Privacy Policy
Effective Date: June 8, 2026
Last Updated: June 8, 2026
This Privacy Policy explains how O'Daddio Labs ("we," "us," "our") handles
information in connection with our mobile applications and our website. We
are a U.S.-based company.
This policy covers:
• The Chirpsy — Sunrise Alarm Clock mobile app for iOS and Android
(collectively, the "App").
• The odaddiolabs.com website (the "Site").
We follow a strict privacy-minimum philosophy: we don't run user accounts,
we don't operate any backend servers that store your data, and we don't
sell, rent, or trade personal information.
==========================================================
PART 1 — THE CHIRPSY MOBILE APP
==========================================================
1.1 WHAT WE COLLECT DIRECTLY
We do not collect, store, or transmit any personal information about you on
our own servers. The App has no user accounts, no login, no cloud sync, and
no analytics SDK of our own.
All of your alarm settings, sound preferences, wake-up-task settings, and
best-time leaderboard scores are stored ONLY in a local database on your
device. This data never leaves your device unless you initiate a manual
phone-to-phone transfer or backup through Apple iCloud / Google Drive
(which is governed by Apple's or Google's policies, not ours).
1.2 PERMISSIONS WE REQUEST AND WHY
The App requests the following device permissions. None of these are used
to profile you, build a behavioral record, or transmit data off-device:
• Notifications — to display the alarm and to satisfy Android's
foreground-service requirement while an alarm is ringing or
white-noise audio is playing.
• Alarms & Reminders (Schedule Exact Alarm, Use Exact Alarm) — required
so your alarms ring at the precise time you set, even when the phone
is in Doze mode.
• Run at Startup (Receive Boot Completed) — so your alarms re-arm
automatically after a reboot. The App does NOT contact the network
on boot.
• Wake Lock & Full Screen Intent — to wake the screen and show the
alarm UI when an alarm fires.
• Vibrate — to vibrate the phone when alarms fire.
• Display Over Other Apps — so the alarm screen can appear on top of
whatever app you were last using.
• Camera — used ONLY to toggle the device's built-in flashlight
(torch) for the sunrise simulation feature. See Section 1.2.1
immediately below for an explicit no-photo / no-video disclosure.
• Modify Audio Settings — to ensure alarm volume is audible regardless
of the system media volume slider.
• Internet & Network State — used only to fetch banner advertisements
from Google AdMob (see Section 1.3). No other network traffic
originates from the App.
• Advertising ID (Android only) — see Section 1.3.
1.2.1 IMPORTANT NOTE ABOUT THE CAMERA PERMISSION
The App requests the Camera permission for a single, narrow purpose:
turning the device's built-in LED flashlight (also called the "torch") on
and off as part of the sunrise simulation feature, which gradually
brightens the room before your alarm time.
The App contains NO code that takes photos.
The App contains NO code that records video.
The App contains NO code that opens a camera preview window.
The App contains NO code that reads from your photo library or
gallery.
The App contains NO code that writes any image or video file to your
device or to any server.
The reason a "Camera" permission is required at all — even though the App
never touches the lens for imaging — is purely technical. On both
operating systems, the hardware flashlight is exposed only through the
camera subsystem:
• On Android, controlling the flashlight requires the standard
android.permission.CAMERA permission and uses the system API
CameraManager.setTorchMode(). There is no separate "flashlight-only"
permission on Android.
• On iOS, controlling the flashlight requires NSCameraUsageDescription
and uses AVCaptureDevice.torchMode. There is no separate
"flashlight-only" permission on iOS either.
Because Google Play and Apple both prohibit declaring camera access
without using it appropriately — and would remove an app immediately for
violating that rule — we have a strong incentive to keep this surface as
narrow as it is. The App's compiled bundle and source can be audited to
confirm: no image or video capture APIs, no MediaStore reads, no
Photos-library reads, no camera preview surface is ever created.
If you do not enable the sunrise simulation flash feature in any of your
alarms, the Camera permission is never exercised at all.
