Privacy Policy
SynapSprint — a 77beats product
Effective May 29, 20261. Overview
SynapSprint ("the App", "we", "our", or "us") is a mobile application offering a rotating selection of cognitive-training activities and wellness exercises. This Privacy Policy explains what information the App handles, how it is used, who it is shared with, and the choices and rights available to you.
2. Who We Are
SynapSprint is developed and published by 77beats, based in Ontario, Canada. For privacy purposes, 77beats is the data controller.
- Developer: 77beats
- Privacy contact: [email protected]
- Website: synapsprint.77beats.com
3. Data We Collect
3.1 Activity & Performance Data Device Only
As you use the App, it records information about your in-app activity and results — including which activities you use, your in-app performance and progress, and achievements earned. This information is stored in a local database on your device and is not uploaded to our servers.
3.2 App Preferences Device Only
Your settings are stored locally, including appearance/theme, language, audio, haptic, motion, and accessibility preferences, and your notification choices.
3.3 Device & Diagnostic Information
To operate the App, render correctly, secure purchases, and diagnose problems, the following may be processed:
- Device model, manufacturer, and operating system version, and app version
- Display and performance characteristics used to adapt visuals on your device
- A randomly generated identifier created by the App and held in your device's secure storage (this is not a hardware identifier and is used for on-device integrity of entitlements)
3.4 Subscription & Purchase Data Processed by Providers
If you subscribe or start a free trial, your purchase is processed by Google Play and your entitlement is managed by RevenueCat (our subscription-management provider). The information involved includes your purchase/entitlement status, the subscription product involved, and a pseudonymous customer/app identifier. We do not receive or store your payment-card details — billing is handled entirely by Google Play. See Section 8.
3.5 Crash & Error Reports On by Default (Opt-Out) · EEA/UK: Opt-In
Crash reporting is enabled by default to help us diagnose and fix problems; in the EEA and UK it is off until you opt in. You can change this at any time in the App's Settings → Privacy. When enabled, sanitized diagnostic data is collected (see Section 9).
3.6 Advertising Data Free Tier Only
If you use the free tier, our advertising provider may process your device's advertising identifier, device and network information, and ad-interaction data (such as impressions and taps) to serve and measure ads. Subscribers and trial users see no ads. See Section 7.
3.7 Data We Do NOT Collect
- Your name, email address, or other directly identifying personal information (no account is required)
- Precise or approximate location (GPS, Wi-Fi, or cell)
- Contacts or address book
- Photos, files, camera, or microphone input
- Browsing history or data from other apps
- Biometric data
- Health data, or data from external sensors or wearables
- Social-media profiles or login credentials
4. How We Use Your Data
| Category | Purpose | Legal Basis (GDPR/UK GDPR) |
|---|---|---|
| Activity & performance data | Show your history and progress and adapt the in-app experience | Performance of a contract |
| App preferences | Remember your settings across sessions | Performance of a contract |
| Device & diagnostic information | Operate and render the App; secure entitlements; prevent abuse | Legitimate interests |
| Subscription & purchase data | Provide and verify subscriptions and trials | Performance of a contract |
| Crash & error reports | Diagnose and fix problems and improve stability | Consent (and, outside the EEA/UK, legitimate interests with an opt-out) |
| Advertising data (free tier) | Serve and measure ads; apply frequency controls | Consent (EEA/UK) / legitimate interests with an opt-out (elsewhere) |
We do not use your activity or performance data for advertising profiling, and we do not sell your personal information for money (see Section 12).
5. Data Storage & Security
5.1 On-Device Storage
The large majority of your data stays on your device, using:
- A local database — your activity, progress, and achievements
- Local preferences — your settings
- Secure storage — entitlement and ad-related state, protected by your device's hardware-backed keystore
5.2 Security Measures
- Communication with third-party services uses HTTPS/TLS encryption
- Sensitive on-device data is held in hardware-backed encrypted storage
- Entitlement state is integrity-protected to resist tampering
- Crash data is sanitized on the device before any transmission
- Android auto-backup of app data is disabled to limit unintended data extraction
No method of storage or transmission is completely secure, and we cannot guarantee absolute security.
6. Third-Party Services
SynapSprint relies on the following third-party providers. Each processes data under its own privacy policy and acts as our service provider/processor where applicable:
| Provider | Purpose | Data Involved |
|---|---|---|
| Google — Firebase Crashlytics | Crash & error reporting (on by default with an opt-out; off until opt-in in the EEA/UK) | Sanitized diagnostics, device model, OS & app version |
| Google — Firebase Remote Config | Server-side configuration / feature management | A pseudonymous installation identifier |
| Google — Firebase App Check / Play Integrity | Verify requests come from a genuine, unmodified app (anti-abuse) | A pseudonymous app-integrity attestation token |
| Google — AdMob (Google Mobile Ads) | Advertising (free tier only) | Advertising identifier, device/network info, ad interactions |
| RevenueCat | Subscription & entitlement management | Purchase/entitlement status, subscription product, a pseudonymous customer/app identifier |
| Google Play Billing | Processing in-app purchases and subscriptions | Purchase transaction handled by Google Play; no card data reaches us |
The Remote Config and App Check identifiers are functional and security identifiers sent to Google when the App starts. They are pseudonymous, are not linked to your identity, and are not used to track you across other apps or websites. We do not use Firebase Analytics for product analytics in the current version — your activity and performance data stays on your device.
7. Advertising
Ads are shown only to free-tier users. When you subscribe or activate a trial, all advertising is disabled for the duration of your subscription.
