Why Escape does not ask for your email (and why most other apps do)

You download a porn blocker. The first screen asks for your email.

You pause.

There is a small voice in your head that asks the obvious question. "Do I really want this company to have my email address tied to the fact that I am trying to quit porn?"

The answer for most people is no. So they back out. Or they enter a fake email. Or they enter a real one and try not to think about it.

Escape does not ask for your email. There is no sign-up screen. No "create account." No "we just need a few details first." You install the app, you open it, you use it. That is the whole onboarding.

Here is why I built it that way.

What an email costs you, exactly

When an app asks for your email, it is asking for one specific thing. The ability to put your name on a list.

That list is a database row. The row says "this email address downloaded this app for this reason." Over time, the row gets more columns. The dates you logged in. The streak you reported. The journal entries you wrote. The triggers you typed in.

Now you are a database row in a recovery app's backend. Which means:

You are searchable. Anyone with database access can look you up.

You are sortable. Sort by "longest streak." Sort by "lapsed." Sort by "high spender." Marketing teams do this. So do data analysts. So do interns. So do people who quit the company and still have credentials.

You are sellable. If the company is acquired, the database goes with the sale. The acquirer has different priorities. The new owner can decide to monetize what the old owner promised to protect.

You are hackable. The database is a target. If anyone gets in, they get the list. Recently a popular app in this space had exactly this happen. Hundreds of thousands of users got their personal recovery data exposed because of a misconfigured database.

You are subpoena-able. If a court demands the data, the company must comply. They cannot say "we do not have it." Because they do.

All of that flows from one email address typed into one signup screen.

What I gave up to not ask for one

The decision to not collect emails was not free. I gave up real things.

I cannot email you. Which means no "you have been gone for a week, come back" nudge. No upgrade announcement. No "your streak hit 30, congratulations" message. No way to reach you at all once you stop opening the app.

I cannot do password recovery. Because there is no password. Because there is no account.

I cannot personalize your experience based on history. The app does not know who you are between sessions on a deep level. It knows what you wrote on your phone before, because that lives on your phone. But it does not know you across devices the way a server-backed app would.

I cannot send you a newsletter from inside the app. The newsletter at escapethegrip.com/letters is opt-in, separate, and runs through Kit (a third party email service). You choose to give your email to that, separately, if you want. It is not tied to your app usage.

I cannot upsell you in 16 different ways. Most freemium apps do this. Email you when you trigger a paywall. Email you a discount three days later. Email you a "we miss you" four weeks after that. None of those work without an email. None of those happen with Escape.

I cannot show you a leaderboard. I cannot put you in a community. I cannot send your data to your "accountability partner." All of those need accounts. All of those create a paper trail with your name on it.

These are real costs. I am aware of them. I made the trade anyway.

What you got in exchange

Anonymity, by architecture.

The app on your phone is the entire relationship between you and Escape. There is no profile somewhere with your name on it. There is no row in a database. There is no list I can sort you into.

If a court demands "give us the list of users with the longest streaks who live in California," I cannot produce that list. I do not have it. I have never had it. I designed the app so I could never have it.

If a hacker breaks into my servers, they get nothing of yours. Because I do not have servers, and even if I did, your data would not be on them.

If I sell the company tomorrow (I will not, but hypothetically), the new owner gets nothing of yours either. Because there is no database to acquire. The acquirer would be buying the app code and the brand. None of you.

If a future me, broke and desperate, gets tempted to monetize the user base in some shady way, I cannot. The data does not exist. I cannot sell what I do not have.

"But I want to log in on a new phone"

This is the trade-off you should understand before downloading.

If you get a new phone, your app data does not automatically come with it. Apple's iCloud Key-Value Store sync handles some of it (streak, journal text, settings) if you have iCloud turned on. The rest (the apps you blocked, the PIN you set) does not transfer because the iOS frameworks make them device-specific by design.

If you uninstall the app and reinstall it, you start fresh. There is no "log back in and recover my data."

This trips some people up. They expect the cross-device behavior of a normal account-based app. Escape does not give you that. The data is yours, on your device. Apple handles the cross-device sync (if you opt in). I do not.

If you find that limiting, I understand. There are apps for which the cross-device account-based experience is the right trade. For a porn blocker specifically, I think it is the wrong trade. The data is too sensitive.

How to know if an app is doing this honestly

The "no account" claim is easy to make and hard to verify. Some apps say "no account required" but still collect emails through a signup form. Some say "private" but still ship your data to ad networks. Some say "anonymous" but track you by device id, which is just as identifying.

A few things to check on any app that claims to be account-less.

1. Open the App Store page. Look at the Privacy section. The label should say Data Not Collected. If it lists data linked to you (anything other than App Store purchases, which Apple requires for billing), the app is collecting more than they admit.

2. Open the app and look for an onboarding flow. If at any point it asks for an email, the no-account claim is at most partial. Yes you can skip, but the option exists for a reason.

3. Read the privacy policy. Search the document for "email," "name," "address," "identifier." Honest no-account apps will say "we do not collect these." Less honest ones will hedge with "we may collect."

4. Run a packet sniffer for ten minutes. Watch what the app talks to. An honest no-account app talks to Apple's infrastructure and one or two analytics endpoints. A less honest one talks to a dozen third parties.

Escape passes all four. I encourage you to check. The whole point of building it this way was that you should not have to take my word for it.

Where to go from here

If the no-account part matters to you, that is the entire reason Escape exists. The app is on the App Store. It is free to download. The Safari blocker is free forever. Premium features (app blocking for things like Instagram and TikTok, plus a 90-second urge ritual and a one-minute-a-day course) are an optional in-app purchase, handled entirely by Apple's StoreKit so I never see your payment information.

For the longer architectural argument about why no server, this post covers it.

For how the Safari blocker works without seeing what you visit, this post.

Or you can just download the app and try it. Nothing about you leaves your phone.

• Sam

Escape is a Safari content blocker, a 90-second urge ritual, practice games that retrain how you meet an urge, and 27 short courses on identity and the long arc of recovery. No account, no personal tracking.

← All posts