Pulse
Overview Contact Legal
EN DE
Legal · Privacy · Imprint

The short rules
behind a quiet app.

We tried to write this in human language. If anything is unclear, write to us, we will rephrase it.

On this page
  • Privacy
  • What we share
  • Terms of use
  • Cookies
  • Imprint
  • Contact

Privacy

Last updated · 5 July 2026 · Plain language

Pulse exists to help two people support each other. Health data is the most personal information we will ever touch, so we built the app around one rule: your raw biometric data never leaves your device.

1. Who is responsible

We are the data controller for Pulse: Knightify FlexCo, Rauchgasse 28 Top 2, 1120 Vienna, Austria. Reach our privacy contact at [email protected].

2. What stays on your device

The following is read from Apple HealthKit, processed locally on your iPhone, and never transmitted to our servers or your partner:

  • Resting heart rate, heart rate variability
  • Sleep duration and sleep stages
  • Steps, exercise minutes, standing hours
  • Respiratory rate, blood oxygen, mindfulness sessions
  • Menstrual cycle data (only if you enable Rhythm Awareness)

3. What we send to your partner

Once your iPhone has interpreted your day against your own rolling baseline, it generates a single, human-readable cue, for example, “A calm evening might mean a lot today.” Only the cue and a small set of suggested actions are synced through Apple’s iCloud private/shared database to your partner. When you pair, the profile you choose to show your partner is shared: the first name or display name you pick and, if you set one, your profile photo. Both are end-to-end encrypted on your device with the same key as the chat, so only your partner can see them. A coarse mood label (for example “low energy”) may travel alongside a cue so your partner’s Together screen can gently take on the colour of your day; it is a broad category, never numbers. Nothing else about your identity is sent.

When you’re connected, you can also send each other small gestures (a tap, a “thinking of you”) and direct messages. Those messages are end-to-end encrypted: they’re encrypted on your device with a key kept in your iCloud Keychain and tied to your Apple ID. Only the encrypted text travels through iCloud, neither we nor Apple can read it.

If you send a GIF in chat, the GIF is downloaded to your device, encrypted with the same chat key, and delivered through iCloud like any other message — we cannot see it either. Your GIF search terms, however, are processed by GIPHY, Inc. the moment you open the GIF search (see section 10). If you never open the GIF search, nothing is sent to GIPHY.

A few more things can travel between the two of you, always inside your shared iCloud space and never to us. Memories you add to your shared “Our Story” timeline (a title, a note, an optional place and photo) are end-to-end encrypted like messages. The shared date wishlist syncs as small, plain entries (an idea’s title, category and status, never health data). A gentle “how are we?” signal carries only a fixed phrase key that your partner’s app renders in their own language. And so the chat feels alive, tiny delivery signals travel too: a short-lived “typing” marker and a read receipt, each just a timestamp, never content.

The optional home-screen widget shows your partner’s latest cue and mood from data already on your iPhone; the widget itself sends nothing.

Pulse can also notice short windows of unusual heart signals and offer to share a soft, neutral hint, for example, “Something seems to have stirred them recently.” One rule applies: nothing is sent until you explicitly approve that individual event. You can change the suggested label or keep the moment entirely private. These labels are rough estimates, never diagnoses.

4. The full picture

Signal
On device
Sent to partner
Heart rate, HRV, sleep, steps, breathing, blood oxygen
Yes
Never
Cycle phase
Yes
Never
Wellness cue (a sentence)
Yes
Yes, if you allow it
Suggested gestures
Yes
Yes, if you allow it
Moment signals (unusual activity)
Yes
Only after per-event approval
Messages, GIFs, shared memories (photos included)
Yes
Yes, end-to-end encrypted
Profile name and photo
Yes
Yes, encrypted
Date wishlist
Yes
Yes
Typing and read signals (timestamps only)
Yes
Yes
Marketing trackers, ad IDs
Never
Never

5. What our server stores

To make push notifications work (“New message 💬”, a tap from your partner), the app registers one small delivery record on our server (knightifypulse.com): your iCloud (CloudKit) user ID, your device’s push token, the platform (“ios”), and three on/off notification preferences. This record contains no name, no email, and no health data. The notifications themselves are deliberately content-free — the real content always travels through iCloud. Delivery uses Google Firebase Cloud Messaging and Apple’s push service (see section 10). If you turn on the optional “Pulse Moments” feature (a brief Live Activity in the Dynamic Island when your partner sends a tap, for example), the app additionally registers Apple Live Activity push tokens under the same iCloud user ID. These pushes are content-free too — they carry only a kind (“tap”), a count, and a timestamp, never names, messages, or health data — and are delivered directly through Apple’s push service. Turning the feature off removes those tokens immediately. The whole record is deleted when you delete your account in the app, and tokens that stop working are removed automatically. You can also request its deletion at any time by emailing [email protected].

