Goalsreach icon

Home / Privacy Policy

Privacy Policy

This Privacy Policy explains how Goalsreach collects, uses and protects your information when you use the Goalsreach iOS app and the goalsreach.co.uk website.

Controller: Goalsreach
Last updated: 2 December 2025

1. Who we are

Goalsreach (“we”, “us”, “our”) is responsible for operating the Goalsreach app and the goalsreach.co.uk website. This Privacy Policy explains how we collect, use and protect your information when you use our services.

For users in the UK and the European Economic Area (EEA), Goalsreach is the “data controller” of your personal information. For some services, we rely on third-party providers (such as Google Firebase and Apple) who act as “data processors” or independent controllers of some data.

2. Information we collect

We only collect the information we need to operate the app, keep your account working and understand how Goalsreach is being used.

2.1 Information you provide to us

  • Account details – such as your email address and password (or sign-in method), when you create an account or sign in. Your password is handled securely via our authentication provider and is not stored in plain text.
  • Profile and in-app content – including goals, habits, rewards, streaks, notes and other content you choose to store inside the app.
  • Purchase-related information – when you subscribe to Goalsreach Premium, Apple provides us with limited information about your subscription status (for example, whether you are in a free trial or an active subscription period). We do not receive or store your full payment card details.
  • Support and communication – if you contact us by email or via in-app forms, we may collect your name, email address and the content of your message.

2.2 Information collected automatically

  • Device and usage information – such as device model, operating system version, language, app version, basic event information (for example screens viewed and features used) and diagnostics. This helps us keep Goalsreach stable, secure and easy to use.
  • Log data – when the app encounters an error or crash, technical details may be logged (for example timestamp, error type and limited device information) so we can fix issues and improve performance.

2.3 Information from third parties

  • Apple App Store – Apple processes your purchase and payment details when you subscribe. We receive anonymised or limited information such as subscription status and region, but not your full billing information.
  • Firebase services – we use Firebase (provided by Google) for authentication, data storage and analytics. Depending on your device settings, Firebase may collect technical identifiers and usage events on our behalf. These are used to keep your account working and to help us understand how Goalsreach is used in aggregate.

3. How we use your information

We use your information for the following purposes:

  • To provide and maintain Goalsreach – including creating and managing your account, syncing your data, calculating Accountability Points and delivering core features.
  • To improve the app – by analysing aggregated usage data and crash reports so we can prioritise improvements, fix bugs and develop new features.
  • To communicate with you – for example about changes to the app, updates to this Policy, support responses or important service notices. We keep marketing-style communication to a minimum.
  • To manage subscriptions – including verifying your subscription status with Apple and delivering Premium features while your subscription is active.
  • To keep Goalsreach secure – for example by monitoring for abuse, preventing unauthorised access and enforcing our Terms of Use.
  • To comply with legal obligations – where we are required to retain or disclose certain information under applicable law.

4. Legal bases (UK & EEA users)

If you are in the United Kingdom or the EEA, we process your personal information under one or more of the following legal bases:

  • Performance of a contract – where processing is necessary to provide you with the app and any subscription features you have requested.
  • Legitimate interests – for example to maintain and improve Goalsreach, prevent fraud and keep our services secure. We balance these interests against your rights and expectations.
  • Consent – where you have actively given us permission (for example, if we ever introduce optional marketing communications or additional analytics controls).
  • Legal obligation – where we must process or retain information to comply with applicable law.

5. How we share your information

We do not sell your personal data. We only share it when necessary to run Goalsreach, when you ask us to, or when we are legally required to.

5.1 Service providers

We use trusted third-party providers to help us operate the app, including:

  • Google Firebase – for authentication, secure data storage and analytics.
  • Apple – for app distribution, in-app purchases and subscription billing.
  • Email and support tools – to receive and respond to support requests.

These providers only process your information on our instructions, are bound by contractual obligations of confidentiality and data protection, and may not use your information for their own purposes.

5.2 Legal and safety reasons

We may disclose information about you if we reasonably believe it is necessary to:

  • comply with a law, regulation, court order or other legal request;
  • protect the rights, property or safety of Goalsreach, our users or others;
  • detect, prevent or address fraud, security or technical issues.

6. International transfers

Goalsreach is operated from the United Kingdom, but some of our service providers (including Firebase and Apple) may process data in other countries, such as the United States or within the EEA. Where personal data is transferred outside the UK or EEA, we aim to ensure appropriate safeguards are in place, such as standard contractual clauses or equivalent protections, as required by applicable data-protection laws.

7. Data retention

We keep your personal information only for as long as we have a valid reason to do so – for example while your account is active or as needed to provide you with the app, meet our legal obligations, resolve disputes or enforce our agreements.

  • Account and in-app content – kept while your account is active. If you ask us to delete your account, we will remove or anonymise your personal data within a reasonable period, subject to any legal requirements to retain certain records.
  • Analytics and logs – kept for shorter periods where possible and used primarily in aggregate form.

8. Security

We use appropriate technical and organisational measures to protect your information, including encryption in transit, secure authentication and access controls. However, no method of transmission or storage over the internet is completely risk-free, so we cannot guarantee absolute security.

9. Your rights

Depending on where you live, you may have the following rights over your personal information:

  • Access – to ask for a copy of the personal data we hold about you.
  • Correction – to ask us to correct inaccurate or incomplete data.
  • Deletion – to request that we delete your personal data, in certain circumstances.
  • Restriction – to request that we limit how we use your data in certain cases.
  • Objection – to object to certain types of processing (for example, where we are relying on our legitimate interests).
  • Data portability – to request a copy of certain data in a structured, commonly used and machine-readable format.
  • Withdraw consent – where we rely on consent, you can withdraw it at any time.

To exercise any of these rights, please contact us at support@goalsreach.co.uk. We may need to verify your identity before responding. If you are unhappy with how we handle your data, you also have the right to lodge a complaint with your local data-protection authority. In the UK, this is the Information Commissioner’s Office (ICO).

10. Children’s privacy

Goalsreach is designed for a general audience and may be used by individuals of various ages. We do not knowingly collect personal data from children under 13 without appropriate parental consent, in line with applicable data-protection laws. If you believe that a child has provided us with personal information without consent, please contact us so we can delete it.

11. Cookies and similar technologies

The Goalsreach iOS app does not use traditional browser cookies. Our website may use a small number of essential cookies or similar technologies to keep the site secure and functional. Some of our providers (such as Firebase) may use technical identifiers to deliver their services and measure usage in aggregate.

12. Third-party links

Goalsreach may contain links to third-party websites or services, such as the Apple App Store or external resources. We are not responsible for the privacy practices of those third parties, so we encourage you to read their privacy policies before providing them with your information.

13. Changes to this Privacy Policy

We may update this Policy from time to time to reflect changes in the app, in the services we use or in applicable laws. When we make material changes, we will update the “Last updated” date at the top of this page and, where appropriate, provide additional notice in the app.

Your continued use of Goalsreach after any update to this Policy will constitute your acceptance of the revised terms.

Back to Goalsreach home · Privacy Policy · Terms of Use (Apple EULA)