This privacy policy describes how Shark ("the App"), developed by CrownLabs, handles your information. We built Shark with privacy as a fundamental design principle. Because Shark processes sensitive menstrual and reproductive health data, we believe you deserve complete transparency about how your information is stored and protected.
1. Our Privacy Commitment
Shark was designed from the ground up to keep your menstrual health data private. Our commitment to your privacy is not a feature we added later -- it is the foundation upon which Shark was built.
- All health data stays on your device -- we have no servers that store it
- We cannot see, access, or read your cycle data
- We will never sell health data -- because we never have it
- AI predictions run entirely on your device using Apple Core ML
- No account creation required -- no personal data held by CrownLabs
In short: your menstrual health data never leaves your device, and CrownLabs has zero access to it.
2. Information We Collect
Shark allows you to track the following types of personal health information within the app:
- Period start and end dates, cycle length, and cycle data
- Symptoms including cramps, mood, energy levels, and flow intensity
- Custom tracking entries and notes
- App preferences and settings
All menstrual and reproductive health data is stored exclusively on your device. CrownLabs does not collect, transmit, or have access to your personal health information.
The data you enter into Shark is processed locally on your device to provide cycle predictions, insights, and analytics. At no point is this data sent to CrownLabs servers or any third-party service.
3. How Your Data Is Stored
Shark uses a local-first architecture specifically designed to protect your sensitive health information:
- On-device storage: All data is stored locally on your device using iOS local storage mechanisms. Your health data never passes through CrownLabs servers.
- On-device AI: AI-powered predictions and pattern recognition run entirely on your device using Apple Core ML. No health data is sent to any server for processing.
- Optional iCloud sync: If you choose to enable iCloud sync, your data is protected by Apple's end-to-end encryption. CrownLabs cannot access iCloud-synced data. This feature is entirely optional and user-controlled.
- No CrownLabs servers: CrownLabs does not operate servers that store, process, or have access to your health data.
4. Data We Do NOT Collect
To be explicit about the boundaries of our data practices, Shark does not collect or access the following:
- We do not collect personally identifiable information (name, email, address, phone number)
- We do not collect location data or GPS coordinates
- We do not track your menstrual cycle on any server
- We do not use analytics SDKs or third-party analytics tools
- We do not collect device identifiers for tracking or advertising purposes
- We do not share any data with advertisers
- We do not use cookies or web tracking technologies
- We do not create user profiles or accounts
5. Third-Party Services
Shark integrates with the following Apple platform services. No third-party advertising or analytics services are used:
- Apple App Store: Handles app downloads, purchases, and subscription management. Apple's privacy policy governs these transactions.
- Apple iCloud: Optional, user-controlled cloud sync. All iCloud data is end-to-end encrypted by Apple. CrownLabs cannot access your iCloud data.
- Apple HealthKit: Optional, user-controlled integration. Shark can read and write menstrual cycle data to Apple Health if you grant permission. HealthKit data sharing is governed by Apple's strict HealthKit guidelines and your iOS privacy settings.
Shark does not include any third-party analytics SDKs, advertising SDKs, crash reporting tools, or data collection frameworks. There are no hidden trackers in the app.
6. Health Data Disclosure
This section provides detailed disclosure about the health data Shark handles, in compliance with Apple App Store Review Guidelines and applicable health data regulations.
Type of health data: Shark collects reproductive and menstrual health data that you manually enter into the app. This includes period dates, cycle length, symptoms (cramps, mood, energy, flow intensity), and cycle predictions generated by on-device AI.
Sensitivity classification: This data is classified as sensitive health data under HIPAA, GDPR, and other applicable privacy laws and regulations. Menstrual and reproductive health data requires the highest level of privacy protection.
Storage: All health data remains exclusively on your device. It is not transmitted to CrownLabs or any third party.
AI/ML processing: Predictions, pattern recognition, and analytics are computed entirely on-device using Apple Core ML. Your health data never leaves your phone for AI processing.
No transmission: Health data is never transmitted to CrownLabs servers or any third-party service. There are no server-side components that process your health information.
HealthKit: HealthKit data sharing is optional and controlled entirely by you through iOS Settings. You can grant or revoke Shark's access to HealthKit at any time. Shark accesses only menstrual cycle data categories in HealthKit that you explicitly authorize.
7. Data Retention and Deletion
You have complete control over your data at all times:
- Persistence: Your data persists on your device for as long as you choose to keep it.
- Delete individual entries: Delete any individual cycle entry, symptom log, or note directly within the app.
- Delete all data: Navigate to Settings > Delete All Data within the app to permanently erase all stored health data.
- Uninstall: Uninstalling Shark from your device removes all locally stored app data.
- iCloud data: If you enabled iCloud sync, manage or delete synced data through iOS Settings > Apple ID > iCloud.
- HealthKit data: Data written to Apple Health can be managed and deleted through the iOS Health app.
Because CrownLabs does not store your data on any server, there is no server-side data to request deletion of. All data deletion is immediate and under your direct control.
8. Children's Privacy
Shark is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided information through the app, please contact us at [email protected] so we can assist you.
Because Shark does not collect or transmit personal information to any server, there is no server-side data associated with any user, including minors.
9. Your Rights
Because Shark stores all data locally on your device and CrownLabs does not hold any of your personal data, your rights are straightforward:
- Access: All of your data is visible and accessible directly within the Shark app at any time.
- Deletion: Delete individual entries within the app, delete all data via Settings > Delete All Data, or uninstall the app entirely.
- Portability: Export your health data from within the app for your personal records or to share with healthcare providers.
- No account required: Shark does not require an account, login, or registration. CrownLabs holds no personal data linked to your identity.
GDPR Rights (European Economic Area)
If you are located in the European Economic Area, you have additional rights under the General Data Protection Regulation. Because CrownLabs does not collect or store your personal health data, most GDPR data subject requests are fulfilled by the app's local data management features. For any GDPR-related inquiries, contact [email protected].
CCPA Rights (California)
California residents have rights under the California Consumer Privacy Act. CrownLabs does not sell personal information. Because we do not collect your health data, there is no personal information for us to disclose, delete, or stop selling. For any CCPA-related inquiries, contact [email protected].
10. Law Enforcement
Because health data is stored only on your device, CrownLabs cannot provide your menstrual health data to any third party, including law enforcement, because we do not have it.
CrownLabs has no technical ability to access, retrieve, or produce your cycle data, symptoms, predictions, or any other health information stored in Shark. We cannot comply with requests for data we do not possess.
11. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in the app or applicable laws. When we make changes, we will update the "Last updated" date at the top of this page. We encourage you to review this Privacy Policy periodically.
If we make material changes that affect how your health data is handled, we will provide prominent notice within the app before the changes take effect.
12. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or Shark's data practices, please reach out to us: