLab Studio. We believe your words are yours alone. This policy explains what data we collect (very little), how we handle it, and your rights.
This policy applies to both the Android (Google Play) and iOS (App Store) versions of Folio.
We never read, access, analyze, or transmit your journal entries. Your writing stays yours.
Folio does not collect any personal data. We do not require accounts, email addresses, phone numbers, names, or any other personally identifiable information (PII) to use the core features of the App.
The App collects the following anonymous, non-identifying data:
All your journal entries, daily marks, monthly themes, habits, and preferences are stored locally on your device in an encrypted SQLite database. This data never leaves your device unless you explicitly choose to back it up.
Home screen widgets: If you add Folio widgets to your home screen, a subset of your data (recent entries, habit scores, streak counts, mood, and palette colours) is shared from the App to the widget extension via on-device shared storage (SharedPreferences on Android, App Group container on iOS). This data never leaves your device and is inaccessible to other apps.
When you make an in-app purchase or subscribe to Folio Plus, the transaction is processed entirely by Apple (via StoreKit) or Google (via Play Billing). Folio never sees, collects, or stores your payment card details, billing address, or financial information.
Locally on your device, the App stores your entitlement status (e.g. "purchased", "subscribed", relevant dates) so it can unlock paid features offline. This information is not transmitted to any server. There is no server-side receipt validation — the App trusts the purchase confirmation delivered by the platform store.
Folio offers a limited, free Founding Circle membership to early users. Claiming a membership increments a single anonymous global counter stored in Google Cloud Firestore (document path: counters/founding). This counter contains only a running integer — no user IDs, emails, names, journal content, or any other identifying information is written. The interaction is a one-time atomic increment; no ongoing connection to Firestore is maintained.
Google Drive Backup (Android & iOS): If you choose to enable backup, your data is transferred directly between your device and your personal Google Drive account. PurposeLab does not have access to your Google Drive or your backed-up data. We request the minimum scope needed to read/write a single app-specific backup file.
iCloud Backup (iOS): If you choose to enable iCloud backup, your data is stored in your personal iCloud account using Apple's CloudKit infrastructure. PurposeLab does not have access to your iCloud data.
Both backup options are entirely optional. The App works fully offline without any backup configured.
Google Sign-In: Used solely to authenticate your identity for Google Drive backup and restore. We access only your basic profile (name and email) to display which account is connected. We do not store your Google credentials, and your account information is not transmitted to our servers or used for any other purpose. You can disconnect at any time from the App's settings.
On launch, the App fetches a small static configuration file from GitHub Pages (a PurposeLab-controlled URL) to check for available updates and feature announcements. No user data, device identifiers, or journal content is sent in this request — it is a simple HTTPS GET. The response is cached locally for approximately 12 hours.
The App may request the following permissions:
We do not sell, trade, or share your data with third parties. We do not serve advertisements. We do not use ad tracking or retargeting. Anonymous analytics and crash data are processed by Google Firebase under their data processing terms — this data cannot identify you and contains no journal content.
Folio is not directed at children under 13. We do not knowingly collect data from children. Since no personal data is collected from any user, the App is compliant with COPPA.
You have full control over your data:
Since we don't collect personal data on our servers, there is nothing to request deletion of on our end.
We do not retain any personal data. Anonymous crash reports and analytics data are retained by Firebase for up to 90 days and cannot be linked to individual users. The Founding Circle counter is a single integer with no expiry — it contains no personal information.
Your journal data is stored in the app's private sandboxed storage, inaccessible to other apps. If you enable App Lock, biometric or device credential authentication is required to access the app. Backup transfers use encrypted connections (HTTPS/TLS). Purchase entitlements are stored locally on-device and are not transmitted to external servers.
If you have questions about this privacy policy, contact us at: purposelab.studio@gmail.com
We may update this policy from time to time. Changes will be reflected in the "Last updated" date above. Continued use of the App constitutes acceptance of the updated policy.