Privacy Policy

Last updated: June 29, 2026

In short.Neshama has no accounts, no login, and no email collection. Most of what you create stays on your device. To run the App we use a small number of standard services: subscriptions, app analytics, the AI learning companion, and advertising measurement. You decide whether to allow ad tracking through Apple's system prompt, and you can change your mind at any time.

Who we are

Neshama (the "App") is an independent app operated from Israel. We are the party responsible for the personal data described here (the "controller"). For any privacy question or request: support@getneshama.com.

What stays on your device

Most of what you create in the App is stored only on your device and is never sent to us. This includes your conversation history with the AI learning companion, your progress through Tehillim, the daily prayers and the Bible, your streaks, highlights, favorites, commitments, and your preferences (name, age, gender, prayer nusach, language, theme, and notifications). Your name in particular is used only on your device, for example to personalize a greeting, and is not sent to us or to any third party. All of this on-device data is removed when you uninstall the App.

What we collect and share

When the App connects to the internet, a limited amount of data leaves your device. We never collect your name or email, and we do not ask you to create an account. Instead, the App is associated with a random, anonymous identifier generated on your device. The sections below describe each flow.

Subscriptions and purchases

Subscriptions are processed by Apple's App Store, and your subscription status is managed for us by RevenueCat. RevenueCat receives the anonymous identifier, your subscription and entitlement status, and a set of non-identifying attributes: app language, gender, age range, prayer nusach, your onboarding intentions, app version, and install date. It also receives device and advertising identifiers used for the measurement described below. Your payment details (card or bank information) are handled by Apple and are never seen by us.

App analytics

We use PostHog to understand how the App is used so we can fix problems and improve features. PostHog records events such as which screens are opened, which features are used, completions, and purchase steps, together with the same non-identifying attributes listed above and basic device information. PostHog does not receive your name, the text of your AI conversations, or any screen recording. Analytics events are linked only to the anonymous identifier.

AI learning companion

When you use the AI learning companion, the messages you send and the conversation context are transmitted from your device to a secure proxy server we operate, which forwards them to OpenAI's API to generate a reply. Per OpenAI's policy, this content is not used to train their models, and may be retained by OpenAI for a limited period (up to about 30 days) for abuse monitoring only. Our proxy does not store your messages, and we do not keep a copy of your conversations on our servers. The conversation history is saved only on your device. Because the AI may receive whatever you type, please avoid sharing highly sensitive personal information in chat. For details, see OpenAI's Privacy Policy.

Advertising measurement

Like most apps, we measure whether our ads work. With your permission, the App uses advertising tools from TikTok and Meta (Facebook) to attribute app installs and subscriptions to the campaigns that led to them. For this measurement, device and advertising identifiers and conversion events (such as a completed purchase) are shared with TikTok and with Meta. Some purchase events reach Meta through RevenueCat on our behalf rather than directly from the App. This measurement only happens after you allow tracking through Apple's App Tracking Transparency (ATT) prompt. If you decline, the App does not access your advertising identifier (IDFA) and attribution is limited to coarse, non-personal methods. You can change your choice at any time in your device settings under Privacy and Security.

Identifiers

The App uses a random anonymous identifier created on your device, standard device identifiers, and, only after you allow tracking, the advertising identifier (IDFA). None of these contain your name or email, and the anonymous identifier is regenerated if you reinstall the App.

Information that can reveal religious belief

Some of the attributes we process, in particular your prayer nusach, your stated intentions, and the combination of gender and age, can indicate aspects of religious practice and are treated as sensitive. We process them only to personalize your experience and to measure and improve the App, and they are tied to the anonymous identifier rather than to your identity. None of this is required to read Tehillim or use the core App, and you can decline advertising tracking through the ATT prompt.

Third-party services

The companies below process some data as described above. Each has its own privacy policy:

Your rights

Under Israel's Privacy Protection Law and the EU General Data Protection Regulation (GDPR), you have the right to access the data we hold about you, correct it, delete it, restrict or object to its processing, withdraw consent, request portability, and lodge a complaint with a supervisory authority. Because the App has no account, much of your data lives only on your device and you can delete it directly by clearing it in the App or by uninstalling. For data held by our service providers, the records are tied to the anonymous identifier, so to act on a request we may ask you to provide that identifier or your purchase details so we can locate the data. To exercise any right, contact support@getneshama.com.

California privacy rights

If you are a California resident, the CCPA (as amended by the CPRA) gives you the right to know what personal information we collect, to access and delete it, to correct it, and to limit the use of sensitive personal information. We collect the categories described above: identifiers, commercial (subscription) information, app activity, and inferences. We do not sell your personal information.Our use of advertising measurement tools may be considered "sharing" for cross-context behavioral advertising. You can opt out of that sharing by declining the App Tracking Transparency prompt or turning tracking off in your device settings. We will not discriminate against you for exercising any of these rights.

Children

The App is intended for users age 16 and older. We do not knowingly collect personal information from children under 16. If you believe a child has provided us with personal information, contact support@getneshama.com and we will delete it.

International transfers

Our service providers (such as OpenAI, PostHog, RevenueCat, TikTok, and Meta) operate from the United States and other countries, so some data is transferred outside Israel and the EU. Such transfers rely on safeguards including Standard Contractual Clauses (SCCs) and the EU's adequacy decision for Israel.

Data retention

On-device data stays on your device until you delete it or uninstall the App. Subscription and analytics records are kept by our service providers for as long as needed for the purposes described here and to meet legal obligations such as tax and accounting rules, after which they are deleted or anonymized. AI chat content is retained by OpenAI only for the limited period described in its policy.

Security

All communication with our servers and service providers is encrypted in transit via HTTPS. On-device data is protected by your device's operating system. No method of transmission or storage is perfectly secure, but we take reasonable measures to protect your information.

Changes

We may update this policy from time to time. Material changes will be surfaced inside the App, and the "last updated" date above will change.

Contact

For any question, or to reach the Israeli Privacy Protection Authority or your local supervisory authority, start with us at support@getneshama.com.