plumefeel your flow
Features
About
Support
Download iOS
Security

Your health data deserves the highest standard

Plume is built with a local-first architecture where your data stays on your device by default. Here's exactly how we protect your most personal information.

Local-first by design

Unlike most health apps that immediately upload your data to their servers, Plume takes the opposite approach. Everything stays on your iPhone.

On-device storage

All health data — cycle logs, feeding sessions, fever measurements, sleep records — is stored using MMKV encrypted storage directly on your device. No cloud account required.

Optional cloud sync

When you create a family circle, data syncs through Supabase servers hosted in the European Union. This is strictly opt-in and can be disabled at any time.

End-to-end encrypted transit

When syncing is enabled, all data in transit is encrypted using TLS. Authentication uses secure JWT tokens with automatic session management.

Role-based access control

Circle members only see data appropriate to their role. Observers see less than co-admins, who see less than admins. You control every permission.

What we will never do

  • Sell your data to third parties, data brokers, or advertisers
  • Use third-party analytics or tracking frameworks
  • Show advertisements of any kind
  • Share your health data with insurance companies or employers
  • Require an account to use core features
  • Retain data after you request deletion
  • Use your data to train machine learning models

Infrastructure

Cloud provider

Supabase (EU region) — an open-source backend platform providing authentication, database, and real-time capabilities. All servers are located in the European Union.

Authentication

Secure JWT-based authentication with automatic token refresh and session management. Password hashing uses industry-standard bcrypt with appropriate work factors.

Conflict resolution

When multiple circle members edit data simultaneously, Plume uses timestamp-based conflict detection and resolution with retry mechanisms and exponential backoff.

Data deletion

Local data can be deleted instantly via Settings > Reset App. Cloud-synced data can be deleted by leaving all circles and requesting account deletion. We process deletion requests within 30 days.

GDPR compliance

Plume is designed with European data protection standards in mind. Our local-first architecture naturally minimizes data collection and processing. When cloud sync is used, all processing occurs within the EU.

If you have security concerns, vulnerability reports, or data protection inquiries, please contact us immediately.

Report a security concern