Guide April 02, 2026 4 min read

Telemetry in recovery apps: what's reasonable, what isn't

"Telemetry" is just the technical word for an app phoning home with information about how it's being used. It's not automatically a privacy problem — most apps need some of it to fix bugs and improve the product. But for recovery apps, where the data is unusually sensitive, the line between reasonable telemetry and overstep is worth being clear about.

What telemetry usually means

When you open an app, the app may send small signals back to the developer's servers. Common things included:

  • "User opened the app."
  • "User viewed the urge-ritual screen."
  • "User completed lesson 3 of course X."
  • "App version 4.5, iOS 18.2, English locale."
  • "App crashed on screen Y at line Z."

None of this is the content of what you wrote, said, or browsed. It's signals about behavior — which features get used, which screens get visited, where the app crashes, what versions are in the wild.

Why developers want it

Three legitimate reasons:

  • Fix what's broken. If 12% of users crash on the urge ritual screen on iOS 18.2, the developer needs to know.
  • Improve what's working. If a feature is used heavily, expand it; if a feature is used by no one, kill it. Without telemetry, the developer is guessing.
  • Understand the user base. Aggregate signals — most users are on iPad, most are in English, most use the app at night — shape product decisions.

An app that ships with zero telemetry is operating blind. Bug fixes are slower. Improvements miss the mark. The developer is making decisions based on Twitter complaints from the loudest 0.5%.

The line between reasonable and not

Reasonable telemetry, in roughly increasing order of intrusiveness:

  1. App version, OS version, locale. (Required for almost any app to function.)
  2. Crash reports — what crashed, what state the app was in. (Required to fix bugs.)
  3. Anonymous feature-usage counts ("X% of users completed lesson 1"). (Aggregate, not personally identifying.)
  4. Anonymous behavioral patterns ("most urge rituals are completed between 10pm and midnight"). (Useful product insight, no individual identification.)

Cross the line into not-reasonable when:

  1. Telemetry is tied to a unique identifier that's also tied to your real-world identity (email, name, phone). Now your usage patterns are personally identifiable.
  2. The telemetry includes content — what you wrote, what you said, what you flagged. This is no longer telemetry; it's surveillance.
  3. The telemetry feeds third-party advertising or attribution networks. Now your behavior is being shared beyond the app.
  4. The telemetry tracks you across other apps via Apple's IDFA system. Cross-app tracking is a different category of privacy concern entirely.

How to tell what an app is doing

Three signals:

  1. App Store privacy label. If the app uses anonymous telemetry only, "Diagnostics" and "Usage Data" should appear under Data Not Linked to You. If they appear under Data Linked to You, it's tied to your identity. How to read the label.
  2. Privacy policy. Search for "analytics" — most policies list the providers. Look for: TelemetryDeck, Plausible, Fathom, Cloudflare Analytics (privacy-respecting). Or: Mixpanel, Amplitude, Heap, Segment, AppsFlyer (more aggressive).
  3. App Store description disclosure. Some apps explicitly state their telemetry stance. "Anonymous telemetry only" or "no third-party trackers" is a real statement when followed by the privacy label that backs it up.

What Escape uses

For transparency: Escape uses TelemetryDeck — a privacy-first analytics provider. Specifically:

  • Signals are anonymous (no user identifiers, no personal data).
  • What's tracked: which features get used, which screens are viewed, where the app crashes, what version of iOS users are on. Aggregate counts only.
  • What's never tracked: journal content, voice notes, urge text, custom block list, browsing data (the blocker can't see browsing anyway), what you wrote in any reflection.
  • TelemetryDeck strips IP addresses on the way in (so even the analytics provider doesn't know your location).
  • App Store privacy label reflects this: "Diagnostics" and "Usage Data" both under Data Not Linked to You. Nothing in Data Linked to You. Nothing in Data Used to Track You.

That's the telemetry posture we think is right for this category. Anonymous signals to make the product better, no individual user identification, no third-party advertising or attribution networks. Full privacy policy spells it out.

For the broader privacy framework — including how to evaluate any recovery app's overall privacy — see the privacy pillar and the 10-minute evaluation guide.

Escape is a Safari content blocker, a 90-second urge ritual, practice games that retrain how you meet an urge, and 27 short courses on identity and the long arc of recovery. No account, no personal tracking.

Download on the App Store
Related
What to know about privacy before you install a porn-recovery appHow to evaluate any recovery app's privacy in 10 minutesWhat a Safari content blocker can — and can't — see

← All posts

Get Escape on the App Store