Version: 26 March 2026
Katharina Syring, Holistic, Schlunkendorfer Straße 8, 14554 Seddiner See, Germany, e-mail: support@holistic-cloud.com, is the controller for the processing of personal data described in this Privacy Policy.
The app is provided under the name Holistic Cloud.
This Privacy Policy applies to the Holistic Cloud mobile application for iOS and Android, related account creation and login processes, in-app features, support communications, and subscriptions concluded through the Apple App Store or Google Play Store.
To keep the data processing transparent and consistent, this Privacy Policy is thematically structured and focused on Holistic Cloud app privacy.
Holistic Cloud is a guided system for personal growth and resilience across five dimensions: Physical, Mental, Emotional, Intuitive, and Existential. Core features include daily tracking, goals, insights, adaptive guidance, challenges, connection and sharing with selected users, weekly reviews, and annual reflection features such as Future Me.
When you download the app or purchase a subscription, the relevant store provider may process data such as your store account details, payment details, device information, and the time of the transaction. This processing takes place under the responsibility of the respective store provider.
We process account data required to create and manage your account, such as your name, e-mail address, password, login identifiers, and authentication-related metadata.
Login is available via e-mail and password, Sign in with Apple, and Google Sign-In. For e-mail and password login, we use our own secure backend with JWT-based session handling. For Google Sign-In, we use Google Sign-In together with Firebase Authentication. For Apple login, we use Apple's official Sign in with Apple framework.
We process profile information you provide or make visible in the app, such as your name, profile image, and other profile details you choose to add.
We process the content you create or store in Holistic Cloud, including habits, tracking entries, goals, progress data, next steps, challenge participation, weekly reviews, Future Me / annual reflection content, notes, values, passions, vision statements, and similar self-development content.
Registered users may be discoverable by other registered users within the app. Users can search for other registered users and send invitations to connect.
Sharing does not happen automatically. Selected tracking data, progress information, or challenge-related information is shared only with users chosen by you and according to the settings and actionsyou take.
Holistic Cloud is not presented as an open public social network. Connection and sharing features are designed for selected accountability relationships.
If you use challenges or accountability features, we process the related participation data, status information, and selected shared progress information in order to provide those features.
If you enable notifications on your device, we process your push token, notification preferences, and limited delivery-related data in order to send reminders, account-related notices, and relevant in-app updates. Push notifications are delivered through Firebase Cloud Messaging (FCM).
If you upload profile images or other user-uploaded content supported by the app, we process the uploaded files and related metadata. User-uploaded content is stored using Amazon Web Services S3 (AWSS3).
We process your e-mail address and message-related metadata to send transactional e-mails, security notices, and one-time passwords (OTPs) where required. We use Amazon Web Services SES (AWS SES) forthese communications.
We use Firebase Crashlytics to detect, diagnose, and fix crashes and stability issues. This may include technical diagnostic data such as app version, device model, operating system version, time of crash, and crash logs.
At the time of this version, we do not use analytics tools, advertising tracking, behavioral profiling, or advertising identifiers for analytics or marketing purposes in the Holistic Cloud app.
We process personal data primarily on the following legal bases under the GDPR:
Art. 6(1)(b) GDPR where processing is necessary to provide the app, create and manage your account, authenticate you, deliver purchased features, enable core functionality, respond to requests connected with a contract, and perform our contract with you.
Art. 6(1)(f) GDPR where processing is necessary for the security, integrity, availability, abuse prevention, technical administration, and improvement of the app, including crash diagnostics, servicestability, and secure app operation.
Art. 6(1)(c) GDPR where processing is necessary to comply with legal obligations, for example retention obligations under commercial or tax law.
Art. 6(1)(a) GDPR where consent is legally required for a specific processing activity.
If you voluntarily enter information in the app that reveals or may reveal particularly sensitive information about your physical, mental, or emotional condition in free-text fields or similar areas,we process that information only in order to provide the functionality you actively use and, where required by applicable law, on the basis of your explicit consent.
We use carefully selected service providers to operate Holistic Cloud. Depending on the feature you use, personal data may be processed by the following categories of recipients or processors:
Google / Firebase services for Firebase Authentication, Google Sign-In, Firebase Cloud Messaging, and Firebase Crashlytics.
Apple for Sign in with Apple and app distribution through the Apple App Store.
Amazon Web Services for storage of user-uploaded content (AWS S3) and transactional communications / OTP delivery (AWS SES).
Our hosting, infrastructure, and backend service providers to the extent necessary to operate our authentication system, APIs, and the app itself.
We do not sell personal data and we do not use personal data for third-party advertising.
Some of our service providers may process personal data outside the European Economic Area (EEA), in particular in the United States or with support access from outside the EEA.
For transfers to U.S.-based organizations, we rely, where applicable, on the European Commission's adequacy decision for organizations certified under the EU-U.S. Data Privacy Framework and/or on appropriate safeguards such as the European Commission's Standard Contractual Clauses.
Because the exact AWS entity and region setup may vary by configuration, transfers involving AWS services are carried out on the basis of the transfer mechanism applicable to the relevant AWS setup, such as an adequacy decision where available or Standard Contractual Clauses where required.
We keep personal data only for as long as it is needed for the purposes described in this Privacy Policy or as long as we are legally required to keep it.
Account data and user content are generally stored for the duration of your account and for a limited period afterwards where necessary for deletion handling, backups, fraud prevention, or legal defense.
Technical logs and crash diagnostics are retained only for as long as reasonably necessary for security, troubleshooting, and stability purposes.
Where statutory retention obligations apply, relevant data may be retained for the legally required period.
Subject to the conditions of applicable law, you have the right to request access to your personal data, rectification of inaccurate data, erasure, restriction of processing, data portability, and toobject to processing based on legitimate interests.
If processing is based on consent, you may withdraw your consent at any time with effect for the future.
You also have the right to lodge a complaint with a competent supervisory authority.
Holistic Cloud is not a medical device, therapy service, or crisis intervention service. The app is designed for self-development, reflection, accountability, and resilience support.
The app is not intended for children. If you believe that a minor has provided personal data in violation of applicable age requirements, please contact us.
We may update this Privacy Policy from time to time to reflect legal, technical, or product-related changes. The current version is made available in the app and/or through the applicable store listing or other in-app legal link.
Status: 26 March 2026