Privacy Policy — GRE Beast
GRE Beast is a vocabulary practice app. This policy explains what data the app handles and what it doesn't. The same posture applies to both the iOS and Android versions; platform-specific notes are called out where relevant.
What we collect
Nothing. GRE Beast does not collect, transmit, store, or share any personal data on a server. The app has no backend.
All study data — your vocabulary progress, streak, saved words, session history, settings, and notification preferences — is stored locally on your device:
- iOSApple's SwiftData framework. Data leaves the device only if you explicitly back up your iPhone, in which case Apple handles the encryption.
- AndroidAndroidX Room and Jetpack DataStore. Data leaves the device only if you enable Android's auto-backup to Google Drive, in which case Google handles the encryption.
In-app purchase
GRE Beast offers a one-time GRE Beast Pro unlock. The purchase is processed entirely by the platform store — we never see your name, email, payment method, or any other personal information. The app stores only a local flag indicating that Pro is unlocked.
- iOSHandled by Apple's StoreKit framework.
- AndroidHandled by the Google Play Billing Library.
Network access
After installation, the app makes no network requests to our servers (we don't have any). The only network activity is:
- Platform-store communication for verifying your Pro entitlement (handled by Apple's StoreKit or Google's Play Billing Library, not by us).
- Operating-system services such as notification scheduling.
- Loading bundled resources from the app package (no network).
Permissions
AndroidGRE Beast requests two runtime permissions, both optional:
- POST_NOTIFICATIONS (Android 13+) — only requested when you opt in to the daily practice reminder in Settings. Decline it and the rest of the app works normally.
- com.android.vending.BILLING — auto-granted; used by the Play Billing Library to process the optional Pro purchase. Carries no personal data.
We do not request location, contacts, microphone, camera, storage, or any other sensitive permissions on either platform.
Analytics, tracking, advertising
None. GRE Beast contains no analytics SDKs, no advertising frameworks, no tracking pixels, no crash reporters, and no third-party SDKs of any kind beyond first-party platform libraries (Apple frameworks, AndroidX) and the platform billing library.
Children
GRE Beast targets users aged 13 and over and contains no objectionable content. We do not knowingly collect data from anyone, including children — see "What we collect" above (we collect nothing).
EU users (GDPR / DSA)
Because GRE Beast collects no personal data, GDPR's data-subject rights (access, deletion, portability, etc.) are inherently satisfied — there is no data to access, delete, or port.
For store transactions, the platform operator is the merchant of record and handles consumer-protection obligations including the right to withdraw within 14 days. Refund requests should be directed to:
Changes to this policy
If this policy changes, the "Last updated" date at the top will change. Material changes will also be reflected in a new version of the app with notes in the store's "What's New" copy.
Contact
Questions about privacy, the app, or anything else: open an issue at github.com/adelmikhail/GREBeast/issues.