Privacy Policy
Effective: May 10, 2026
This Privacy Policy explains what data Watch Assistant (the "App") handles, how it's used, and the choices you have. "We", "us", and "our" refer to the operator of the App. We do not sell your personal information.
1. Data we process
Voice queries. When you ask the assistant a question, your audio is sent to our backend, transcribed via a third-party speech-to-text provider, and forwarded to a large-language-model provider (OpenAI) to generate the reply. The audio is processed transiently and is not retained on our servers after the response is returned. Transcribed text is logged only for short-term abuse prevention and rate-limiting and is purged automatically within 30 days.
Conversation history. Your conversations are stored locally on your Apple Watch and (when paired) your iPhone. We do not store the contents of your conversations on our servers. If you enable iCloud sync on your device, your conversations may be replicated through your personal iCloud account, which is governed by Apple's privacy practices.
Location. When you ask a location-aware question (e.g. nearby places), the App requests a single coarse-grained fix from Core Location and stops the GPS radio immediately afterward. Coordinates are sent only to the providers that need them to answer your question (the places-search backend) and are not retained.
Microphone & speech. The microphone is used only while you are actively recording a query. Audio is not recorded otherwise and never leaves the device for any purpose other than answering the query you initiated.
Subscription state. We use RevenueCat to manage subscriptions and entitlements. RevenueCat receives a stable anonymous identifier plus your purchase events. We do not transmit your name or email to RevenueCat.
Diagnostics. The Watch Assistant app on your Apple Watch and iPhone does not run third-party analytics or tracking SDKs. Crash reports are received only when you have opted into Apple's "Share With App Developers" setting, in which case Apple delivers anonymized crash logs.
Marketing website analytics. This marketing website (aly.watch) — which is separate from the Watch Assistant app — uses Google Analytics 4 to measure aggregate page views and traffic sources, only after you grant consent in the cookie banner. The full disclosure is in the "Cookies and analytics" section below.
2. What we do NOT collect
- Your name, email, phone number, or any other identifier you have not explicitly provided.
- Contacts, photos, calendars, reminders, or media libraries unless you grant the relevant permission and use the corresponding feature; in that case the data is read on-device only and not transmitted to us.
- Advertising identifiers. We do not show ads, do not run ad networks, and do not profile you for advertising.
3. How information is used
We use the limited data described above only to (a) answer the queries you make, (b) operate, secure, and rate-limit the service, (c) process subscription purchases, and (d) comply with legal obligations.
4. Sharing with third parties
The App's functionality depends on the following sub-processors:
- OpenAI — generates AI replies.
- A places-search provider — used when you ask about nearby locations.
- RevenueCat — subscription billing and entitlement.
- Vercel — hosts the App's backend.
We do not sell or share your personal information for cross-context behavioral advertising. Sub-processors handle data only as needed to deliver the requested service and under their own privacy practices.
5. Data retention
Conversation history is kept on your device for as long as you keep it; you can delete individual conversations or clear all history from inside the App at any time. Backend logs (transcripts and request metadata used for abuse prevention) are purged within 30 days. Subscription receipts are retained as required by Apple's StoreKit and applicable tax law.
6. Children
Watch Assistant is not directed at children under 13 (or the minimum age in your jurisdiction). We do not knowingly collect information from children. If you believe a child has provided us with information, contact us and we will delete it.
7. Your rights
Depending on where you live (e.g. EEA, UK, California), you may have the right to access, correct, port, or delete the personal data we hold about you, and to object to or restrict certain processing. Most of your data lives on your device — you can delete it directly from the App. To exercise rights regarding backend data, contact us at the address below.
8. International transfers
Our backend is hosted in regions operated by Vercel; AI inference is performed by OpenAI in regions chosen for capacity and availability. Where personal data is transferred internationally, we rely on the relevant safeguards published by those providers (Standard Contractual Clauses, Data Privacy Framework, or equivalent).
9. Security
We use TLS for all network traffic, scoped API tokens for backend access, and Apple's keychain / App Group containers for on-device storage. No system is perfectly secure; we cannot guarantee absolute protection.
10. Changes to this Policy
We may update this Policy from time to time. Material changes will be reflected by an updated "Effective" date and, where appropriate, an in-app notice.
11. Contact
hello@aly.watch12. Cookies and analytics (website only)
This section describes cookies and similar storage used on the marketing website at aly.watch. It does not apply to the Watch Assistant app, which uses no analytics or tracking SDKs.
Processor. The website uses Google Analytics 4, operated by Google LLC, with measurement ID G-MEPW…. Google acts as our processor for aggregated, IP-pseudonymized website measurement.
Cookies set after consent. When (and only when) you accept analytics in the cookie banner, the following first-party cookies are written by Google Analytics on this domain:
_ga— Google's client identifier. Default retention: 2 years from last update._ga_MEPWRCLTTN— GA4 session/state cookie tied to our property. Default retention: 2 years from last update.
The retentions above are Google's defaults; we have not overridden them. Both cookies are first-party and are not shared with third-party advertising networks. We do not run any advertising, remarketing, or cross-site tracking cookies.
Lawful basis. We rely on your explicit, opt-in consent under Article 6(1)(a) GDPR (and the equivalent ePrivacy / PECR rule for cookie storage). No analytics cookies are set until you have actively chosen "Accept" in the banner. You can withdraw consent at any time via the "Cookie preferences" link in the page footer; withdrawal causes Google Consent Mode v2 to switch analytics_storage to denied, after which no further analytics cookies will be set in your browser.
Consent record (strictly necessary). To remember your choice across visits, we store a small JSON record in your browser's localStorage under the key wa_consent_v1 (shape: { analytics: boolean, timestamp: ISO-8601, version: 1 }). This record is the evidence of your consent decision itself and is therefore considered "strictly necessary" under Article 5(3) of the ePrivacy Directive — it is created whether you accept or reject and is never sent to any server. Clearing your browser's site data will erase this record and the banner will reappear on your next visit.
Data flow. If you have granted consent, Google Analytics sends aggregated, IP-pseudonymized event data (page URL, referrer, screen size, approximate region derived from a truncated IP, anonymous client ID) to Google's servers in the EU/US over Google's standard infrastructure. anonymize_ip is enabled. We do not intentionally transmit names, email addresses, account identifiers, or the contents of any form to Google.
Withdrawing or changing your choice. Click Cookie preferences in the page footer at any time to re-open the banner with your current setting pre-selected. Saving a new choice takes effect immediately for the current session.
This section is effective from the policy date above.