← Back to Home

Privacy Policy

Taoftware LLC
Effective Date: March 5, 2026 · Last Updated: March 5, 2026

Taoftware LLC ("we," "us," or "our") operates the Diaroo mobile application (the "App"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our App. Please read this Privacy Policy carefully. By using the App, you agree to the collection and use of information in accordance with this policy.

If you do not agree with the terms of this Privacy Policy, please do not access or use the App.

1. Information We Collect

1.1 Information You Provide Directly

  • Account Information: If you create an account, we collect your email address and password. Your password is handled by our authentication provider (Supabase) and stored using Supabase's built-in password hashing. We do not have access to your plaintext password.
  • Profile Information: Username, avatar selection, and display preferences you configure within the App.
  • Log Entries: Bowel movement logs you create, including type, time, duration, mood, Bristol scale rating, stool color, symptoms, recent food, water intake, and optional notes. This information is stored locally on your device. If you create an account and choose to sync, log entries are uploaded to our cloud database (see Section 3).
  • Location Data: If you grant location permission, we collect the name or coordinates of the location associated with a log entry. Location tracking is optional and can be disabled in App settings at any time. If you have an account and sync is enabled, location data associated with your log entries is uploaded to our cloud database.

1.2 Information Collected Automatically

  • Device Information: Device type, operating system version, and app version. This information is available to us through standard platform APIs but is not currently transmitted to any third-party analytics service.

Note on planned integrations: We may in the future integrate third-party analytics (e.g., Mixpanel), crash reporting (e.g., Sentry), and advertising (e.g., Google AdMob) services. If and when we do, we will update this Privacy Policy before activating those integrations. Currently, the App does not transmit data to any third-party analytics, crash reporting, or advertising network.

1.3 Advertising

The App currently displays simulated placeholder advertisements. No real advertising network is active, and no advertising identifiers (IDFA or GAID) are currently collected or transmitted. If we integrate a live advertising network in the future, this policy will be updated before activation.

1.4 Purchases

The App currently offers a simulated one-time premium upgrade that is processed entirely on-device (stored locally). No payment processor or in-app purchase SDK is currently active. If we integrate app store in-app purchases or a payment processor in the future, this policy will be updated before activation.

2. How We Use Your Information

We use the information we collect to:

  • Provide and maintain the App, including syncing your data across devices if you create an account.
  • Personalize your experience, including achievement tracking, streaks, and statistics.
  • Provide leaderboard features using your username, avatar, and aggregate entry counts if you opt in to sharing (see Section 3.1).
  • Send notifications if you enable push notifications (e.g., daily reminders, leaderboard rank alerts).
  • Generate health reports and statistics based on your log data, entirely for your personal use.
  • Comply with legal obligations and enforce our Terms of Service.

3. How We Share Your Information

We do not sell your personal information.

3.1 Leaderboard and Public Sharing

If you enable the "Anonymous Sharing" setting in the App, only aggregated leaderboard data is visible to other users:

  • Your username, avatar, entry count, and streak are visible on the leaderboard via the rankings table, which contains only aggregated data (score, streak, rank, username, avatar).
  • Your individual entry rows (including health fields, location, and notes) are never accessible to other users. Row-level security policies ensure that only you can read your own entries.

3.2 Service Providers

We share information with the following third-party service provider:

ProviderPurposeData Shared
SupabaseAuthentication and cloud databaseEmail, hashed password, synced log entries (including location if enabled), profile data

3.3 Legal Requirements

We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., a court order or government agency).

3.4 Business Transfers

If Taoftware LLC is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will provide notice before your information is transferred and becomes subject to a different privacy policy.

3.5 Aggregated or De-identified Data

We may share aggregated or de-identified information that cannot reasonably be used to identify you, for research, analytics, or marketing purposes.

4. Data Retention

  • Local Data: Log entries stored on your device remain there until you delete them or uninstall the App.
  • Cloud Data: If you create an account, synced data is retained in our Supabase database for as long as your account is active. You may request deletion at any time (see Section 7).
  • Authentication Data: Supabase retains authentication records according to its data retention policies.

5. Data Security

We implement commercially reasonable technical and organizational measures to protect your information, including:

  • Encryption of data in transit (TLS/HTTPS) between the App and Supabase.
  • Supabase handles password hashing and secure session management.
  • Row-level security policies in our database to restrict data access by user.
  • Authentication sessions are persisted locally using AsyncStorage.

Limitations: No method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security. Authentication tokens are stored using AsyncStorage, which does not provide hardware-level encryption. We do not currently use device-level secure storage (e.g., Keychain or Keystore) for authentication credentials.

6. Children's Privacy

The App is not intended for children under the age of 13 (or the applicable age of digital consent in your jurisdiction). We do not knowingly collect personal information from children under 13. If we learn that we have collected personal information from a child under 13, we will take steps to delete that information promptly. If you believe a child has provided us with personal information, please contact us at the address below.

7. Your Privacy Rights

7.1 All Users

Regardless of your location, you may:

  • Access your data by viewing your log entries, profile, and statistics within the App.
  • Delete your local data by uninstalling the App. (Note: the in-app "Clear All Data" and "Export Data" features are not yet fully implemented and currently display placeholder messages only. Full data export and deletion functionality is planned for a future release.)
  • Delete your cloud account and all associated data by contacting us at the email below. We will process deletion requests within 30 days.
  • Disable location tracking in the App settings at any time.
  • Disable public sharing by turning off the "Anonymous Sharing" toggle.
  • Manage notifications in the App settings or your device settings.

7.2 California Residents (CCPA/CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act and the California Privacy Rights Act:

  • Right to Know: You may request that we disclose the categories and specific pieces of personal information we have collected about you.
  • Right to Delete: You may request deletion of your personal information, subject to certain exceptions.
  • Right to Correct: You may request correction of inaccurate personal information.
  • Right to Opt-Out of Sale or Sharing: We do not sell or share your personal information for cross-context behavioral advertising.
  • Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights.

To exercise your CCPA rights, contact us using the information in Section 10.

7.3 European Economic Area, United Kingdom, and Swiss Residents (GDPR)

If you are in the EEA, UK, or Switzerland, you have additional rights:

  • Legal Basis for Processing: We process your data based on: (a) your consent, (b) performance of a contract, (c) legitimate interests, and (d) legal obligations.
  • Right of Access: You may request a copy of your personal data.
  • Right to Rectification: You may request correction of inaccurate data.
  • Right to Erasure: You may request deletion of your data.
  • Right to Restrict Processing: You may request that we limit how we use your data.
  • Right to Data Portability: You may request your data in a structured, machine-readable format.
  • Right to Object: You may object to processing based on legitimate interests.
  • Right to Withdraw Consent: Where processing is based on consent, you may withdraw consent at any time.

International Transfers: Your data may be transferred to and processed in the United States. We rely on Standard Contractual Clauses and other lawful transfer mechanisms to ensure adequate protection.

8. Third-Party Links and Services

The App may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties.

9. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated Privacy Policy within the App and updating the "Last Updated" date.

10. Contact Us

If you have questions about this Privacy Policy or wish to exercise your privacy rights, contact us at:

Taoftware LLC
21520 Yorba Linda Blvd Ste G #3007
Yorba Linda, California 92887

Email: [email protected]

11. Wellness Disclaimer

Diaroo is a wellness tracking tool. It does not provide medical advice, diagnosis, or treatment. The health reports, statistics, and insights generated by the App are for informational and personal tracking purposes only. Always consult a qualified healthcare professional for medical concerns. See our full Wellness Disclaimer for more information.