ariel / privacy

privacy policy

last updated 12 may 2026

ariel is an invite-only iOS app run as a personal project, not a commercial service. we collect the bare minimum needed for the app to work, store it on our own infrastructure, and never sell or share it. this page explains exactly what we collect, why, and how to get rid of it.

1. who runs ariel

ariel is operated by an individual (the "host") reachable at ariel@yaytso.art. this address is the data controller for any data the app collects. there is no company and no third-party processor handling your data beyond what's named below.

2. what we collect

  • apple identifier (sub) — when you tap "sign in with apple," apple gives us an opaque user identifier called the "sub". this is how we recognise you across sign-ins. we never see your apple id email unless you choose to share it.
  • display name — optional. apple only shares your name the very first time you sign in, and only if you allow it.
  • content you create — posts, comments, reactions, rsvps, check-ins, stories, direct messages, and any photos or short videos you upload.
  • push notification token — apple gives our server an opaque token for your specific device when you allow push notifications. we use it only to send the alerts you've opted into.
  • notification preferences — your per-category toggles in settings.
  • approximate location — only when you tap "check in" on an event and grant location permission. we store the lat/lng of the check-in alongside the check-in record. we do not track location in the background.
  • no analytics, no ads, no tracking — we don't use third-party analytics. we don't run advertising. we don't have a tracking pixel.

3. where it lives

all of the above is stored on cloudflare. specifically: account / message / event records in cloudflare d1 (a managed sqlite database), photos and videos in cloudflare r2 (object storage). a small in-app cache stores message rows and image thumbnails on your device so the app works without flashing blank states. push notifications are delivered through apple's push notification service (apns).

4. how we use it

strictly to operate the app: showing you content from the host and other invited people, delivering messages and notifications you've opted into, attributing your posts/comments to your account, and rendering check-in info. that's it. we don't profile you, build advertising audiences, or share your data with anyone except as required to deliver the service (apple's push service to send a notification you opted into; cloudflare as our hosting provider).

5. retention & deletion

content persists as long as you have an account. stories are auto-deleted (rows + media) 24 hours after creation by a scheduled job. you can:

  • edit or delete your own posts, comments, and messages at any time from inside the app.
  • cancel rsvps and check-ins from the event detail screen.
  • request full account deletion at any time by emailing ariel@yaytso.art from the apple id associated with your account. we'll remove your user record, every piece of content you created, all uploaded media, and the push token within 30 days.

6. children

ariel is not directed to children under 13 and we do not knowingly collect data from them. if you believe a child has provided us data, email us and we'll delete it.

7. security

traffic is over https. session tokens are stored in the ios keychain, scoped to the device. the push key and database access credentials live in cloudflare's secret store and are not accessible from client code. we make no guarantees beyond what cloudflare and apple themselves provide.

8. your rights

if you are in the eu, uk, or california you have rights of access, correction, and deletion under gdpr / ccpa. exercise any of them by emailing ariel@yaytso.art. we are a single-person operation; please be patient.

9. changes to this policy

if we change anything material, we'll update the "last updated" date at the top and, where practical, notify you in-app.

10. contact

questions? ariel@yaytso.art.