Overcome is a habit-building and dopamine reset mobile application developed and operated by its co-founders as independent developers based in Bengaluru, Karnataka, India. We are not a registered company at this time.
Overcome is not a medical service, therapy platform, clinical treatment, or mental health provider of any kind. It is a habit and behavioural change tool.
For all privacy-related matters:
We collect only what is necessary to provide the Overcome experience.
| Data Type | Purpose |
|---|---|
| Email address | To create and manage your account, send important service communications, and process cashback claims. |
| Display name | To personalise your in-app experience. Can be any name — does not need to be your real name. |
| Password | To secure your account. Hashed using industry-standard encryption, never stored in plain text. Managed by Descope. |
| Data Type | Purpose |
|---|---|
| Current streak (days) | Self-reported. Used to establish your baseline and personalise your starting point. |
| Longest streak ever (days) | Self-reported. Used to understand your history and set appropriate programme targets. |
| Primary trigger type | Selected from a fixed list. Used to tailor challenge recommendations to your specific patterns. |
| Primary goal | Selected from a fixed list. Used to personalise your programme structure. |
| Data Type | Purpose |
|---|---|
| Daily challenge completion logs | Recorded automatically per challenge per day. Used to track progress, calculate your Clarity Score, and verify cashback eligibility. Immutable — cannot be retroactively edited. |
| Streak data | Current streak, longest streak, and relapse log dates. Core programme tracking data. |
| Relapse logs | Date and dominant emotion selected at time of logging. Optional. Used for self-reflection and Clarity Score depth component. |
| Clarity Score history | Daily snapshots of your composite progress score. Used to display progress over time. |
| Wellbeing check-in ratings | Optional daily 1–5 self-rating of energy and clarity. Feeds the Clarity Score depth component. |
| Badge earn dates and IDs | Records of which badges you have earned and when. |
| App open timestamps and session frequency | Used to calculate the consistency component of your Clarity Score and to improve the app. |
| Device type and OS version | Collected automatically for crash reporting and compatibility. |
| Data Type | Purpose |
|---|---|
| Authentication data (Descope) | Email, display name, and hashed password processed by Descope at account creation and login. Used for identity verification only. Descope has no access to recovery data, streak logs, or challenge completions. |
| Subscription status and transaction ID (Google Play) | Collected when you purchase via Google Play. Used to manage plan access. We do not store payment card details. |
| Subscription status and transaction ID (RevenueCat) | RevenueCat manages subscription state on our behalf. Receives subscription status, transaction IDs, and anonymised app user ID only. |
| Usage events and crash data (Firebase) | Anonymised screen views, session data, and error logs. Used to improve performance and fix bugs. |
| Data | Retention Period |
|---|---|
| Account and profile data | Duration of active account, plus 90 days after deletion request. |
| Challenge completion and streak logs | Duration of active account. Deleted within 30 days of deletion request. |
| Relapse logs | Duration of account. Deleted immediately upon deletion request. |
| Wellbeing check-in ratings | Duration of account. Deleted within 30 days of deletion request. |
| Payment and transaction records | 7 years as required under Indian accounting and tax law. Cannot be deleted on request. |
| Firebase analytics data | Anonymised after 14 months per Firebase's standard retention policy. |
| Support correspondence | 2 years from the date of last communication. |
We do not sell your data. We do not share your data with advertisers or data brokers. We share data only with the following third parties, to the extent necessary to operate the app:
We may disclose your data to law enforcement if required by applicable law.
You may request a copy of all personal data we hold about you within 30 days of your verified request.
You may request correction of inaccurate or incomplete data. Most profile data can be updated in-app. For anything else, email us and we will correct it within 14 days.
You may request complete deletion of your account and all associated personal data at any time. Account deletion is processed by email only.
Alternatively, email overcomeapp0@gmail.com directly with subject line "Data Deletion Request" and include your account email address.
Data held by Descope, Firebase, and RevenueCat is subject to their own deletion processes. We will initiate requests with these providers on your behalf.
You may withdraw consent by requesting account deletion as described in Section 5.3. Withdrawal does not affect the lawfulness of processing carried out before withdrawal.
You may nominate another individual to exercise your data rights on your behalf. Email overcomeapp0@gmail.com with subject line "Nominee Registration".
If unresolved, you may approach the Data Protection Board of India once operationally established under DPDPA 2023.
In the event of a data breach likely to cause harm, we will notify you and relevant authorities within timeframes required by DPDPA 2023.
Your personal data is primarily stored on Vultr servers in Mumbai, India, in compliance with DPDPA 2023 data localisation principles.
Firebase (Google) is configured to the asia-south1 (Mumbai) region. Some data may be processed on Google's global infrastructure per Google's data processing terms.
RevenueCat may process subscription data on servers outside India. See revenuecat.com/privacy for details.
Descope processes authentication data on servers in the United States. Your email address and hashed password are transferred to and stored in the United States on account creation and login. Descope maintains SOC 2 Type II compliance. By creating an account, you consent to this transfer. See descope.com/privacy for details.
Overcome is for users aged 18 and above only. We do not knowingly collect data from anyone under 18. If you believe a minor has created an account, contact us immediately at overcomeapp0@gmail.com and we will delete it without delay.
Anonymised, aggregated usage data — screen views, session length, feature usage. Does not identify you personally. Configured to asia-south1 (Mumbai).
Automatic crash reports including device type, OS version, and error stack traces. Used exclusively to fix technical issues.
Subscription lifecycle events (purchases, renewals, cancellations, refunds). No access to recovery data, relapse logs, or onboarding responses.
Authentication events (sign-up, login, logout, password reset). No access to in-app recovery data, challenge completions, streak logs, or habit-related content.
We do not use advertising SDKs, ad networks, or marketing trackers. We do not serve ads. We do not permit advertisers to access your data.
Enable "Opt out of Ads Personalisation" in Android device settings (Settings > Google > Ads) to limit Firebase Analytics collection. Does not affect app functionality.
Continued use after changes take effect constitutes acceptance.