1.3 THIRD-PARTY SERVICES (ADVERTISING)
To keep the App free, the App displays banner advertisements served by
Google AdMob (the "Google Mobile Ads SDK"). We configure AdMob in the
most privacy-restrictive way available to publishers:
• Non-Personalized Ads only. Every ad request is sent with the
"npa=1" flag, instructing AdMob to disable behavioral targeting and
to select ads based only on contextual signals.
• G-Rated Content only. We cap every ad to Google's
MAX_AD_CONTENT_RATING_G level — the same family-safe rating shown
in Google Play and YouTube Kids.
• Delay App Measurement. We disable AdMob's automatic analytics
ping until the first ad load, so no AdMob traffic is generated
unless an ad is actually being requested.
To deliver and protect those ads, Google's SDK may collect a limited
set of data on its own. As disclosed by Google's AdMob policy, this can
include:
• Approximate (city/region-level) location, derived from IP address.
• Device & app identifiers — on Android, the Google Advertising ID
(AAID); on iOS, the IDFA only if you grant App Tracking Transparency
permission (see Section 1.4).
• Device characteristics — model, OS version, language, time zone,
screen size, network type.
• Ad-interaction events — when an ad is shown, viewed, or tapped, used
to bill advertisers and detect click fraud.
For full details, see Google's AdMob & AdSense policy:
https://support.google.com/admob/answer/6128543
https://policies.google.com/technologies/partner-sites
You can reset or clear your Google Advertising ID at any time in
Android Settings → Privacy → Ads, or disable it entirely on Android 12
and later.
1.4 APPLE APP TRACKING TRANSPARENCY (iOS)
The iOS version of Chirpsy honors Apple's App Tracking Transparency
("ATT") framework. If you choose "Ask App Not to Track" when prompted,
the Google Mobile Ads SDK will not access your IDFA and will serve only
non-personalized ads. The App's own functionality is fully available
regardless of your ATT choice.
1.5 CHILDREN'S PRIVACY
The App is not directed at children under 13 (under 16 in the EEA /
UK). We do not knowingly collect personal information from children.
The App is not listed under Google Play's "Designed for Families"
program or Apple's "Kids" category. If you believe a child has used the
App in a way that exposed personal information, contact us at
support@odaddiolabs.com and we will investigate.
1.6 IN-APP PURCHASES
If Chirpsy ever offers paid features, subscriptions, or in-app billing,
those transactions are processed entirely by Apple (App Store) or
Google (Play Billing). We never see your credit-card number, billing
address, or payment details — only the anonymous purchase tokens those
platforms return to us. Refunds, cancellations, and payment-data
questions go through Apple's or Google's billing channels.
1.7 DATA RETENTION & DELETION
Because all App data is stored on your device, you can erase it at any
time by:
• Uninstalling the App, or
• iOS: Settings → General → iPhone Storage → Chirpsy → Delete App
• Android: Long-press the app icon → App info → Storage → Clear
storage (or uninstall)
We do not retain any account or profile data on our servers, because no
such data exists. If you have ever contacted our support email and want
that correspondence permanently deleted from our inbox, write to
support@odaddiolabs.com with the subject line "Delete my support
history" and we will purge the records within 30 days and reply to
confirm.
We do not have an account-deletion URL because the App does not create
user accounts. This complies with Google Play's account-deletion
requirement for apps with no accounts.
==========================================================
PART 2 — THE ODADDIOLABS.COM WEBSITE
==========================================================
O'Daddio Labs is the data controller for personal data processed via
the Site.
2.1 INFORMATION WE COLLECT AUTOMATICALLY
When you visit the Site, our hosting provider automatically logs
technical information about your visit, including:
• IP address (used to detect abuse, then truncated for analytics)
• Browser type and version
• Operating system
• Referring URL
• Pages viewed and time spent
• Time zone and approximate (city-level) location derived from IP
We call this "Device Information." It is used solely to operate the
Site, diagnose technical problems, and detect abuse. We do not combine
it with any other information to identify you as an individual.
2.2 INFORMATION YOU PROVIDE
If you fill out a contact form, sign up for our newsletter, or email us
directly, you may provide personal data such as your name, email
address, and message contents. We use this information only to respond
to your request and, if applicable, to send you the newsletter. You can
unsubscribe from the newsletter at any time using the link in any
newsletter email.
