Hopbit Privacy Policy
Last updated: July 6, 2026
Overview
This privacy policy describes how Hopbit ("the App") handles information when you use our mobile client for Rybbit analytics.
Hopbit is an independent third-party client. It is not affiliated with, endorsed by, or sponsored by Rybbit or its maintainers.
The App connects to the Rybbit URL you provide. We do not operate Rybbit servers and do not receive your analytics data on our own systems.
Information stored on your device
When you sign in, the App stores the following data locally on your device using the iOS Keychain and in-memory app storage:
- Your Rybbit instance base URL
- Your Rybbit API key
- App preferences such as selected site, chart time range, chart metric, and biometric lock setting
- Temporary cached dashboard responses to speed up reloads
Information we do not collect
The App developer does not collect, sell, or use the following:
- Analytics or usage telemetry sent to the App developer
- Advertising identifiers or cross-app tracking
- Crash reports sent to third-party services
- Your Rybbit API key or dashboard data on developer-controlled servers
Data sent to your Rybbit URL
To show your dashboard, the App sends API requests directly from your device to the Rybbit URL you provide. Those requests include your API key for authentication.
What that server stores and how it is used is governed by its operator. See the Rybbit privacy policy at https://rybbit.com/privacy.
Biometric unlock
If you enable biometric lock, the App uses Face ID or Touch ID through Apple's LocalAuthentication framework to unlock the App on this device.
Biometric data is processed by iOS. It is not transmitted to the App developer or to your Rybbit server.
Widgets
If you add Hopbit home screen or lock screen widgets (Site Pulse), the App syncs a small snapshot of dashboard metrics to on-device widget storage so the widget can update without opening the App.
Widget snapshots may include site name, selected time window labels, summary counts, a short sparkline of recent users, and an optional site icon cached on your device.
Widget data stays on your device. It is not sent to the App developer. Refreshing a widget may request updated metrics from the Rybbit URL you configured, using the same on-device API key as the App.
Third-party SDKs
The App uses Expo modules for secure storage and biometric authentication. It does not include third-party analytics, advertising, or crash-reporting SDKs.
- expo-secure-store — stores credentials in the iOS Keychain
- expo-local-authentication — optional Face ID / Touch ID app lock
Retention and deletion
Credentials and preferences remain on your device until you sign out or delete the App.
Sign out in Settings removes your API key, instance URL, and saved preferences from this device. Cached dashboard data is cleared when you sign out.
To remove data stored on your Rybbit deployment, use your Rybbit dashboard or whoever operates that server.
Children's privacy
The App is not directed at children under 13. We do not knowingly collect personal information from children.
Changes
We may update this policy from time to time. The "Last updated" date at the top of this policy will change when we do.
Contact
Hopbit is published by GOSYNRGY LLC (GoSynrgy).
For privacy or support questions about this App, email developer@gosynrgy.com.
You can also use the Support URL listed on this app's App Store page.