芽芽 Sprout

隐私政策

生效日期:2026-06-12 · 适用应用:芽芽 Sprout(iOS)

一句话概括:芽芽是给孩子用的习惯养成 App。无账号、无第三方追踪,开发者无法访问您或孩子的任何数据。所有数据默认仅保存在设备本地;未来若开启 iCloud 同步(可随时关闭),数据只会同步到您自己的 iCloud 私有数据库,由 Apple 加密管理,开发者依然无法访问。

1. 我们的核心立场

芽芽是一款面向 6–14 岁孩子的习惯养成应用。我们在设计之初就坚持「隐私优先」,对儿童数据尤为审慎:

  • 无账号、无登录、无注册——使用芽芽不需要提供姓名、手机号、邮箱等任何身份信息。
  • 无开发者服务器——App 不向开发者的任何服务器收集或传输数据。
  • 无第三方 SDK——没有分析(Analytics)、没有广告、没有崩溃上报、没有追踪,也不集成 Firebase、Sentry 或任何第三方服务。
  • 开发者无法访问您的数据——我们没有服务器来接收数据,因此即便我们想,也无从获取。

2. 我们收集哪些数据

我们不收集任何个人数据。包括但不限于:姓名、邮箱、电话、位置、设备标识符、广告标识符、通讯录、相册、使用行为等——一概不收集。孩子在档案里填写的昵称与选择的头像(emoji)仅保存在本机,用于在 App 内显示,从不上传。

3. 您的数据存储在哪里

孩子使用芽芽过程中产生的所有数据,全部仅保存在您的本地设备上(通过设备内置的本地数据库存储),包括:

  • 孩子档案(昵称、头像 emoji、年龄段)
  • 习惯与每日打卡记录
  • 阳光账本(积分流水)、奖励与兑换记录
  • 徽章成就、连续天数、护芽卡等
  • 应用设置(主题、语言、提醒时间等)

这些数据默认仅保存在本地设备,从不上传到开发者或任何第三方服务器。卸载 App 会删除本地数据,请注意先用「数据导出」备份(见第 7 节)。

4. 家长密码与 Face ID

家长模式用 4 位密码保护。密码不以明文存储:仅将「加盐后的哈希值(SHA-256)」保存在设备的安全区 Keychain,且仅限本设备、不随 iCloud 钥匙串同步。我们无法、也无从还原您的密码。

若您开启 Face ID / Touch ID 作为便捷验证,识别完全由设备的 LocalAuthentication 在本地完成,生物特征数据由系统安全管理、从不离开设备,App 只会收到「成功 / 失败」的结果,识别失败一律回退到手输密码。

5. 内购与支付

芽芽提供一次性「永久版」内购(商品标识:com.bytelink.sprout.lifetime)。该交易完全由 Apple 通过 App Store 与 StoreKit 处理。

  • 我们不接触、不收集、也不存储您的任何支付信息(如银行卡号、Apple ID 等)。
  • 购买凭证的校验由 Apple 处理或在设备本地完成。
  • 退款请求依据 Apple 的退款政策处理(通常为 7 天内可申请)。

6. 本地通知

若您为习惯开启每日提醒,相关通知由您的设备本地调度与发送,不经过任何服务器。您可随时在系统「设置」中关闭通知权限。

7. 数据导出与导入

芽芽支持把全部数据导出为一个 JSON 备份文件,以及从备份恢复。导出由您主动发起,文件保存到您自己选择的位置(如「文件」App / iCloud Drive),不经过开发者。该文件由您自行保管,请勿分享给不信任的第三方。

8. 儿童隐私(重点)

芽芽专为儿童设计,我们高度重视儿童隐私,并遵循 COPPA、GDPR-K 等相关法规的精神:

  • 不收集儿童的任何个人信息——由于我们对所有用户都零收集,自然不存在收集儿童数据的情形。
  • 无广告、无第三方追踪、无外部链接诱导——孩子在 App 内不会被投放广告或被第三方追踪。
  • 家长掌控——建立档案、审批打卡与兑换、设置等关键操作均在受密码保护的家长模式下进行。

我们建议家长陪同或监督孩子使用,并妥善保管家长密码。

9. iCloud 同步(即将上线)

后续版本将支持通过 iCloud 在您自己的设备间同步数据。届时同步使用 Apple 的 CloudKit 私有数据库:数据只存于您自己的 iCloud 账户,由 Apple 加密管理,开发者没有服务器、无法读取或访问。同步为可选项,可随时关闭;关闭后数据仅保留在本地设备。

