PanicLog Privacy Policy

Effective date: 2026-04-19 · Last updated: 2026-04-19

Short version: PanicLog stores all of your journal data — panic episodes, daily check-ins, CBT thought records, GAD-7 scores, medication notes, and coping history — only on your device. We have no servers, no analytics, and no AI. Trigger-symptom pattern analysis runs on-device using rule-based logic, not machine learning. We never see your journal. The only network communication the app performs is with Apple's StoreKit servers to verify your subscription status.

1. Who we are

PanicLog is published by an independent iOS developer (Apple Developer Team ID ZM8LF8494F). For any privacy-related question, write to captainlongevity@gmail.com.

2. Information we do not collect

We do not collect, transmit, store on a server, sell, share, or use to train any model:

Your panic episodes, daily check-ins, CBT thought records, cognitive distortion tags, triggers, body symptoms, emotional symptoms, coping notes, or free-text reflections
Your GAD-7 assessment answers or scores
Your medication list, dosages, or medication change history
Your name, email, phone, or any account identifier
Device identifiers (IDFA, IDFV) for advertising or tracking purposes
Location data
Crash reports or analytics events sent to any third party

3. Information stored on your device

All journal data you enter is stored locally on your iOS device using Apple's SwiftData framework. This data is included in your iCloud or iTunes device backup if you have device backup enabled. We do not have access to your device backups; only Apple does, under their published privacy terms.

4. On-device processing

Several features process data locally on your device only:

Pattern analysis (Pro) uses a rule-based engine to surface trigger-to-symptom correlations, coping effectiveness ranking, and cognitive distortion frequency. It is deterministic Swift code, not artificial intelligence or machine learning. No data leaves the device during analysis.
GAD-7 scoring (Pro) computes the sum of your seven answers on-device. The severity band is returned locally. No answers are transmitted.
Trend charts (Pro) are rendered from your local journal using Apple's Swift Charts framework. No analytics events are transmitted.
Therapist PDF report (Pro) is generated on-device. The resulting file is saved only to your chosen destination (Files, Mail, AirDrop, etc.); PanicLog does not send it anywhere.
Breathing exercise animations and haptics run locally. They work fully offline — you can use them in airplane mode or a subway tunnel during a panic episode.
Daily check-in reminders are scheduled via Apple's UserNotifications framework and fire locally on your device. No remote push servers are involved.
App Lock (Pro) uses Apple's LocalAuthentication framework. Your Face ID or Touch ID biometric data never leaves Apple's Secure Enclave; the app only receives a success or failure signal.

5. Subscriptions and StoreKit

PanicLog offers an optional Pro subscription via Apple's StoreKit 2. When you subscribe, restore a purchase, or when the app verifies your entitlement, your device communicates directly with Apple's servers. PanicLog receives only the entitlement status (active or inactive) and a purchase identifier. We do not see your Apple ID, payment method, billing address, or transaction history. Apple's handling of subscription information is governed by Apple's Privacy Policy.

6. Permissions the app requests

Notifications — only after you enable the daily check-in reminder.
Face ID — only after you enable App Lock in Settings (Pro).

PanicLog does not request Camera, Photo Library, Microphone, Location, Contacts, Calendar, Health, or Bluetooth permissions. It has no reason to. You can revoke Notifications or Face ID at any time in iOS Settings > PanicLog.

7. Children's privacy

PanicLog is not directed to children under 13. We do not knowingly collect any information from anyone, including children. The app's age rating reflects this.

8. Data retention and deletion

Because all data is stored only on your device, you control retention completely. To delete all journal data, use Settings > Delete All Data inside the app, or delete the app from your device. There is no remote copy for us to delete.

9. Mental health data sensitivity

We recognize that panic episodes, CBT thought records, and anxiety histories are among the most sensitive personal data imaginable. The design of this app reflects that: no account, no cloud, no AI, no analytics, immediate app-lock on background (Pro), and widget text that never displays the words "panic" or "attack" on your home screen where others might see it. If the app ever introduces a feature that would change how data is handled — for example, an opt-in cloud backup — we will update this policy and surface the change in the app before you can use that feature.

10. International users

The app does not transfer your data internationally because it does not transfer your data anywhere. The app is published in English and is primarily marketed in North America.

11. Changes to this policy

If we ever change how the app handles data, we will update this policy and surface the change in the app before you can use that feature. The "Last updated" date at the top of this page reflects the most recent revision.

12. Crisis resources

PanicLog is a self-help journaling tool, not a medical device, and does not provide diagnosis or treatment. If you are in crisis or experiencing thoughts of self-harm, please contact the 988 Suicide and Crisis Lifeline (call or text 988 in the US), the Crisis Text Line (text HOME to 741741), or emergency services (911). These resources are also always accessible from Settings inside the app.

13. Contact

Privacy questions: captainlongevity@gmail.com