Last updated: April 12, 2026
NoDice ("we", "our", or "the app") is a mobile application designed to help people quit gambling by blocking access to gambling websites and apps on their device. We take your privacy seriously. This policy explains what data we collect, how we use it, and your rights.
When you create an account, we store your email address and a hashed password in our authentication system (powered by Supabase). We also store the profile information you provide during onboarding: your quit date, estimated monthly gambling spend, and total historical losses. If you log a slip-up, that entry (date, gambling type, amount bet, amount lost, and any notes) is stored in our database and tied to your account.
NoDice uses a local DNS filter (Network Extension) that runs entirely on your device. We do not see, log, transmit, or store any information about the websites you visit, the apps you use, your DNS queries, or your browsing activity. The blocking happens on your phone and no traffic is routed through our servers. We do not collect your location, contacts, photos, health data, or any device identifiers for advertising purposes.
Your account data is used solely to provide the app's features: tracking your gambling-free streak, calculating your savings, and storing your slip-up history. We do not sell, share, or rent your personal data to any third party. We do not use your data for advertising or marketing purposes.
We use the following third-party services:
Supabase — for authentication and database storage. Your account and profile data is stored on Supabase's servers. Their privacy policy is available at supabase.com/privacy.
RevenueCat — for subscription management. RevenueCat processes your subscription status but does not have access to your profile, streak, or slip-up data. Their privacy policy is available at revenuecat.com/privacy.
Apple — for in-app purchases and app distribution via the App Store. Apple's privacy policy is available at apple.com/privacy.
Your data is retained for as long as your account is active. You can delete your account and all associated data at any time from the Settings screen in the app. When you delete your account, we permanently remove your profile, blocked sites list, slip-up history, and authentication record.
All data transmitted between the app and our servers is encrypted using HTTPS/TLS. Passwords are hashed and never stored in plain text. We use Supabase's row-level security to ensure users can only access their own data.
NoDice is not intended for children under the age of 17. We do not knowingly collect data from children. If you believe a child has provided us with personal data, please contact us and we will delete it.
We may update this privacy policy from time to time. If we make significant changes, we will notify you through the app or by other means. The "last updated" date at the top of this page reflects the most recent revision.
If you have questions about this privacy policy or your data, contact us at spencerrhaas@gmail.com.