LifeStory Privacy Policy

Last Updated: February 17, 2026

1. Our Commitment to Privacy LifeStory is designed for families navigating dementia and memory loss. We recognize the extreme sensitivity of your personal memories. Our app is built on a "Privacy-First" architecture: we do not require your name, email address, or phone number to use the service.

2. Data We Do Not Collect (Anonymous-First)

  • No Contact Info: We do not collect, store, or share your email address, phone number, or physical address.

  • No Tracking: We do not track your activity across other companies’ apps or websites. We do not sell any data to third parties or advertising platforms.

3. How Your Content is Managed

  • Local Storage: LifeStory operates on a Local-First model. All photos, audio, and text ('User Content') are stored directly on your device's internal storage. Steps Consulting Ltd has no technical means to access, copy, or delete this local data.

  • Optional Cloud Sync: If you choose to sync your stories across your permitted devices (up to 3), your data is End-to-End Encrypted (E2EE) before it leaves your device. If you choose to enable 'Cloud Sync', an encrypted copy is uploaded to our secure servers solely for multi-device synchronization. Deleting the Cloud Sync data does not affect the content stored on your primary device. Clicking 'Delete Cloud Data' will permanently and immediately erase all encrypted content from our central servers, terminating multi-device synchronization. This fulfils the ‘Request Account Deletion’ requirement.

  • Zero Access Storage: We use Microsoft Azure BLOB storage to host your encrypted files. Because the encryption keys remain on your devices, LifeStory personnel cannot view your photos, read your text, or listen to your recordings. We provide the "vault," but you hold the only key.

4. Service Providers & Analytics: To provide and improve the service, we use a limited number of privacy-focused third-party tools:

  • RevenueCat: We use an anonymous token to manage your subscription status across your devices without an email login. This token is not linked to your personal identity.

  • TelemetryDeck: We collect anonymous usage data (e.g., "puzzles completed") and crash reports to improve app performance. TelemetryDeck uses double-hashed identifiers; it does not collect Personal Identifiable Information (PII) and cannot link usage to a specific individual.TelemetryDeck and RevenueCat never receive LifeStory content (photos/ audio).

  • Apple: All in-app purchases are processed by Apple. We do not see or store your credit card or financial details.

4.1. While TelemetryDeck uses unlinked hashed IDs, RevenueCat utilizes an anonymous App User ID to manage your subscription status. This ID is classified as a 'User Identifier' for the purpose of App Store Functionality but is not linked to your real-world identity by Steps Consulting Ltd.

4.2. Data Controller Roles: For the purposes of global data protection laws (including GDPR and CCPA), Steps Consulting Ltd is the "Data Controller" for all functional data and "LifeStory Content" (photos, audio, and text) processed within the App.

While third-party platforms—specifically Apple (App Store), Google (Play Store), and Paddle.com—act as the "Merchant of Record" and independent Data Controllers for your billing and payment information, they do not have access to your LifeStory Content. Steps Consulting Ltd remains your primary point of contact for exercising your privacy rights, including data access, portability, or erasure requests regarding the App’s core functionality.

5. Data Retention & Deletion

  • User Control: You can delete your local data at any time by deleting the app from your device.

  • Cloud Cleanup: Encrypted data stored for synchronization is automatically purged from our servers after 90 days of subscription inactivity to ensure your privacy is protected.

6. Support & Targeted Data Sharing (QR Codes) LifeStory provides optional features that utilize QR codes to streamline the user experience:

  • Technical Support & Debugging: In the event of a technical issue, a user may voluntarily generate and share a diagnostic QR code with LifeStory support.

  • Consent: By generating and sharing a QR code, you provide explicit, one-time consent for the data contained within or linked to that code to be accessed for the specific purpose of support or content creation. LifeStory does not use this data for any other purpose and will delete any shared diagnostic files once the support ticket is resolved.

7. Contact Us As we do not collect your email address, for any privacy-related inquiries, please contact us via our website support portal at: https://www.steps.uk/dementia/contactus


Appendix A: Apple App Store Supplemental Privacy Disclosures

  1. Data Controller: For the purposes of providing the LifeStory app on iOS/iPadOS, Steps Consulting Ltd is the Data Controller. Apple Inc. acts as a processor for transaction data.

  2. App Tracking Transparency (ATT): LifeStory does not track users across third-party apps or websites and does not use the IDFA (Identifier for Advertisers). Therefore, no ATT prompt is required.

  3. iCloud & Synchronization: While LifeStory uses E2EE for synchronization, if you utilize Apple’s standard device backup (iCloud), your local app data is backed up according to your personal iCloud settings.

  4. HealthKit & Clinical Data: LifeStory does not integrate with Apple HealthKit. No clinical or health-specific data is harvested from the device’s sensors.

Appendix B: Google Play Store Supplemental Privacy Disclosures

  1. Data Safety Declaration: In accordance with Google Play's Data Safety section, LifeStory declares the collection of "Photos," "Audio," and "Files" solely for the purpose of App Functionality and Syncing.

  2. Encryption in Transit: All data uploaded for multi-device synchronization is encrypted using industry-standard protocols (HTTPS/TLS) before leaving the Android device.

  3. Google Play Billing: Google is the sole controller of payment data for purchases made via the Play Store. Steps Consulting Ltd receives only a masked "Purchase Token" via RevenueCat to verify subscription status.

Appendix C: Paddle (Web Merchant) Supplemental Privacy Disclosures

  1. Independent Data Controller: When purchasing outside of an app store, Paddle.com acts as an independent Data Controller for the purpose of fraud prevention and tax compliance.

  2. Information Shared with Steps Consulting Ltd: Paddle shares the following with us: Transaction ID, Date of Purchase, and Country of Residence (for tax auditing). We do not receive your full credit card number or bank details.

Cross-Platform Provisioning: Your Paddle transaction ID is linked to an anonymous RevenueCat ID. This allows you to unlock "Premium" features on your Apple or Google devices without needing to provide an email address.