This website itself sets only strictly necessary cookies (see Cookies) and keeps short-lived technical server logs (IP address, requested page) for security and abuse prevention, as virtually every website does. If you create an account on this website (currently used only to administer the site — the app itself needs no such account), we additionally store your name, email address, a hashed password, optional passkeys/two-factor settings, and session records including IP address and browser type.

6. Your own iCloud backup

So a new iPhone or a reinstall does not erase your shared story, Pulse keeps a personal backup of your chat, your “Our Story” timeline, and your profile settings (names, photos, notification preferences) in your own private iCloud database. It is encrypted on your device before upload, with a key from your iCloud Keychain; we run no server for it and could not read it. Health data is deliberately never part of this backup. After a reinstall the app offers to restore it; if you decline, the backup is erased. It is also erased when you delete your account, or when you end the connection and choose to erase everything.

7. Lawful basis (GDPR / DSG)

We process data on the basis of your explicit consent (Art. 6(1)(a) GDPR, complemented by the Austrian DSG) for health-related signals, and on the basis of contract performance (Art. 6(1)(b)) for the app’s features — pairing with your partner, messages, and the push delivery described in section 5. Because heart signals and cycle data count as special categories of personal data, we rely specifically on your explicit consent under Article 9(2)(a) GDPR for those. You can withdraw consent at any time in Settings → Privacy & Safety → How your data is used, and the app stops processing immediately. Technical server logs and website security rest on our legitimate interest in operating the service safely (Art. 6(1)(f)). Cues are generated entirely on your device; no automated decision-making with legal or similarly significant effect within the meaning of Article 22 GDPR takes place. Pulse is intended for adults (18+) and is not directed at children.

8. Your rights

  • Access, rectification, erasure, restriction of processing, data portability, and objection (Art. 15–21 GDPR) — just write to [email protected]; we respond within one month at the latest.
  • Withdraw your consent to health-data processing at any time (Settings → Privacy & Safety → How your data is used); Pulse immediately stops reading and interpreting your Health data.
  • Pause sharing instantly at any time, invisibly if you prefer, and resume whenever you choose.
  • End the connection at any time: the shared records in iCloud are removed, and you choose whether the chat and story stay on your device just for you or are erased everywhere, including your backup. As with any conversation, your partner keeps their own copy of messages already delivered to their device.
  • Download your data as a single JSON file.
  • Delete your account directly in the app (Settings → Privacy & Safety → “Delete my account”), or by email to [email protected].
  • Lodge a complaint with a supervisory authority (DSB in Austria, your local DPA in the EU).

9. Retention

Pulse keeps no health accounts on servers of our own. The only records at our end are the push-delivery record described in section 5 (kept until you delete your account or the token stops working) and a message you send us through the contact form, covered just below. Shared cues expire at the end of the calendar day and are removed from iCloud automatically. The encrypted transport copies of messages, GIFs, and shared memories clean themselves out of iCloud within about seven days of delivery; the readable copies live on your two devices (and in each partner’s own encrypted iCloud backup, section 6) until you delete them, end the connection with erase, or delete your account. Typing signals disappear after seconds, “how are we?” signals after twelve hours, and key and profile records renew themselves and expire within thirty days. Invite codes expire after 48 hours. Website sessions end automatically after a short period of inactivity. If you delete your account in the app, local data, the partner connection, all cues and messages synced to iCloud, your encrypted iCloud backup, and the push-delivery record on our server are removed immediately.

10. Service providers, processors & international transfers

  • Apple (iCloud / CloudKit, push): sync & storage of shared cues and encrypted messages, inside your own iCloud account, plus delivery of notifications to your device. Apple acts as our processor; for EU users the data generally stays within the EU.
  • Google Ireland Ltd. / Google LLC (Firebase Cloud Messaging): delivers the push notifications. For that, Google receives your device’s push token and the content-free notification text — never health data, never message content. Analytics and advertising are disabled in our Firebase configuration.
  • GIPHY, Inc. (GIF search): only when you open the GIF search in chat, GIPHY processes your search terms and standard technical request data (e.g. IP address) to return results. The GIF you send travels encrypted through iCloud, not through GIPHY.
  • Fastmail (support email) and our web hosting provider (operating knightifypulse.com).