7.1 Consent & Personalization
Advertising is delivered through Google AdMob using Google's User Messaging Platform to gather any required consent before serving ads:
- EEA & UK: a consent prompt governs whether you receive personalized or non-personalized ads. If you do not consent, you may still receive non-personalized ads.
- United States: where applicable, a privacy notice provides an opt-out for the sharing of personal information for advertising.
7.2 Your Ad Choices
- In the App: open the ad-privacy / consent options in Settings → Privacy to review or change your choices, where available for your region.
- On your device: you can reset or limit your advertising identifier in your Android privacy settings.
- Subscribe: subscribers and trial users see no ads at all.
8. Subscriptions & Purchases
SynapSprint offers a free tier (with ads and limits), an optional free trial where available, and an auto-renewing premium subscription that removes ads and unlocks full access. Pricing is shown in the App and on Google Play in your local currency at the time of purchase.
8.1 How Purchases Are Processed
Purchases are processed by Google Play, and entitlements are verified and managed by RevenueCat. We do not receive your payment-card information. A pseudonymous identifier links your purchase to your entitlement so the App can unlock the correct features and support "restore purchases".
8.2 Trials, Renewal & Cancellation
Where a free trial is offered, eligibility is determined by your Google Play account (generally one introductory offer per account per subscription). Subscriptions renew automatically unless cancelled, and you can manage, cancel, or request refunds through your Google Play subscription settings, subject to Google's policies. See our Terms of Service.
9. Crash Reporting
9.1 Consent Model
Crash reporting is enabled by default with an opt-out, except in the EEA and UK, where it is off until you opt in. You can change this at any time in Settings → Privacy. Turning it off (or, in the EEA/UK, not opting in) stops crash-data collection going forward.
9.2 On-Device Sanitization
Before any crash data leaves your device, an on-device sanitizer removes sensitive patterns, including email addresses, phone numbers, IP addresses, payment-card-like numbers, tokens, keys, and file paths that could contain a username.
9.3 What Is Sent
While crash reporting is enabled, the App sends an error type and sanitized message, an anonymized stack trace, sanitized diagnostic context (such as the screen involved), and the app version, device model, and OS version attached automatically by the reporting SDK. We do not attach memory snapshots, performance traces, or analytics events.
10. Children's Privacy
SynapSprint is intended for a general audience and is not directed to children under 13 (or the applicable age of digital consent in your jurisdiction). We do not knowingly collect personal information from children. If you believe a child has provided personal information, contact [email protected] and we will delete it.
11. Your Rights & Choices
11.1 Everyone — In-App Controls
Because the App is local-first, you can exercise most choices directly on your device through the App's Settings → Privacy, including exporting your data, deleting your data, resetting the App, toggling crash reporting, and managing your advertising/consent choices. Uninstalling the App removes all on-device data. See our Data Deletion page.
11.2 EEA & UK (GDPR / UK GDPR)
You have the rights to access, rectify, erase, restrict, and object to processing of your personal data, to data portability, and to withdraw consent at any time. You also have the right to lodge a complaint with your local data-protection authority.
11.3 Canada (PIPEDA & Quebec Law 25)
You have the right to access and correct your personal information and to withdraw consent, subject to legal and contractual limits. You may contact us with any concern, and you may also contact the Office of the Privacy Commissioner of Canada or, in Quebec, the Commission d'accès à l'information.
11.4 United States (California & other state laws)
Depending on your state (for example, California's CCPA/CPRA and similar laws), you may have the rights to know/access, delete, and correct your personal information, to opt out of the "sale" or "sharing" of personal information and of targeted advertising, and to non-discrimination for exercising your rights. See Section 12 for advertising-related sharing and how to opt out.
11.5 How to Exercise Rights With Us
For data held by our providers (such as crash records, advertising identifiers, the Firebase installation identifier, or RevenueCat entitlement records), email [email protected] with the subject "Privacy Request". We will respond within the time required by applicable law (generally within 30–45 days). We may need to verify your request before acting on it. You may use an authorized agent where the law permits.
12. Sale & Sharing of Personal Information
We do not sell your personal information for money, and we do not use your activity or performance data for advertising profiling. However, when the free tier serves personalized ads, your advertising identifier may be shared with our advertising provider for ad personalization. Some laws (such as California's CPRA) treat this as a "sale" or "sharing" for cross-context behavioral advertising.
You can opt out at any time by: declining personalization in the in-app consent prompt where shown, using the ad-privacy / consent options in Settings → Privacy, resetting or limiting your advertising identifier in your device settings, or subscribing (subscribers see no ads).
13. Data Retention
| Data | Retention | Where |
|---|---|---|
| Activity, progress & preferences | Until you delete it or uninstall the App | Your device |
| Entitlement / ad-related state | Until you delete it or uninstall the App | Your device (encrypted) |
| Crash reports | A limited period set by the provider | Crash-reporting provider |
| Subscription / purchase records | As long as needed for the subscription and as required by the providers and applicable law | RevenueCat / Google Play |
Uninstalling the App permanently removes all on-device data.
14. International Data Transfers
Our service providers (including Google and RevenueCat) may process data in countries other than where you live, including the United States. Where required, these transfers rely on appropriate safeguards (such as standard contractual clauses) provided under those providers' data-processing terms. Because the App is local-first, your activity and performance data is not itself transferred internationally by us.
15. Changes to This Policy
We may update this Privacy Policy from time to time. When we make material changes, we will update the "Effective" date above and, for significant changes, provide notice in the App. Your continued use after changes take effect constitutes acceptance of the updated policy.
16. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or your data, please contact us:
Questions or requests about your privacy?
77beats — Privacy
We aim to respond within the timeframe required by applicable law.