Privacy Policy

Last updated: 1 May 2026

This is the privacy policy for Vesper ("the app"), an iOS app published by Lars Holmstrom, operating as a sole trader in Melbourne, Australia (ABN: 58 778 326 834).

We've tried to write this in plain English. If anything's unclear, email us at hello@tryvesper.app.

The short version

Vesper is built to keep your spiritual practice private.

• Your reading history, journal entries, bookmarks, denomination selection, and reading plans are stored only on your device.
• We do not have a server that holds your content. We cannot read your journal entries.
• If you have iCloud Backup turned on for Vesper, Apple syncs your data through your own iCloud account. We don't see it.
• We use two third-party tools — RevenueCat (to process subscriptions) and PostHog (to understand how the app is used in aggregate). Both are described below.
• We do not sell your data. We do not run ads. We do not share data with marketers.

What stays on your device

Everything you create or interact with inside the app:

• Verses you've read, bookmarked, or highlighted
• Journal entries and notes
• Your denomination selection and content filter preferences
• Reading plan progress
• Streaks, statistics, and any local settings
• Bible translation downloads

This information lives in a SQLite database on your device. It's included in your iCloud Backup if that's enabled in iOS settings — that backup is end-to-end controlled by Apple, not by us.

What leaves your device

RevenueCat (subscription management)

We use RevenueCat to handle our subscriptions. When you start a free trial or subscribe, RevenueCat receives:

• An anonymous user ID generated by the app
• Your subscription status, purchase history, and trial state
• Device and platform information (iOS version, app version, country)

RevenueCat does not receive your name, email, payment details, or any content from the app. Apple handles your actual payment — we never see your card.

RevenueCat's privacy policy: https://www.revenuecat.com/privacy

PostHog (anonymous analytics)

We use PostHog to understand how people use the app — for example, which features are getting used, where users drop off in onboarding, and whether new builds are stable. PostHog receives:

• An anonymous device ID generated by the app
• Events like screen views, button taps, and feature usage
• Device and platform information (iOS version, device model, country, language)
• Crash and error information

PostHog does not receive the content of your journal entries, the verses you read, your denomination selection, or any other personal content. Events are tied to a random device ID, not to your name or Apple ID.

PostHog's privacy policy: https://posthog.com/privacy

Apple

When you subscribe, Apple processes the payment and tells us (through RevenueCat) whether the subscription is active. Apple's handling of your payment is governed by Apple's own privacy policy.

What we don't do

• We don't have user accounts. There's no sign-up, no email, no password.
• We don't collect your name, email address, phone number, or location.
• We don't track you across other apps or websites.
• We don't sell, rent, or trade data to anyone.
• We don't use your data to train AI models.
• We don't show ads.

Children

Vesper is rated 4+ and contains religious content. It does not knowingly collect any personal information from anyone, including children. There's nothing to collect — there are no accounts.

Your rights

Because we don't hold your content on a server, most data requests are handled directly on your device:

• Delete your data: Uninstall the app. Everything stored locally is removed. If you had iCloud Backup enabled, you can delete the Vesper backup from your iCloud settings.
• Stop analytics: You can opt out of analytics any time from the app's Settings screen.
• Cancel a subscription: Manage subscriptions in your Apple ID settings (Settings → [Your Name] → Subscriptions). Cancellation is handled entirely by Apple.

If you're in the EU, UK, or California and want to exercise specific rights under GDPR, UK GDPR, or CCPA — including a copy of any data RevenueCat or PostHog holds against your anonymous ID — email hello@tryvesper.app with your RevenueCat user ID or PostHog distinct ID (both visible in the app's Settings → About). We'll forward the request and respond within 30 days.

Security

Local data sits inside the app's iOS sandbox, protected by the operating system. Network calls to RevenueCat and PostHog use HTTPS. No system is perfect — if we ever discover a breach affecting our users, we'll post a notice on our website and (where required by law) notify the OAIC.

Changes to this policy

If we change anything material, we'll update the "Last updated" date and post a notice in the app. Continued use after a change means you accept the updated policy.

Contact

Lars Holmstrom, sole trader (ABN: 58 778 326 834)
Melbourne, Victoria, Australia
hello@tryvesper.app

If you have a complaint we can't resolve, you can contact the Office of the Australian Information Commissioner at https://www.oaic.gov.au.