Back

Privacy Policy

Effective date: March 11, 2026 · Last updated: March 11, 2026

Pheme ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how Pheme handles your information when you use our iOS application.

1. Information We Do Not Collect

Pheme does not collect, store, or transmit any personal data to our servers. We do not operate any backend infrastructure that receives or processes your personal information. Specifically, we do not collect:

Your name, email address, or profile information
Your posts, messages, or any content you create
Your browsing or reading behavior within the app
Device identifiers or analytics data
Location data

2. Data Stored Locally on Your Device

Pheme stores the following data exclusively on your device:

Account credentials (OAuth tokens): Stored securely in the iOS Keychain. These tokens are used solely to authenticate requests to your Mastodon instance on your behalf.
Timeline cache: Recent posts are cached locally using SwiftData to enable fast loading and limited offline access. This data never leaves your device.
App preferences: Your settings (appearance, font, accent color, etc.) are stored in UserDefaults on your device.
Subscription status snapshot: A local snapshot of your Pheme Pro subscription status is stored in UserDefaults for quick access at launch. This is derived from Apple's StoreKit and does not involve our servers.

3. Communication with Mastodon Instances

When you use Pheme, the app communicates directly with the Mastodon instance you choose to log in to. This communication is governed by the privacy policy of that instance. Pheme acts solely as a client — we are not a relay and do not intercept or store any data exchanged between you and your instance.

4. In-App Purchases

Pheme Pro subscriptions are processed entirely through Apple's App Store and StoreKit framework. We do not receive or store your payment information. Apple's Privacy Policy governs the purchase transaction.

5. Third-Party Services

Pheme does not integrate any third-party analytics, advertising, or tracking SDKs. The only network requests made by the app are:

Requests to your chosen Mastodon instance (for timeline, notifications, and account actions)
Requests to Apple's StoreKit servers (for subscription verification)
Image loading from URLs included in posts (via the Kingfisher library, directly from the source)

6. Push Notifications

If you enable push notifications, Pheme uses Apple Push Notification service (APNs) to deliver notifications. Notification payloads are encrypted end-to-end between your Mastodon instance and your device. We do not operate a push relay server that can read notification contents.

7. Children's Privacy

Pheme is not directed at children under the age of 13. We do not knowingly collect information from children.

8. Changes to This Policy

We may update this Privacy Policy from time to time. The updated policy will be posted at this URL with a revised effective date. Continued use of the app after changes constitutes acceptance of the updated policy.

9. Contact

If you have any questions or concerns about this Privacy Policy, please contact us at:

moonagic@gmail.com