Wajib

Privacy Policy

Effective July 10, 2026

Wajib is developed by Sami Fathi ("I", "me", "the developer"). This policy explains what data Wajib collects, where it lives, and how it's used. Wajib is a personal productivity tool — it is not funded by advertising, and I do not sell or share your data with third parties for marketing purposes.

Data stored on your device

Everything you put into Wajib — obligation titles, notes, due dates, completion status, and the context data attached to each item (e.g. a note's source text, a location, a linked photo) — is stored locally on your device using Apple's SwiftData framework.

iCloud sync

If you're signed in to iCloud, Wajib syncs your data across your own devices using Apple's CloudKit private database. This sync is end-to-end within Apple's infrastructure and tied to your Apple ID — I do not have access to, and cannot read, data in your private CloudKit database.

Sign-in

Wajib supports Sign in with Apple. I receive only what Apple's Sign in with Apple flow provides (a stable identifier, and your name/email only if you choose to share them) — I never see or store your Apple ID password.

On-device intelligence

Wajib uses on-device machine learning to help capture and organize obligations — including Apple's on-device Foundation Models, Apple's Vision framework (for handwriting and photo text recognition), and on-device speech transcription. This processing happens entirely on your device. Nothing you write, dictate, photograph, or handwrite for this purpose is sent to me or to any server I operate.

Permissions you can optionally enable

In Settings, you can individually enable additional sources Wajib can read from to suggest or create obligations: Calendar, Reminders, Contacts, Photos, Location, Health, and Journal. Each is off by default, requires its own iOS permission prompt, and is used only to populate obligations on your device — none of this data is transmitted to me.

Third-party integrations you can optionally connect

Wajib can optionally connect to Notion, Slack, and other services you explicitly authorize. Access tokens for these connections are stored in your device's iOS Keychain — never on a server I operate, and never in iCloud sync.

Email capture and the ChatGPT connector

Wajib gives you a personal capture address and a ChatGPT connector so you can add obligations from outside the app. Content you send this way (a forwarded email, or a message to the Wajib ChatGPT app) is briefly held in a queue on a small server I operate, until your device retrieves it — at which point it's deleted from the server. This is the one case where text you capture passes through infrastructure I operate rather than staying only on your device. It is transmitted over HTTPS, held only as long as needed for delivery, and is not used for any purpose beyond getting the item into your Wajib inbox.

What I don't do

Data deletion

Deleting an obligation in Wajib deletes it locally and from your iCloud sync. Uninstalling Wajib removes all local data from your device. To request deletion of anything held in the capture queue described above, or to ask a question about your data, contact me at the address below.

Children's privacy

Wajib is not directed at children under 13, and I do not knowingly collect data from children under 13.

Changes to this policy

If this policy changes in a material way, I'll update the effective date above. Continued use of Wajib after a change means you accept the updated policy.

Contact

Questions about this policy or your data: me@samifathi.com