SleepFlow is committed to protecting your privacy
Este documento está disponible solo en inglés.
Controlling Language: This Privacy Policy is written in English. Any translation is provided for convenience only. In the event of any conflict or inconsistency between the English version and a translation, the English version shall govern.
This Privacy Policy explains how SleepFlow ("we," "us," or "the App") collects, uses, stores, shares, and protects your personal information. Please read this Policy carefully and in full before using the App.
Important: SleepFlow is a white noise / ambient sound playback and AI audio generation app intended for sleep assistance. It is NOT a medical device and does not provide any medical diagnosis, treatment, or health advice.
We follow a "data minimization" principle and only collect information necessary to provide the Service.
Sign in with Apple: If you choose to sign in with Apple, Apple provides us with an anonymized, app-scoped user identifier. We do not receive or store your Apple ID, real name, or email address — unless you actively choose to share your real email during the Apple sign-in flow, in which case we receive that email.
When you use the App or the AI audio generation feature, we may automatically record:
We do NOT collect: precise location, contacts, photo library, microphone recordings, or health data. The App does not record your voice.
We will not use your information for personalized advertising or sell your information to anyone.
When you use AI audio generation, your input text is processed through the following flow, which you should be aware of:
This means your prompt text (after translation) is transmitted to AI and storage services located in the United States. We require all third-party processors to keep your information confidential and secure; however, privacy protection standards may differ between countries/regions.
We do not manually review the content you enter, except to troubleshoot technical issues or where required by law or competent authorities.
We do not sell your personal information to any third party. We only share information in the following circumstances:
We use the following third parties to provide the Service. They process information necessary for the purposes described in this Policy:
| Provider | Purpose | Location |
|---|---|---|
| Apple Inc. | Sign in with Apple; in-app purchase and subscription billing | United States |
| RevenueCat, Inc. | Subscription status management (anonymous identifier and subscription credentials only) | United States |
| ElevenLabs | AI audio model generation (receives translated prompt text) | United States |
| Cloudflare, Inc. | Backend hosting, database, prompt translation (Workers AI), and audio file storage (R2) | United States |
Each provider has its own privacy policy. We are not responsible for how they use your information under their own policies.
To comply with laws and regulations, respond to lawful requests from competent authorities, and protect our rights and the public interest, we may disclose your information to the extent necessary.
In the event of a merger, acquisition, or asset transfer, your information may be transferred as an asset; we will notify you via in-app notice or other reasonable means.
Because our Service relies on providers located in the United States (ElevenLabs, RevenueCat, Cloudflare, Apple), some of your personal information — primarily AI audio generation prompts, your anonymous identifier, and subscription credentials — will be transferred to, and processed in, the United States.
If you are located outside the United States, please be aware that the data protection laws of the United States may differ from those of your country or region. By using the AI audio generation and other features that require such transfer, you consent to the transfer and processing of your information in the United States as described in this Policy.
For users in the European Union, the United Kingdom, and California, please see the "Your Rights" section below for additional protections.
Your information is primarily stored on the U.S.-based servers of the providers listed above.
We take reasonable technical and organizational measures (such as HTTPS encryption in transit and access controls) to protect your information. However, no internet transmission is fully secure, and we cannot guarantee 100% security. In the event of a personal data security incident, we will notify you as required by applicable law.
The App is not directed to children under 13, and we do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with information, please contact us and we will delete it.
Depending on applicable law, you may have the following rights:
To exercise these rights, contact us using the details at the end of this Policy. We will respond within a reasonable period (generally no more than 30 days).
If you are located in the European Union or the United Kingdom, under the GDPR you additionally have the right to object to certain processing, restrict processing, lodge a complaint with your local data protection authority, and request that your data be transferred to another controller. The legal bases on which we process your information are: performance of a contract (providing the Service), consent, and legitimate interests. International transfers rely on Standard Contractual Clauses (SCCs) or other appropriate safeguards.
If you are a California resident, under the CCPA/CPRA you have the right to know what personal information we collect, request deletion, opt out of the "sale" or "sharing" of your personal information, and not be discriminated against for exercising these rights. We do not sell or share your personal information as those terms are defined by California law. To submit a request, contact us using the details below.
We do not sell or share your personal information for cross-context behavioral advertising. No opt-out is necessary; we do not engage in these practices.
The App (mobile) does not use browser cookies itself. Backend services may use necessary logs and anonymous technical metrics for security and reliability, and do not use them for cross-app tracking.
The App may contain links to third parties (such as Apple, ElevenLabs). We are not responsible for the content or privacy practices of third parties; please review their respective privacy policies.
We may update this Policy from time to time. When we do, we will provide the revised Policy in the App or on this page and update the "Effective date" at the top. In the case of material changes, we will notify you through reasonable means (such as an in-app notice).
If you have any questions, suggestions, or complaints about this Policy or the protection of your personal information, please contact us:
We will process your request as soon as possible after receiving it.
This Policy was last updated on: June 22, 2026.
Thank you for trusting SleepFlow with your personal information.