Legal

Privacy Policy

Effective date: March 19, 2026 · Last updated: March 19, 2026

        Your privacy matters to us. Roadstep is designed to help you make progress on your goals — not to harvest your data. We only collect what we need to make the app work, and we never sell your personal information.
      

1. Who We Are

Roadstep ("we", "us", or "our") is a mobile productivity application. For questions about this policy, contact us at info@roadstep.app.

2. Information We Collect

2.1 Information You Provide

Account information: email address and password (managed by Clerk authentication).
Goal and task data: titles, descriptions, target dates, and progress records you enter in the app.
Support communications: any messages you send to our support team.

2.2 Information Collected Automatically

Device information: device model, OS version, and unique device identifiers.
Usage data: features you interact with, session length, and crash reports.
Subscription status: purchase and entitlement data managed by RevenueCat.

2.3 Information We Do Not Collect

We do not access your contacts, camera, microphone, or location.
We do not collect payment card details — purchases are handled entirely by Apple / Google.

3. How We Use Your Information

To provide, operate, and improve the Roadstep app.
To generate AI-powered task suggestions via OpenAI (only the goal/phase text you enter is sent — no personal identifiers).
To manage your subscription and process purchases through RevenueCat.
To authenticate your account securely through Clerk.
To respond to support requests and communicate service updates.
To detect fraud and prevent abuse.

4. AI-Generated Content

When you use the roadmap or task-generation feature, relevant goal and phase text is sent to OpenAI's API to generate suggestions. We do not send your name, email, or any other personally identifiable information to OpenAI. OpenAI's data handling is governed by their own Privacy Policy.

5. Third-Party Services

Roadstep integrates with the following third-party providers:

Clerk — authentication and user account management.
RevenueCat — subscription management and purchase validation.
OpenAI — AI task generation (goal text only, no PII).
Apple App Store / Google Play — payment processing.
Vercel — hosting our serverless API backend.

Each provider has its own privacy policy and security practices. We encourage you to review them.

6. Data Storage and Security

Your goal and task data is stored locally on your device and, when you are signed in, securely backed up to our cloud servers so your progress is preserved. Account credentials are managed and encrypted by Clerk. We apply industry-standard technical and organisational measures to protect your data from unauthorised access, alteration, or disclosure.

7. Data Retention

We retain your account data for as long as your account is active. If you delete your account, we will delete your personal information within 30 days, except where retention is required by law.

8. Your Rights

Depending on your location, you may have the right to:

Access the personal data we hold about you.
Correct inaccurate data.
Request deletion of your data ("right to be forgotten").
Object to or restrict certain processing.
Data portability.

To exercise any of these rights, email info@roadstep.app.

9. Children's Privacy

Roadstep is not directed at children under 13. We do not knowingly collect personal information from children under 13. If we learn that we have done so, we will delete it promptly.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via in-app notice or email. Continued use of Roadstep after changes take effect constitutes acceptance of the updated policy.

11. Contact Us

If you have any questions or concerns about this Privacy Policy, please contact us at info@roadstep.app.