Privacy Policy
Lifethread (“we,” “us,” or “our”) is a personal iOS app that helps you see spending, health, travel, packages, and daily life in one private picture. This Privacy Policy explains what information we collect, how we use it, who we share it with, and the choices you have. By using Lifethread, you agree to this policy.
We do not sell your personal information. We do not use your data for third-party advertising.
1. Who we are
Lifethread is a product of Table4 (table4.ai), operated by William Keck. For privacy questions, support, or data requests: william@table4.ai.
2. Information we collect
We collect only what is needed to provide the features you choose to use. Most integrations are optional and require your explicit permission.
2.1 Account and identity
- Sign-in — When you sign in with Apple or Google, we receive identifiers and profile information those providers share with us (such as your name, email address, and account subject ID).
- Profile — Display name you set in the app.
- Sessions — We issue an app session so you stay signed in. Session tokens are stored securely; you may optionally protect access with Face ID on your device.
2.2 Financial information (optional — Plaid)
If you connect a bank or card account through Plaid, we receive read-only financial data Plaid provides on your behalf, such as:
- Linked institution and account names
- Account balances
- Transaction history (including merchant names, amounts, dates, and categories)
- Investment-related account metadata where available through the connection
We never see or store your bank login credentials. Plaid handles authentication through its secure link flow. We cannot move money, make payments, or take actions on your accounts. You can disconnect linked institutions in the app or through Plaid’s portal.
2.3 Health and fitness (optional — Apple Health)
With your permission, Lifethread reads data from Apple Health (HealthKit). We do not write data to HealthKit. Depending on what you authorize, this may include:
- Steps, walking/running distance, active and resting energy
- Exercise time and stand time
- Activity summary (Move, Exercise, Stand rings)
- Heart rate and resting heart rate
- Workouts (type, duration, energy, and related metrics)
Health data accessed through HealthKit is used to show your activity alongside spending and daily life. We do not use HealthKit data for advertising or sell it.
2.4 Email (optional — Gmail)
If you connect Gmail, you grant read-only access
(gmail.readonly). We scan messages to find order confirmations,
shipping updates, travel bookings, and similar transactional email—not your
entire mailbox for unrelated purposes. From those messages we may extract and store:
- Sender, subject, date, and message identifiers
- Structured fields such as merchants, order numbers, amounts, tracking numbers, carriers, delivery status, and travel dates or destinations
- Short snippets or parsed line items from receipts when relevant
Email content needed for parsing may be processed by our AI provider to extract structured details (for example, trip dates or receipt line items). We do not retain full email bodies indefinitely when structured fields are sufficient. You can disconnect Gmail in the app or revoke access in your Google Account settings.
2.5 Location (optional)
- Weather — Approximate location (from your device or a coarse area you choose) to show local weather.
- Trip photos — Photo location metadata on your device to match pictures to trips and map them. Photo files stay on your device.
- Places — Coordinates associated with merchants, trips, or receipts to improve place names and maps.
2.6 Photos and camera (optional)
- Paper receipts — When you scan a receipt, text recognition runs on your device. Extracted merchant, date, total, and line items may be sent to our servers to match spending.
- Trip memories — The app reads photo library metadata (time and location) to match photos to trips. We store references and metadata (not the image files) on our servers when you use trip features.
- Vehicle photos — You may scan your photo library for pictures of your car. Matching runs on-device first. If you choose to verify a photo, image data is sent to our AI provider only for that check and is not stored on our servers afterward.
2.7 Travel, vehicles, and assets you add
Information you enter or that we derive from linked data, such as trip names and dates, residence locations, vehicle VIN and odometer readings, manual assets, notes, and preferences (for example, trips marked “not a vacation”).
2.8 Feedback and support
If you submit in-app feedback, we collect the category you select, your message, your display name (if available), and app version.
