privacy

privacy policy

last updated: 14 june 2026. effective: at first public release of one.

the short version: one. collects no personal data. there are no accounts and no servers. everything you create stays on your device and, if you choose, in your own iCloud. we never see it, and we never share or sell anything, because there is nothing for us to see, share, or sell.

this policy explains how the one. app ("one.", "the app") handles your information. the app is published by Sundae OÜ, a company registered in Estonia ("we", "us", "our"). it applies to the one. app on iPhone, iPad, and Apple Watch. you can reach us any time at operator@maru.one.

1. what we collect

we do not collect any personal data through one. we do not require an account or a login. the app contains no analytics, no advertising, no tracking technologies, and no usage reporting. we operate no servers that receive your data. we do not build profiles, and we do not use your data for advertising or marketing.

2. the content you create, and where it lives

everything you create in one., including journal entries, sketches, habits, planner items, money records, goals, and settings, is stored locally on your device using Apple's on-device storage. if you are signed in to iCloud and have iCloud enabled for one., that content also syncs through your own private iCloud account using Apple's CloudKit, so it stays in sync across your devices.

this iCloud data sits in your personal iCloud account. it is governed by Apple's privacy policy, not ours, and we have no access to it. you can turn iCloud sync off at any time in your device's iCloud settings.

3. permissions one. may ask for

every permission below is optional and off until you grant it. if you decline, the app keeps working and only the related feature is affected. nothing accessed through these permissions is ever transmitted to us or to any third party.

health (HealthKit): with your permission, one. reads selected Health data (such as sleep, heart, and activity) to display it inside the app. the only data one. writes to Health is a mindful minutes entry after you complete a breathing session. one. never uses Health data for advertising or marketing, never shares or sells it, and never transmits it off your device. you can review and revoke Health access in the Health app or in iOS Settings.
location: off by default. if you enable it, one. uses your location only to tag a journal entry with where it was written. location is never collected in the background and never shared.
calendar: read only, and only if you enable it, so one. can overlay your day's meetings on the planner. one. never writes to your calendar, and your events are never transmitted to us or shared.
reminders: if you enable it, one. keeps a dedicated list in Apple Reminders so the planner's tasks stay in sync. that data stays on your device and in your own iCloud; nothing is sent to us.
microphone and speech recognition: used only when you record a voice journal entry. speech recognition is performed on your device. recordings stay in your own store.
camera and photo library: used only when you choose to add a photo or sketch to an entry.
notifications: used only to deliver reminders that you set up yourself.

4. third parties

one. includes no third-party software development kits (SDKs), no third-party analytics, no advertising networks, and no third-party artificial intelligence services. we do not send your data to any third party. because we collect nothing, there is no data to share. the only "third party" involved is Apple, and only when you choose to use iCloud sync, in which case your data is handled under Apple's own privacy terms.

5. data retention and deletion

because we hold none of your data, there is nothing for us to retain or delete. you remain in full control of your content:

delete individual items inside the app at any time.
use "start fresh" in the app's settings to erase every entry on your device.
deleting the app removes its on-device data.
manage or delete the app's iCloud data from your device's iCloud settings, under "manage account storage".

6. how to withdraw consent

you can withdraw any permission at any time in iOS Settings under one. (or in the Health app for Health access), and you can disable iCloud sync at any time. withdrawing a permission only disables the related feature; the rest of the app continues to work.

7. children

one. is a general audience app and is not directed to children under the age of 13 (or the equivalent minimum age in your region). we do not knowingly collect personal information from anyone, including children, because the app does not collect personal information at all.

8. your rights

depending on where you live, you may have rights under laws such as the GDPR or the CCPA to access, correct, or erase the personal data a company holds about you, and to object to its processing. we hold no personal data about you, so there is nothing for us to access, correct, erase, or sell, and we do not sell or share personal data under any law. for the content stored in your own iCloud, Apple acts as the data processor and you manage that data directly through Apple. if you have any question, contact us at operator@maru.one.

9. changes to this policy

if the app ever changes how it handles data, we will update this policy and the "last updated" date above, and post the new version here, before the change takes effect.

10. contact

Sundae OÜ, Estonia. questions about privacy in one. can be sent to operator@maru.one.