Equipt

Privacy Policy

How Equipt handles your information.

This policy explains what Apologia House LLC collects through the Equipt iOS app and related web services, why we use it, who helps us process it, and how you can exercise your privacy rights.

Effective date: June 11, 2026

Controller and Contact

Apologia House LLC is the controller of personal information processed for Equipt. Contact us at privacy@equiptfaith.com for privacy questions, rights requests, or account-deletion help.

Information We Collect

We collect account information such as your authentication identifier, email address, sign-in provider identity claims, and profile details. If you use Sign in with Apple, Apple may provide a relay email address instead of your personal email address.

We collect app-use information such as lesson progress, content access decisions, purchase and entitlement status, safe operational events, pseudonymous analytics events, feature-gate calls, and scrubbed crash diagnostics.

We do not collect payment-card numbers. In-app purchases are processed by Apple, and RevenueCat helps us maintain subscription and entitlement state.

Why We Use Information

We process information to create and secure accounts, provide lessons and premium content, preserve lesson progress, manage purchases and founder access, prevent abuse, troubleshoot errors, improve product quality, and comply with legal and App Store obligations.

For users in the European Economic Area, United Kingdom, or Switzerland, our legal bases are contract performance, legitimate interests in operating and improving Equipt, legal obligations, and consent where a specific feature requests it.

Sign-In Providers and Relay Email

If you use Sign in with Apple, your Equipt account is keyed to the Apple identity UUID that Apple gives us for this app, not to an email address. Apple only provides your name and email during the first authorization. If you choose Hide My Email, Apple gives us a relay address that you can disconnect through Apple. If the relay is disconnected, we may no longer be able to reach you by email, but your account remains linked to the Apple UUID.

If you use Sign in with Google, Google provides identity claims such as your Google account identifier, email address, and basic profile fields so we can create and secure your Equipt account.

Processors and Sharing

We share information with processors that help us operate Equipt. They process information for the purposes listed below and may not use it for their own tracking.

  • Supabase: Hosted database, authentication, storage, and server infrastructure. Data: Authentication, profile records, lesson progress, entitlement records, and operational events.
  • RevenueCat: Subscription and entitlement management. Data: Auth user identifier as App User ID, purchase identifiers, product identifiers, entitlement status, and purchase events.
  • PostHog: Product analytics with autocapture and replay disabled. Data: Pseudonymous install identifier and allowlisted product analytics events.
  • Sentry: Error monitoring and crash diagnostics. Data: Scrubbed crash reports and diagnostics.
  • Statsig: Feature gates and controlled rollout decisions. Data: Pseudonymous device identifier and server environment identifier used for feature-gate evaluation.
  • Expo EAS Update: Over-the-air app update delivery. Data: App-update request metadata, EAS client ID, request IDs and headers, and bounded prior-fatal-error diagnostics.
  • Axiom: Runtime log and operational-event monitoring. Data: Safe operational-event fields from server route handlers.
  • Mux: Video hosting and playback delivery. Data: Signed playback URLs and video-delivery metadata for lessons.

Your Rights

Depending on where you live, including under GDPR-style laws, you may have the following rights:

  • Access the personal information we hold about you.
  • Correct inaccurate profile or account information.
  • Delete your account from inside the app, or contact us for help with deletion.
  • Object to or restrict certain processing where applicable law gives you that right.
  • Withdraw consent where our processing depends on consent.
  • Receive a portable copy of information you provided, where required by law.
  • Appeal or complain to your local data-protection authority if you believe your rights were not honored.

We also honor CCPA and CPRA-style access, deletion, correction, and opt-out requests as a voluntary best practice for United States users, even when a specific state law does not require that exact process. Equipt does not sell personal information or use it for cross-context behavioral advertising.

Account Deletion and Retention

You can delete your account from inside the app while signed in. Deletion removes the auth user and clears cascading records such as lesson progress, auth events, operational events, and sudo sessions.

Some records are anonymized or tombstoned instead of fully erased, including profile, entitlement, RevenueCat, founder, and audit records. We keep those limited records for billing reconciliation, anti-abuse, founder-cohort integrity, legal claims, and audit accountability. Founder slots are consumed when claimed and are not reclaimed after deletion.

Children Under 13

Equipt is intended for users who are at least 13 years old. We do not knowingly collect personal information from children under 13. If you believe a child under 13 provided personal information to us, contact privacy@equiptfaith.com and we will take appropriate steps to delete it.

Security, Transfers, and Changes

We use technical and organizational safeguards to protect Equipt, including access controls, server-side secret boundaries, and privacy scrubbing for diagnostics. Some processors operate in the United States or other countries, so information may be processed outside your home jurisdiction.

We may update this policy as Equipt changes. If a change is material, we will update the effective date and provide notice appropriate to the change.