2.9 Technical and usage information
- Device type, operating system version, and app version
- IP address and standard server logs for security, abuse prevention, and debugging
- Which features you use, insofar as needed to operate the service
3. How we use information
We use collected information to:
- Authenticate you and maintain your account
- Display spending, health, travel, packages, subscriptions, and related views
- Match receipts, packages, and trip context to transactions and places
- Generate short insights, summaries, and nudges using our AI provider
- Estimate vehicle values when you add a vehicle (using third-party automotive data services)
- Improve reliability, security, and support
- Respond to your requests and feedback
Lifethread is for personal informational use only. It is not financial, tax, medical, or legal advice.
4. AI and automated processing
Some features use a third-party AI provider configured for the service. Depending on your settings and the features you use, we may send that provider:
- Derived or extracted text (for example, parsed receipt OCR text, email excerpts used for travel or order parsing, or structured trip/financial summaries)
- Individual photos temporarily, only for vehicle-photo verification as described above
- Prompts built from aggregated metrics (for example, spending patterns or step counts) to generate brief nudges
We design these flows to send the minimum context needed for each task. We do not send your full transaction history or entire mailbox to AI providers for general training purposes.
5. On-device processing
Several features process data on your iPhone before anything leaves the device, including Apple Health reads (until you sync summaries), receipt camera OCR, photo-library pre-filtering for trips and vehicles, and optional Face ID protection of your saved session in the device keychain.
6. How we share information
We share information only as described below:
- Service providers who help us operate Lifethread (hosting, authentication, and AI processing), under contractual obligations to protect your data
- Plaid — to link financial accounts (Plaid policies)
- Google — Sign-In and optional Gmail (Google policies)
- Apple — Sign-In, HealthKit, on-device frameworks (Apple policies)
- Weather and mapping partners — coarse location or place queries to show weather and resolve merchant or place names
- Automotive data partners — VIN decode and optional market value lookups when you track a vehicle
- Legal requirements — if required by law, regulation, legal process, or to protect rights, safety, and security
We do not sell or rent your personal information.
7. Where data is stored
For hosted accounts (including TestFlight beta), your account data is stored on secure servers in the United States. Each account’s data is kept separate from other users. Plaid and Gmail connection tokens are encrypted before they are stored on those servers.
Advanced users may optionally connect the app to a backend they run themselves on a private network; in that configuration, data stays on infrastructure they control.
8. Retention
We retain your information while your account is active and as needed to provide the service. When you delete your account (Account → Delete account), we permanently delete your user record and associated app data from our servers, and we revoke linked Plaid connections where possible. Server logs may be retained for a limited period for security.
9. Security
Protecting your data is a core priority. Measures we use include:
- Encrypted in transit — Communication between the Lifethread app and our servers uses encrypted connections (TLS/HTTPS).
- Encrypted connection tokens — Tokens that let us sync Plaid and Gmail on your behalf are encrypted before they are stored on our servers. We never store your bank login credentials.
- Device protection — Your sign-in session is stored in the iOS Keychain. You can optionally require Face ID to open the app on your device.
- Account isolation — Your data is tied to your account and is not visible to other Lifethread users.
- Access controls — Server-side access is limited to what is needed to operate and support the service.
No method of transmission or storage is completely secure. You are responsible for keeping your device, Apple or Google sign-in, and optional Face ID settings secure.
10. Your choices and rights
- Permissions — Health, Photos, Camera, Location, and Gmail are optional; revoke them in iOS Settings or in the app.
- Financial links — Disconnect banks in Lifethread or via Plaid.
- Email — Disconnect Gmail in the app or Google account permissions.
- Delete account — Account → Delete account (permanent).
- Access or deletion requests — Email william@table4.ai.
If you are a California resident, you may have additional rights under the CCPA/CPRA, including the right to know, delete, and correct personal information. We do not sell personal information. To exercise rights, contact us at the email above.
11. Children’s privacy
Lifethread is not directed to children under 13, and we do not knowingly collect personal information from children under 13. If you believe a child has provided us data, contact us and we will delete it.
12. International users
Lifethread is operated from the United States. If you use the app from other regions, your information may be processed in the United States, which may have different data protection laws than your country.
13. Changes to this policy
We may update this Privacy Policy from time to time. We will revise the effective date at the top when we do. Continued use after changes means you accept the updated policy.