Privacy Policy

Last updated: 15 June 2026

This Privacy Policy explains how Stedo collects, uses and protects your personal data when you use the Stedo app (for iOS and Android) and our website. We want it to be easy to understand what happens with your data — kept short and free of complicated language.

1. Who is responsible for your data

The data controller for Stedo is DropDev AB. If you have questions about your data or this policy, you can reach us at contact@stedo.app.

2. What data we collect

Account details. When you create an account, we store your email address and, if you sign in with Apple or Google, an account ID from that service. You can optionally add your name, date of birth and gender to personalize the content.

Your content in the app. Routines, tasks, checklists, rewards, points and similar items that you create. If you use the mood check-in, your mood notes are stored. Mood data may be considered sensitive and is therefore handled with extra care.

Technical information. Device type, operating system, app version, language setting, approximate region and a token for push notifications. We may log crashes and errors so we can fix problems.

Subscription. If you purchase Stedo Plus, we process your subscription status and receipt/transaction ID. Your actual payment card details are handled by Apple or Google — not by us.

Usage data. Anonymized or aggregated statistics about how the app is used, to improve and troubleshoot the service.

3. How we use the data

We use your data to:

  • Provide the service and sync it across your devices.
  • Create and manage your account and subscription.
  • Send the reminders and notifications you have chosen.
  • Enable AI features such as creating routines or breaking down tasks.
  • Provide support and answer your questions.
  • Improve, troubleshoot and secure the service.
  • Meet legal obligations, such as accounting.

4. Legal basis under GDPR

We process your data on the following grounds: contract (to deliver the app and your subscription), consent (for optional features such as the mood check-in, push notifications and web analytics), legitimate interest (for security, preventing misuse and developing the service) and legal obligation (such as accounting requirements). We process mood data only with your explicit consent, and you can stop using the feature and delete your notes at any time.

5. Services we use (data processors)

To run Stedo, we use carefully selected providers that process data on our behalf:

  • Google Firebase / Google Cloud – sign-in, database, file storage and push notifications.
  • RevenueCat together with Apple App Store and Google Play – managing subscriptions and payments.
  • Anthropic (Claude) – our third-party AI provider. When you use AI features (such as creating routines, breaking tasks into steps, onboarding suggestions and weekly reflections), the text or voice you enter — together with relevant profile details (such as age and gender) and your routine or mood check-in information — is sent to Anthropic to generate a response. We ask for your consent in the app before any data is sent. Anthropic processes this data under protections equivalent to ours and does not use it to train its models.
  • Analytics and crash tools – to understand usage and fix errors.

We never sell your personal data.

6. Transfers outside the EU/EEA

Some of our providers process data outside the EU/EEA, for example in the US. When this happens, we ensure a level of protection equivalent to the EU's through the European Commission's EU Standard Contractual Clauses (SCC) and, where applicable, the EU–US Data Privacy Framework.

7. How long we keep the data

We keep your data for as long as your account is active. When you delete your account, your routines, progress, rewards and other content are removed within a reasonable time. Some data may need to be kept longer to comply with the law, such as accounting records, which are kept for up to seven years.

8. Security

We protect your data with technical and organizational measures, including encryption in transit and at rest as well as restricted access. No service can guarantee complete security, but we work continuously to maintain a high level of protection.

9. Your rights

Under GDPR, you have the right to request access to your data, rectification of inaccurate data, erasure, restriction of processing, data portability and to object to certain processing. You also have the right to withdraw your consent at any time. Contact us at contact@stedo.app and we will help you, normally within one month.

If you believe we are processing your data incorrectly, you have the right to lodge a complaint with the supervisory authority. In Sweden, this is the Swedish Authority for Privacy Protection (IMY), imy.se.

10. Deleting your account and data

You can delete your account directly in the app under settings. This permanently removes your account and your data and cannot be undone. If you would rather ask us to delete your data, email contact@stedo.app.

11. Age

Stedo is intended for adults and is not designed for children under 16. By creating an account, you confirm that you meet the age requirement.

12. Cookies and tracking on the website

Our website may use cookies and similar technologies for essential functionality and, with your consent, for analytics. You can control cookies in your browser. The app itself does not use advertising tracking.

13. Changes to this policy

We may update this policy. For significant changes, we will let you know in the app or by email. The date at the top shows when the policy was last changed.

14. Contact

Have questions about your personal data or this policy? Email us at contact@stedo.app.

Privacy Policy | Stedo