10. 政策变更

我们可能会不时更新本隐私政策。任何变更都将发布在本页面,并更新顶部的「生效日期」。重大变更我们会尽可能在 App 内提示。

11. 联系我们

如对本隐私政策有任何疑问,请联系:

← 返回首页

Privacy Policy

Effective Date: 2026-06-12 · Applies to: Sprout (iOS)

In one sentence: Sprout is a habit-building app for kids. It has no account and no third-party tracking; the developer cannot access any of your or your child's data. All data is stored locally by default; if iCloud sync is enabled later (you can turn it off anytime), it syncs only to your own private iCloud database, encrypted and managed by Apple — the developer still cannot access it.

1. Our Core Position

Sprout is a habit-building app for children aged 6–14. It was built privacy-first from day one, with particular care for children's data:

  • No account, no login, no registration — using Sprout requires no name, phone number, email, or any identity information.
  • No developer servers — the app collects or transmits no data to any developer server.
  • No third-party SDKs — no analytics, no ads, no crash reporting, no tracking, and no Firebase, Sentry, or any other third-party service.
  • The developer cannot access your data — there is no server to receive it, so even if we wanted to, we could not.

2. What Data We Collect

We collect no personal data whatsoever. This includes, without limitation: name, email, phone, location, device identifiers, advertising identifiers, contacts, photos, and usage behavior — none of it is collected. The nickname a child types and the avatar (emoji) they pick are stored only on the device for in-app display and are never uploaded.

3. Where Your Data Is Stored

All data generated while using Sprout is stored solely on your local device (in the device's built-in local database), including:

  • Child profile (nickname, avatar emoji, age band)
  • Habits and daily check-in records
  • The sunshine ledger (points history), rewards, and redemptions
  • Badges, streaks, streak shields, and so on
  • App settings (theme, language, reminder times, etc.)

This data stays on your local device by default and is never uploaded to the developer or any third party. Uninstalling the app deletes local data, so please back up first using "Export Data" (see Section 7).

4. Parent Passcode & Face ID

Parent mode is protected by a 4-digit passcode. The passcode is not stored in plaintext: only a salted hash (SHA-256) is kept in the device's secure Keychain, scoped to this device only and never synced via iCloud Keychain. We cannot and have no way to recover your passcode.

If you enable Face ID / Touch ID for convenience, recognition happens entirely on-device via the system's LocalAuthentication; biometric data is managed by the system's secure enclave and never leaves the device. The app only receives a success/failure result, and any failure falls back to manual passcode entry.

5. In-App Purchases & Payments

Sprout offers a one-time "Lifetime" in-app purchase (product identifier: com.bytelink.sprout.lifetime). This transaction is handled entirely by Apple through the App Store and StoreKit.

  • We do not touch, collect, or store any of your payment information (such as card numbers or Apple ID).
  • Purchase receipts are validated by Apple or on your device.
  • Refund requests are governed by Apple's refund policy (typically available within 7 days).

6. Local Notifications

If you enable daily reminders for a habit, those notifications are scheduled and delivered locally by your device and never pass through any server. You can disable notification permission anytime in system Settings.

7. Data Export & Import

Sprout lets you export all your data to a single JSON backup file and restore from one. Export is initiated by you, and the file is saved to a location you choose (e.g., the Files app / iCloud Drive), never through the developer. You are responsible for keeping this file safe; do not share it with untrusted parties.

8. Children's Privacy (Important)

Sprout is built for children, and we take children's privacy seriously, consistent with the spirit of COPPA, GDPR-K, and related regulations:

  • We collect no personal information from children — since we collect nothing from any user, no children's data is ever collected.
  • No ads, no third-party tracking, no link-out enticements — children are not shown ads or tracked by third parties within the app.
  • Parental control — key actions (creating a profile, approving check-ins and redemptions, settings) take place in a passcode-protected parent mode.

We recommend that a parent accompany or supervise the child's use and keep the parent passcode safe.

9. iCloud Sync (Coming Soon)

A future version will support syncing data across your own devices via iCloud. Sync will use Apple's CloudKit private database: data lives only in your own iCloud account, encrypted and managed by Apple — the developer has no server and cannot read or access it. Sync is optional and can be turned off anytime; with it off, data stays only on your local device.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated "Effective Date" above. For material changes we will try to notify you within the app.

11. Contact Us

If you have any questions about this Privacy Policy, please contact:

← Back to Home

芽芽 Sprout · 由 ByteLink 开发 Sprout · Developed by ByteLink