Privacy

Last updated: 2026-05-10.

The short version

Again works fully on your device by default. No login, no account.
Cross-device sync is opt-in. Again never collects your email, password, name, phone number, contacts, location, photos, or anything similar.
No third-party analytics. No ad networks. No third-party login providers.
The single-device experience is fully functional without any data leaving your phone.

What stays on your device

Loops, Dailies, Tallies, completions, taps, your settings, and the data the home-screen widget shows — all of it lives on your phone, in the app's own storage. The app reads and writes there directly. Nothing in this list is sent anywhere unless you turn on sync.

What sync sends, and only when you turn it on

When you tap "Sync between devices" in Settings, your phone creates two random values locally — without ever asking for your email, name, or anything personal:

A random ID. What the server uses to find your data. Looks like a string of letters and numbers; it isn't tied to your name, email, or phone number in any way.
A private key. Proves to the server that it's really you. Never leaves your phone in plain form — only a scrambled, one-way version reaches the server.

From that point, your edits — your loops, dailies, tallies, and when you marked things done — push to the sync server at sync.again.nopanic.ing. The server stores them by your random ID so your other devices can pull them. That's it; no other identifier is involved.

Linking a second device is a one-time QR scan (or 8-character code) shown by the first device. The new phone never sees an email or password because there isn't one.

Technical details, for the curious

The random ID is a UUID. The private key is a long random secret; only a one-way hashed form ever reaches the server. The server runs as a Cloudflare Worker backed by Cloudflare D1.

What sync does NOT send

No email, name, phone number, or any user-identifying info.
No analytics, no telemetry.
No "what apps do you have installed," no contacts, no location, no photos.
No payment information — billing is handled by Google Play / App Store directly.

Push notifications (when sync is on)

To wake your phone when another of your devices has pushed new data, Again uses a push-message service in silent mode — no user-visible banner, just a wake-up signal so your phone fetches the new data quickly. Your phone's push identifier is registered against your random ID on the sync server. No marketing or promotional notifications are ever sent. You can disable this by turning off sync.

Technical details, for the curious

The push service is Google's Firebase Cloud Messaging, used in data-only mode (no notification payload).

Backup & export

Settings → Backup exports your data as a single file you save wherever you like — Drive, email, your own folder. The file is in plaintext (JSON) so you can read it yourself. The file is yours; no copy is sent anywhere.

Crashes

The app does not include any error-reporting service. If one is ever added (Sentry, for example), this section will be updated explicitly and the integration will be opt-in via Settings.

Deleting your data

On device: uninstall the app, or use Android Settings → Apps → Again → Storage → Clear data.
On the sync server: Settings → Sync → "Disable sync and delete cloud data" wipes your row on the server side, immediately. No retention period.

Contact

Questions, concerns, bug reports or feature requests: contact.again@nopanic.ing.