Confiteor
Prepare Prayers Examen

Privacy Policy for Confiteor

Effective Date: 2026-05-01

App Name / Website: Confiteor (“we,” “our,” “the app,” “the website”)

1. Summary

Confiteor is designed to help users prepare for the Sacrament of Confession by providing examination-of-conscience materials and guided preparation steps. Your privacy is important to us. The Android app is designed to keep your personal examination data offline and private. It may optionally connect to confiteor.org to download prayers or examination modules at your explicit request — no personal data is transmitted in these requests. The website’s Confession Prep tool operates entirely in your browser — your examination selections, sin labels, and counts are never sent to any server.

2. Scope

This Privacy Policy applies to both the Confiteor Android app and the Confiteor website at confiteor.org (including the Confession Prep tool at confiteor.org/prepare). It explains how each platform handles information.

3. What Data We Collect

Confiteor is designed to function primarily without collecting personal data.

A. Data stored on your device (local data — Android app)

The app stores user data locally on your device, including:

  • Your examination selections and saved sessions
  • Custom sins you add (if you use the feature)
  • Your security settings (e.g., whether you enable a PIN/biometric unlock)
  • Any user preferences selected in settings (e.g., appearance, examination configuration)

This local data is stored in an encrypted database using SQLCipher, with keys managed by the Android Keystore.

A2. Data stored in your browser (local data — website Confession Prep)

The Confession Prep tool stores your draft in your browser’s localStorage. This includes:

  • The modules you browsed
  • The questions you selected
  • Any sin labels or descriptions you typed
  • The count of times each sin was committed

This data is encrypted before being written to localStorage. The encryption key is stored in your browser’s IndexedDB, which browsers do not sync across devices. This means that even if your browser or operating system syncs localStorage to another device (for example via iCloud or a browser account), the ciphertext stored there cannot be decrypted without the key — which only exists on the originating device and browser.

This data never leaves your device. It is not transmitted to our servers or any third party. It remains on your device until you clear it using the “Clear All” button in the tool or until you clear your browser’s site data. No account, login, or registration is required.

B. Data collected through the camera (QR import — Android app only)

If you use features that require scanning (for example, importing examination modules via QR code), the app may use your device’s camera to scan codes.

When the camera is used:

  • The app processes the scanned information on your device
  • We do not upload camera images or scan results to any server
  • We do not create a photo/video gallery of captured images for later viewing

Note: The exact internal processing is intended to be minimal and limited to enabling the QR/device import workflow you initiated.

C. Network, analytics, and identifiers

Android app: The app declares the INTERNET permission. Network access is used solely to fetch publicly available content (prayers and examen modules) from confiteor.org when you explicitly request a download. No personal data, examination content, session history, or device identifiers are included in these requests. All requests are unauthenticated, read-only GET requests to public endpoints. Downloaded content is stored locally on your device in the same encrypted local storage described in Section 3A. App updates are delivered exclusively through the Play Store, which uses its own system-level permission outside the app’s control.

Website: The Confiteor website serves static content from Netlify. Standard web server access logs (IP address, browser type, pages visited) may be retained as part of normal hosting operations. The Confession Prep tool itself makes no network requests with your examination data — all processing happens in your browser.

Additionally:

  • Neither the app nor the website has analytics or crash reporting that transmits your confession data to third parties
  • We do not sell or share your data

4. How Confiteor Uses Your Information

Android app: Confiteor uses the information you input to:

  • Provide guided examination of conscience content
  • Save and resume examination sessions on your device
  • Enable optional security features (PIN/biometric unlock) for locally stored sessions
  • Support optional import workflows you initiate (including QR scanning)
  • Retrieve publicly available prayers and examination module content from confiteor.org when you explicitly request a download (no personal data is sent in these requests)

Website Confession Prep tool: The website uses your selections only to generate the Sins and Walkthrough views within your browser. It does not use your information for advertising, profiling, or any purpose beyond displaying your own input back to you.

Neither platform uses your information to target advertising.

5. Sharing of Information

Confiteor does not sell your information. Neither the app nor the website transmits your locally stored data to third parties.

If you use the Download Prayers or Download Modules features, the app makes a network request to confiteor.org to retrieve publicly available content. Only the request itself is sent — no personal data, examination history, or identifying information is included. The retrieved content is saved locally on your device.

6. Data Security

Android app: We take reasonable steps to protect locally stored data:

  • Local data is stored using an encrypted database (SQLCipher)
  • Encryption keys are managed using the Android Keystore
  • The app supports optional additional protections such as:
    • PIN-based unlock
    • Biometric unlock (where supported by your device)
  • The app can be configured to reduce risks from screen capture (e.g., blocking screenshots) for additional privacy

Website Confession Prep tool: Your confession data is encrypted (AES-GCM 256-bit) before being stored in your browser’s localStorage. The encryption key is generated once per browser and stored in IndexedDB — a browser storage area that browsers do not sync across devices. Even if your localStorage is synchronised to another device via a cloud service, the encrypted data cannot be decrypted without the key, which only exists on the original device and browser. Clearing your browser’s site data for confiteor.org will erase both the encrypted data and the key.

No method of security is perfect. You are responsible for protecting your own device and browser environment.

7. Children’s Privacy

Confiteor is intended for general use by Catholics seeking help with self-examination before confession. Neither the app nor the website is directed to children under 13, and we do not knowingly collect personal information from children.

8. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. The “Effective Date” at the top will reflect the latest update. Continued use of the app or website after updates indicates acceptance of the revised policy.

9. Contact

If you have questions about this Privacy Policy or Confiteor’s data handling, please use the feedback form on the website.

10. Web-Based Confession Prep — Privacy Summary

The Confession Prep tool at confiteor.org/prepare is designed with privacy as a core requirement:

  • No account required — you do not need to sign in or register
  • No server transmission — your selected questions, sin labels, and counts are never sent to any server
  • Browser-only storage — your draft is encrypted and saved in your browser’s localStorage on your own device; the decryption key is stored in IndexedDB and never leaves your browser
  • Encrypted at rest — data is encrypted with AES-GCM 256-bit; even if localStorage is synchronised to another device by a cloud service, it cannot be decrypted without the key, which only exists on the originating device and browser
  • You control your data — use the “Clear All” button in the tool or clear your browser’s site data to erase the draft at any time
  • No analytics on your confession data — we do not track which questions you select or what you type
  • Printing is local — print actions use your browser’s native print function; nothing is transmitted

Data Safety (Google Play)

  • Data collected: None or Minimal (local-only), depending on the import feature you use
  • Camera: Used only for scanning codes (e.g., QR) if you choose to use that feature
  • Network: The app declares the INTERNET permission. It is used solely to download publicly available prayers and examination modules from confiteor.org at the user’s explicit request. No personal data is transmitted.
  • Data shared: No
  • Data stored: On device only (encrypted)