2.3 COOKIES
The Site uses only strictly-necessary cookies (session management) and,
where applicable, a single first-party analytics cookie. We do not
place advertising cookies on the Site.
2.4 LINKS TO OTHER WEBSITES
The Site may link to third-party websites we do not own or control. We
are not responsible for their privacy practices. Please read their
policies before providing any personal information.
==========================================================
PART 3 — YOUR PRIVACY RIGHTS
==========================================================
3.1 EUROPEAN ECONOMIC AREA, UNITED KINGDOM, AND SWITZERLAND
(GDPR / UK GDPR)
If you are a resident of the EEA, UK, or Switzerland, you have the
following rights regarding personal data we hold about you:
• Right to be informed
• Right of access
• Right to rectification
• Right to erasure ("right to be forgotten")
• Right to restrict processing
• Right to data portability
• Right to object
• Rights regarding automated decision-making and profiling
The legal bases on which we process personal data are: (a) your consent
(e.g., newsletter sign-up), (b) performance of a contract (e.g.,
responding to a support request you initiated), and (c) our legitimate
interests (e.g., detecting abuse of the Site). To exercise any right,
contact us at support@odaddiolabs.com. You also have the right to lodge
a complaint with your local data protection authority.
We may transfer personal data outside the EEA / UK to the United
States, where O'Daddio Labs is based. Such transfers rely on
appropriate safeguards (e.g., the EU-U.S. Data Privacy Framework where
applicable, or the Standard Contractual Clauses).
3.2 CALIFORNIA (CCPA / CPRA)
If you are a California resident, you have the following rights:
• Right to know what personal information we collect, use, share, and
disclose.
• Right to delete personal information we have collected from you.
• Right to correct inaccurate personal information.
• Right to opt out of "sale" or "sharing" of personal information.
• Right to limit use of sensitive personal information.
• Right to non-discrimination for exercising any of the above rights.
We do not "sell" personal information for money. The Google AdMob
integration in the App may be considered a "sharing" of identifiers for
cross-context behavioral advertising under the CCPA's broad definition,
but as described in Section 1.3 we configure AdMob in non-personalized
mode only. You can additionally opt out of personalized advertising in
your device settings (Android: Settings → Privacy → Ads → "Delete
advertising ID"; iOS: Settings → Privacy & Security → Tracking → off).
To exercise any California right, contact us at support@odaddiolabs.com.
3.3 OTHER U.S. STATES
If you reside in a U.S. state with a comprehensive privacy law
(including Virginia, Colorado, Connecticut, Utah, Texas, Oregon, and
others), you have rights similar to those described in Section 3.2.
Contact us at support@odaddiolabs.com to exercise them.
==========================================================
PART 4 — GENERAL PROVISIONS
==========================================================
4.1 INFORMATION SECURITY
We store any information you provide through our website on hardened
servers operated by reputable hosting providers. We use industry-
standard administrative, technical, and physical safeguards. Because
the App stores its data on your device, the security of that data is
governed primarily by the security of your device — keep your device's
OS and screen lock up to date.
No method of internet transmission or electronic storage is 100%
secure. We cannot guarantee absolute security.
4.2 LEGAL DISCLOSURES
We may disclose information we collect, use, or receive if required or
permitted by law — for example, to comply with a subpoena or similar
legal process, or when we believe in good faith that disclosure is
necessary to protect our rights, your safety or the safety of others,
to investigate fraud, or to respond to a lawful government request.
4.3 CHANGES TO THIS POLICY
We may update this Privacy Policy from time to time. If we make
material changes, we will revise the "Last Updated" date at the top,
post the updated policy on this page, and — for material changes —
provide more prominent notice (such as an in-app banner on next
launch). Continued use of the App or Site after a change constitutes
acceptance of the updated policy.
4.4 CONTACT
If you have any questions about this Policy, want to exercise any
privacy right, or wish to request deletion of records we may hold about
you, contact us at:
Email: support@odaddiolabs.com
Company: O'Daddio Labs
Country: United States