Honest about what leaves your phone.
pace is a social app. Some things you create, like your profile, your posts, and who you follow, live on our servers so we can deliver them to your audience. Other things, like your drink log and your HealthKit data, never leave your device. pace also shows ads to people who are not on Pace+. This page draws those lines clearly, in plain language.
Last updated: 2026-06-07
pace uses Sign in with Apple. We create a profile for you on our servers.
A post is two photos. We store and deliver them, then auto-delete after 24 hours.
Drinks, sessions, and ride plans live only on your iPhone. We never see them.
Sleep and heart rate are read on-device. They are never uploaded.
Free accounts see ads from Google AdMob, which can be personalized with your permission. Pace+ removes them. We never sell your data.
Delete your account and we remove your profile, posts, graph, and reactions.
What we collect and why
To run an account-based social app, some information has to reach our servers. We collect only what we need to give you a profile, deliver your posts, keep the community safe, and run the app.
Account and Apple identity. You sign in with Sign in with Apple. From Apple we may receive your name and an email address, and if you choose “Hide My Email,” that email is a private Apple relay address rather than your real one. We also store the account identifier tied to your sign-in. We use all of this to create, identify, and secure your account.
Profile. We store, on our servers, the profile you build: your username, your display name, an optional avatar image, an optional bio, any external links you add (for example Instagram or Spotify), your privacy setting (public or private), and whether you are a Pace+ subscriber (so we can show a Pace+ badge to others).
Posts and photos. In pace, a “post” is two photos taken at once, one from the front camera and one from the back, plus an optional caption. When you publish a post, those photos and the caption are uploaded to and stored on our servers, then delivered to your audience. Before any photo leaves your phone, its location and other EXIF metadata are stripped so we never receive where or when the photo was taken from the file itself.
Social graph. We store who you follow, who follows you, any pending follow requests, and anyone you have blocked. The follow data lets us deliver the right posts to the right people; blocks let us keep blocked users away from you.
Reactions. When you react to a post with an emoji, we store that reaction so it can be shown on the post.
Post views (“seen by”). When you view someone’s post, we record that you viewed it so the author can see a “seen by” list, which is a Pace+ feature. This view record is tied to your account.
Reports. If you report a post or a user, we store that report, including the reason and any note you write, so our trust-and-safety team can review it and act on it.
Pace+ status. If you subscribe to Pace+, we store a flag on your profile so we can unlock Pace+ features for you, remove ads, and show your Pace+ badge.
How we use it
- To create, identify, and maintain your account and profile.
- To deliver your posts to the people who should see them, based on your privacy setting and your followers.
- To show follows, follow requests, reactions, and “seen by” lists.
- To operate the discovery / explore experience for public profiles.
- To run Pace+ and show ads to free users (see “Advertising” below).
- To keep pace safe, by reviewing reports, removing content that breaks our rules, and acting on abusive accounts.
We do not sell your data. Free accounts do see ads: pace uses Google AdMob to show banner ads between posts. To serve those ads, Google’s advertising SDK collects device and usage information and, with your permission, uses an advertising identifier (see “Advertising”). Pace+ subscribers see no ads. Outside of AdMob, pace contains no third-party analytics or tracking SDKs.
On your device Local only
What stays on your device
The safety side of pace, the part that helps you keep track of a night, never reaches our servers.
- Your drink log, your sessions, and your ride-plan data are stored only on your iPhone, using Apple’s local SwiftData framework. We do not upload them, back them up, or sync them anywhere. They are not part of your account, your profile, or your posts.
- HealthKit data. If you connect HealthKit, pace reads data such as sleep and heart rate on-device only, to inform on-device features. This HealthKit data is never uploaded to our servers. Access is read-only, and you can revoke it any time in iOS Settings, then Health, then Data Access & Devices, then pace.
If you only ever use pace’s solo tracking features and never post, the only things that reach our servers are the account and profile you created when you signed in.