Where these providers process data in the United States (Google, GIPHY, Fastmail), we rely on the EU adequacy decision for the EU-US Data Privacy Framework and/or EU Standard Contractual Clauses (Art. 44 et seq. GDPR). If Pulse introduces paid plans in the future, payment will run through the Apple App Store; payment data never reaches us. No advertising, analytics, or attribution providers, and we never sell data.

11. When you write to us

If you use the contact form, your message is delivered by email to our support inbox; we keep your name, email, optional country, and message there so a real person can reply. We use them only to answer you, on the basis of taking steps at your request and our interest in handling enquiries (Art. 6(1)(b) and (f) GDPR). We delete enquiries once the conversation is clearly finished, and you can ask us to erase yours sooner at [email protected].

Terms of use

Effective · 10 June 2026 · Governing law · Austria

1. What Pulse is, and is not

Pulse is a wellness companion. It is not a medical device, diagnostic tool, or substitute for professional health advice. The cues Pulse generates are suggestions, not statements of fact, and use language like “might” and “could” for that reason.

2. Account & eligibility

You must be 18 or older to use Pulse. You are responsible for keeping your Apple ID and device secure. One account per person.

3. Pricing

Pulse is currently free. If we introduce a paid subscription later, it will run exclusively through the Apple App Store, announced clearly in advance, and you will be able to cancel at any time. Nothing you already share and see will be moved behind a paywall retroactively without asking you first.

4. Acceptable use

  • Do not use Pulse to monitor someone without their continuous, informed consent.
  • Do not attempt to reverse-engineer the on-device interpretation models.
  • Do not use Pulse in any safety-critical or medical context.

5. Liability

To the extent permitted by Austrian law, Pulse is provided “as is”. We are not liable for relationship outcomes, missed cues, or decisions made based on a wellness suggestion. Our total liability is limited to the fees you paid in the previous twelve months. Nothing in these terms limits our liability for intent or gross negligence, for personal injury, or your mandatory statutory rights as a consumer.

6. Termination

You may delete your account at any time. We may suspend accounts that violate these terms, with notice where possible.

7. Jurisdiction

Austrian law applies. Exclusive place of jurisdiction is Vienna, Austria, without prejudice to mandatory consumer protection in your country of residence.

Cookies

This website stores exactly one thing in your browser, and only in your browser:

  • pulse.theme, your light / dark preference.
  • a strictly necessary session cookie and a CSRF security token (XSRF-TOKEN) that the website’s framework sets for safe operation — they contain no profile, expire after a short time, and as strictly necessary cookies require no consent.

Your language lives in the address (/en or /de), nothing needs to be stored for that. No advertising cookies. No analytics. No third-party trackers.

Imprint

Provider information pursuant to § 5 ECG / § 14 UGB (Austrian law).

Provider

Knightify FlexCo
Rauchgasse 28 Top 2
1120 Vienna
Austria

Contact

E-Mail: [email protected]
Website: knightify.tech

Business purpose

Software product development and operation, as well as custom software engineering.

Legal form

FlexCo (Austrian Flexible Company).

Companies Register number

FN 666564 t

Companies Register court

Commercial Court Vienna

Management

Amirali Khoshneviszadeh

VAT identification number

to be added upon issuance.

Editorial responsibility

Responsible for content: Knightify FlexCo, Rauchgasse 28 Top 2, 1120 Vienna, Austria.

Content on this website is created with the utmost care. However, no guarantee can be given regarding accuracy, completeness, or timeliness.

Liability for links

This website contains links to external third-party websites whose content we cannot influence. The respective provider is always responsible for the contents of the linked pages.

Copyright

Content and works on this website created by Knightify FlexCo are subject to copyright. Any duplication or use beyond the limits of copyright law requires written consent.

Online dispute resolution (EU)

The EU’s former online dispute resolution platform was discontinued on 20 July 2025. Consumers can address complaints directly to us ([email protected]) or to the competent consumer-protection and supervisory authorities.

We are, however, not obliged and generally not willing to participate in dispute resolution proceedings before a consumer arbitration body.

One last thing

If you read this far, you are exactly the kind of person we built Pulse for. If anything here feels off, write to us, we will rewrite it.

Write to us →

Pulse

A privacy-first companion for couples. Designed in Vienna, built for iOS and Apple Watch.

Pulse

  • Overview
  • How it works
  • Download on the App Store

Company

  • Contact
  • Press
  • Careers

Legal

  • Privacy
  • Terms
  • Imprint
© 2026 Knightify FlexCo · Wien, AT
Pulse is a wellness tool, not a medical device.
Pulse.