Privacy Policy
UMM — Understanding Myself More
Last updated: 2 June 2026
UMM (“we”, “us”) is a self-recognition tool for late-recognised neurodivergent adults. It helps you notice your own patterns and put them into your own words — a place to think, not a diagnosis, and not a friend.
Your privacy is part of how UMM is built, not an afterthought. This page explains, plainly and in full, what happens to your information when you use UMM — including the few moments it leaves your device, and what we do and don’t keep.
1. The short version
- Almost everything you do in UMM — your walk through the wizard, your notes, your self-portrait — lives on your own device, not on our servers.
- To unlock the PDF reports you sign in with your email. That creates an account, so we do hold your email address and some basic sign-in information.
- When you generate a PDF, your answers are sent to our server to build the document and then sent straight back to you. We don’t keep a copy.
- UMM uses a privacy-first analytics tool (Plausible) to count which screens get used — anonymous, cookieless, and never anything from your walk — and you can switch it off. We never sell or share your information.
- You can delete your account and everything tied to it, from inside the app, at any time.
- Any questions: hello@gotumm.com.
2. What you put into UMM, and where it lives
As you move through UMM you build up a picture of yourself: your answers in the wizard (including the more tender sections — sleep, your inner voice, close relationships, where you come from), your diary entries, your self-portrait, and any words you’ve coined for your own experience.
All of this is stored on your device — the everyday parts in the app’s local storage, and the more sensitive parts in your device’s secure store (the Keychain on iOS, the Keystore on Android). It stays there. There is no background sync and no copy on our servers. If you clear the app’s data, or use “Reset” or “Delete account”, it’s gone from the device — and because we never held it, gone entirely.
3. Signing in, and what your account holds
UMM is free to walk through. Signing in is only needed to unlock the PDF reports.
You sign in with your email and a one-time magic link — there is no password. When you do, we create an account keyed to your email, and our server holds:
- your email address;
- whether you have access to the reports, and the dates around that;
- and, for each sign-in, some basic technical details about the request (such as your network (IP) address and the type of device or app making it), used only to make sign-in work and to keep it secure.
Sign-in tokens are stored scrambled (hashed), never in plain form, and the short-lived ones are deleted automatically once they have been used or have expired. We don’t build a profile of you, and your email isn’t added to any mailing list.
4. Generating a PDF — the one time your answers leave the device
When you choose to create a report — your self-portrait, or the summary for a clinician — your answers are sent to our server, which builds the PDF and sends it straight back to your device to save or share.
Two things worth being clear about: your answers are used only to build that document in the moment — they are not stored on the server afterwards — and the finished PDF is not kept by us either. Once it’s on your device, what you do with it is yours; if you share it with a clinician or anyone else, it leaves UMM’s care and becomes a document like any other, for you to look after.
5. Email
The only email UMM’s system sends is your sign-in link, delivered through our email provider (Resend). That involves your email address and the link itself — nothing from your walk is ever emailed.
If you write to us at hello@gotumm.com, we’ll see your message and reply, and we won’t add you to anything. Email isn’t fully private in transit, so please don’t include sensitive health details in a message to us.
6. Analytics
UMM uses Plausible to understand, in aggregate, how the app is being used — how many people open it, and which screens get visited — so we can spot what’s broken and make it better. It’s there to count use, not to profile you.
Plausible is a privacy-first, EU-hosted analytics service: no cookies, no advertising identifiers, no personal data, and no following you across other apps or sites. When a screen opens, UMM sends Plausible the name of that screen, and Plausible records only aggregate, anonymous things — a coarse country (worked out from your IP address, which is then immediately discarded and never stored) and a general device type. Unique visits are counted with a temporary key that rotates every day and can’t be traced back to you.
UMM never sends Plausible anything from your walk — not your wizard answers, your diary, your self-portrait, your coined words, your email, or your account. The most personal screens, your diary and the founder’s story, are left out of analytics entirely. You can switch analytics off in Settings → Privacy at any time.
7. Who else is involved
UMM runs on Cloudflare’s infrastructure, which stores your account record and runs the PDF rendering; uses Resend to send the sign-in email; and uses Plausible (privacy-first, EU-hosted) for the anonymous analytics described above. These providers handle data on our behalf under their own data-protection commitments. We don’t share your information with anyone else, and never for advertising.
8. What UMM doesn’t ask for
UMM doesn’t request access to your camera, microphone, location, contacts, photos, or health records. It doesn’t need them, so it doesn’t ask.
9. Keeping and deleting your data
Your walk lives on your device and is yours to clear at any time. Reset wipes your walk so you can begin again, while keeping your account. Delete account erases everything — on your device, and on our server (your account, your email, and your sign-in records) — and it can’t be undone. Sign-in tokens are cleared automatically once they’re spent. In the ordinary course of using UMM, we hold nothing from your actual walk on our servers.
10. What UMM is, and isn’t
UMM is not a medical device. It doesn’t diagnose, treat, or monitor anything, and it isn’t a substitute for advice from a qualified professional. It’s a place to recognise yourself and put your experience into words — to walk alongside you, not to tell you what you are. If something it surfaces resonates, that’s yours to take wherever you choose.
11. Security
Because most of your information stays on your device, its safety depends partly on your device’s — so keeping it locked and your software up to date matters. Everything UMM sends travels over encrypted (HTTPS) connections, and your sign-in token is held in your device’s secure store rather than in ordinary storage.
12. Your rights
Under UK and EU data-protection law (and equivalents elsewhere) you can ask what we hold about you, correct it, delete it, or object to how it’s used. For your on-device information, those rights are already in your hands — it’s yours to view and clear directly. For the limited information tied to your account, email us at hello@gotumm.com, or use Delete account to remove it yourself. You can also complain to a supervisory authority — in the UK, the Information Commissioner’s Office.
13. Children
UMM is made for adults. It isn’t directed at children, and isn’t suitable for them. Different places set the age of digital consent differently; if you’re below it where you live, please use UMM only with a parent or guardian involved.
14. Where your data is handled
UMM is available internationally. Our infrastructure (Cloudflare) and our email provider (Resend) operate across regions, and email to hello@gotumm.com reaches an inbox in the United Kingdom. Because your walk stays on your device, it isn’t part of any international transfer.
15. Changes to this policy
If we change how UMM handles your information, we’ll update this page and the date at the top, and for anything significant we’ll say so in the app itself.
16. Contact
For anything at all about your privacy: hello@gotumm.com.
UMM is built on a simple idea: the words you find for yourself are yours to keep. This policy is how we mean to honour that.