Privacy Policy

1. Introduction

Welcome to SteadiDay ("we," "our," or "us"), operated by SCM Solutions LLC. We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we handle your information when you use our mobile application and visit our website.

By using SteadiDay, you agree to the practices described in this policy.

2. Information We Collect

2.1 Health Data (On-Device Only)

With your explicit permission, SteadiDay reads health-related information through Apple HealthKit, including:

• Daily step count and activity data
• Exercise minutes and workout information
• Sleep duration and quality metrics
• Heart rate and other vital signs (if shared)
• Nutrition and dietary information (if shared)

Important: All health data is stored locally on your device and protected by iOS encryption. We never transmit health data to our servers or any third parties.

2.2 User-Created Content (On-Device Only)

Information you enter into the app is stored on your device:

• Medication schedules and reminders
• Task lists and daily routines
• Emergency contacts and trusted persons
• Food and water intake logs
• Custom notes and reminders
• Medical information and doctor details

2.3 Photos (Temporary Processing Only)

When you use the camera to scan an insurance card or prescription label:

• The photo is processed on your device to extract text
• Extracted text is used to auto-fill form fields
• The photo is immediately deleted — it is never saved to your device storage or transmitted anywhere

2.4 Location Data

If you enable location-based features (such as weather or emergency SOS location sharing), your location is processed on your device. Location data is only shared when you explicitly trigger the Emergency SOS feature, and only with your designated trusted contacts.

2.5 What We Do NOT Collect

SteadiDay does not collect, store, or transmit:

• Email addresses or account credentials (no account is required)
• Usage analytics or session data from the app
• Device identifiers or advertising IDs from the app
• Crash reports sent to our servers from the app

3. How We Use Your Information

Since all your data stays on your device, we use it solely to power the app's features locally:

• Medication Reminders: Your medication schedules drive local notifications on your device
• Health Dashboard: Apple Health data is read and displayed within the app — it never leaves your phone
• Task Management: Your tasks and calendar data are processed on-device to show your daily schedule
• Emergency SOS: Your trusted contacts are stored locally and only contacted when you trigger SOS
• Notifications: All reminders are generated locally on your device — no server push notifications

4. Data Storage and Security

4.1 On-Device Storage

All your data is stored locally on your iPhone, protected by iOS device encryption. We do not operate servers that store your personal or health information.

4.2 App Lock Security

SteadiDay includes built-in security features:

• PIN code lock with SHA-256 hashing (stored only on your device)
• Optional Face ID / Touch ID authentication via iOS native security frameworks
• Automatic lock after inactivity and when the app goes to the background
• Generic notification content — no medication names or health details shown on your lock screen

4.3 Data Backup

Your SteadiDay data may be included in your standard iPhone backup (via iCloud or iTunes/Finder). This is controlled by your iOS backup settings, not by SteadiDay. We recommend keeping regular backups to protect against data loss.

5. Data Sharing and Disclosure

5.1 We Do NOT Sell Your Data

We do not sell, rent, or trade your personal information to third parties. Period.

5.2 No Third-Party Data Sharing from the App

Since your data is stored only on your device, there is no data for us to share. We do not use third-party analytics SDKs, advertising networks, or data brokers within the app.

5.3 Emergency SOS

When you activate Emergency SOS, the app will share your location and alert message with your designated trusted contacts. This only happens when you explicitly trigger this feature.

5.4 Legal Requirements

Since we don't have access to your data (it's on your device), we cannot provide it in response to legal requests. If required by law, we would disclose only business records we maintain (such as contact form submissions from our website).

5.5 Business Transfers

In the event of a merger, acquisition, or sale of assets, any data we do hold (limited to website contact form submissions) may be transferred. We will notify you of any such change.

6. Your Privacy Rights

Because your data is stored on your device, you have direct control:

• Access: All your data is visible to you within the app at any time
• Deletion: Delete any or all data from within the app, or by uninstalling the app
• Export: Export your data from within the app settings
• Revoke Permissions: Withdraw HealthKit access anytime via iOS Settings → Privacy & Security → Health
• Location: Disable location access anytime via iOS Settings → Privacy & Security → Location Services

For any privacy questions or concerns, please contact us using the information below.

7. Apple HealthKit Data

We comply fully with Apple's HealthKit guidelines:

• Health data is NEVER shared with third parties for advertising or marketing
• Health data is NEVER uploaded to external servers
• Health data is used only to display wellness information within the app
• You can revoke HealthKit permissions at any time through iOS Settings
• We do not use health data for any purpose other than providing app functionality

8. Website Analytics

Our website (steadiday.com) uses Google Analytics and Google Ads to understand how visitors find and use our website. This is separate from the app — the app itself contains no analytics or tracking.

Website analytics may collect:

• Pages visited and time spent on our website
• How you arrived at our website (search engine, ad click, direct)
• General geographic region (country/city level, not precise location)
• Browser type and device category

This data is anonymized and aggregated. It helps us understand whether our website content is reaching the right audience. It does not include any data from the SteadiDay app. You can opt out of Google Analytics by installing the Google Analytics Opt-out Browser Add-on.

9. Children's Privacy

SteadiDay is designed for adults 50 and older. We do not knowingly collect personal information from children under 13. If we discover that we have collected information from a child under 13, we will delete it immediately.

10. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act. Since we do not collect personal data from the app, most CCPA provisions are satisfied by default. For website-related data (contact form submissions and analytics), you have the right to:

• Know what personal information is collected
• Request deletion of personal information
• Opt out of the sale of personal information (we do not sell data)
• Non-discrimination for exercising your rights

11. GDPR Compliance (European Users)

If you are located in the European Economic Area, you have rights under the General Data Protection Regulation. Since your app data is stored on your device, you maintain direct control. For any data we process through our website, you have the right to:

• Access, rectification, and erasure of your data
• Restriction of processing and data portability
• Object to processing
• Withdraw consent
• Lodge a complaint with a supervisory authority

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by updating the "Last Updated" date at the top of this page. Your continued use of the app after changes constitutes acceptance of the updated policy.