Advertising
If you are not a Pace+ subscriber, pace shows banner ads supplied by Google AdMob, a Google service. To deliver and measure those ads, the AdMob SDK collects information such as your device type, an advertising identifier, your IP address, coarse location derived from your IP, and app-usage signals. This data is collected and processed by Google under Google’s own privacy and advertising policies.
pace shows personalized ads, with your permission. The first time it is relevant, iOS shows you Apple’s App Tracking Transparency prompt, asking whether pace can track you across other companies’ apps and websites. If you allow it, AdMob can use your device’s advertising identifier (IDFA) to personalize the ads you see. If you decline, you can still use everything in pace and you still see ads, but those ads are not personalized using a cross-app identifier. You can change your choice any time in iOS Settings, then Privacy & Security, then Tracking.
Pace+ removes ads entirely. If you do not want ads at all, you can subscribe to Pace+.
You can learn how Google uses data when it partners with apps at https://policies.google.com/technologies/partner-sites, and you can manage ad personalization in your device settings.
Sharing & visibility
What other people can see depends on your privacy setting.
- Private profiles. Your posts are delivered only to followers you have approved. Follow requests are pending until you accept them.
- Public profiles. Your posts may be visible to other pace users beyond your direct followers, including in a discovery / explore feed. If you don’t want that, set your profile to private.
You choose your setting, and you can change it. We share the content you post according to that setting and to operate the app, and we do not sell it to data brokers. We do not send your posts, photos, captions, or social graph to advertisers. We do, however, use Google AdMob to display ads to free users, and the AdMob SDK collects its own device and usage data to do so (see “Advertising” above).
Service providers. Our servers run on Supabase (managed Postgres and storage), which processes data on our behalf to host your account, profile, posts, graph, reactions, view records, and reports. We use them as a hosting provider, not to monetize your data. We use Google AdMob to serve ads, as described above.
Moderation & safety
pace has a zero-tolerance policy for objectionable content and abusive users. To enforce it:
- You can report any post or user. Reports are stored and reviewed.
- You can block other users, which stops their interaction with you.
- We can remove content that violates our rules.
- Content that receives multiple reports may be automatically hidden pending human review.
- On-device safety screening. Before a post leaves your phone, pace can run an on-device check, using Apple’s on-device sensitive-content analysis, to flag likely nudity or sexual content. This check happens on your device and the photo is not uploaded to perform it. After a post is published, our trust-and-safety team may review it, and any reports against it, and remove it if it breaks our rules.
These measures exist to keep the community safe and to meet Apple’s requirements for apps with user-generated content.
Your choices & deletion
Posts auto-expire. Every post is automatically deleted from our servers 24 hours after it is published. You don’t have to do anything.
Delete individual content. You can delete your own posts, and remove follows, at any time in the app.
Delete your account. You can delete your account from within pace. When you do, we remove your profile, your posts, your social-graph records (your follows and followers), your reactions, and your view records from our servers. We carry out the deletion promptly, generally within 30 days, except where we are required to retain certain records (for example, a record tied to a safety report) for legitimate safety or legal reasons. Because your drink log and sessions live only on your device, deleting the app also removes those.
Control ads and tracking. You can change your App Tracking Transparency choice any time in iOS Settings, then Privacy & Security, then Tracking. Declining tracking switches ads to non-personalized. Subscribing to Pace+ removes ads entirely.
Revoke HealthKit. Revoking HealthKit access in iOS Settings stops pace from reading any further sleep or heart-rate data.
Children
pace is for adults at or above the legal drinking age in their region. The app is not designed for, marketed to, or intended for anyone below the legal drinking age. If you are below the legal drinking age in your region, please delete the app.
Changes to this policy
As pace’s features roll out, this policy will change. When it does, we’ll update the date at the top and surface a notice in the app summarizing what changed, so you can decide whether you still agree before continuing to use pace.
Contact
Questions, concerns, privacy requests, or deletion help? Email legal@paceapp.ca.
</div>