What the app collects
Nothing leaves your phone. The only data the app touches is the data you enter yourself: the sessions you log, the limits you set, the notes you write. All of it is stored in a single SQLite file inside the app's private sandbox.
We do not run analytics. We do not collect crash reports. We do not assign you an anonymous ID. We do not know how many people installed the app, let alone who.
How it is protected
Your SQLite database is encrypted with SQLCipher (AES-256). The key never leaves the Android Keystore on your device. Even another app on the same phone cannot read it. The app's key-value store (preferences, PIN verifier, security-question hash, biometric public key) is encrypted with a second key, also Keystore-bound.
Your PIN is stretched with PBKDF2-SHA256 before storage, so a stolen device snapshot cannot be brute-forced offline in any reasonable time. The lockout counter is tamper-evident: editing the file directly trips a 60-minute lockout. Biometric unlock uses a hardware-backed RSA signature, not a "success/fail" boolean that could be patched at runtime.
Screenshots and screen recordings are blocked on Android. The app-switcher tile is blanked so amounts and notes never preview there. On a rooted or jailbroken device, we show a one-time warning explaining the trade-off. These protections still apply, but they can be bypassed by software that runs with elevated privileges on your phone.
What this website collects
The site uses Cloudflare Web Analytics, a privacy-friendly, cookieless measure of page views and referrers. It records no personal data, sets no cookies, and does not track you across other sites. The only client-side storage is two small flags in your browser's localStorage: one remembers whether you confirmed you are of legal age (so the age check does not greet you on every visit), and one remembers when you joined the waitlist (so the form does not greet you again for thirty days). Both stay on your device.
If you join the waitlist, your email is sent through our Netlify proxy and stored by Resend, our email delivery provider. We use it once, to notify you when Tilted ships on Android. After that, we remove your address from the list.
Third parties
The app talks to no servers. Not ours, not anyone's. There are no third parties.
Your data, your call
Inside the app, Settings has a Delete all data action that wipes the local database. Export to JSON or CSV first if you want a copy.
To remove your email from the waitlist, reply to the welcome note or write to the address below. We will delete the record the same day.
Children
Tilted is for adults of legal gambling age. We do not knowingly collect anything from anyone younger.
Changes
If anything here ever changes, the version at the top of this page changes with it.
Contact
Privacy questions: privacy@tiltedapp.site