Privacy Policy

Last updated: April 9, 2026

dtangle ("we," "our," or "the Service") is a desktop productivity tool that monitors application and website usage on your computer to help you understand and improve your focus patterns. We take the privacy of this data seriously because it is inherently personal.

1. What We Collect

• Activity data. Application names, window titles, website domains, session durations, idle periods, and timestamps. This is collected by the dtangle desktop application running locally on your computer.
• Account data. Your email address, name, and profile picture from Google when you sign in.
• Device data. Device name, operating system type, and a device identifier for syncing.
• Feedback data. Feature interest signals and optional comments you submit through the product.

2. What We Do Not Collect

• We do not capture screenshots or screen recordings.
• We do not read email content, message content, or file contents.
• We do not record keystrokes.
• We do not collect data from apps or websites you have not used.
• We do not sell, rent, or trade your personal data to third parties.

3. How Data Flows

Activity data is first stored locally on your computer in a SQLite database at ~/.dtangle/activity.db. It is then synced to our cloud servers over HTTPS for processing, insight generation, and cross-device access. You can use the desktop app without cloud sync by running it in offline mode.

4. How We Use Your Data

• To generate attention reports, thread autopsies, and productivity insights.
• To show you dashboards of your activity patterns.
• To enforce usage rules you configure.
• To improve the product based on aggregate, de-identified usage patterns.

5. AI Processing

Activity data may be sent to third-party AI providers (currently Anthropic's Claude API) to generate narrative insights. This data is sent in compressed, de-identified form (app names and domains, not personal content). We use API-only access with no training on your data. Anthropic's API data policy prohibits them from using API inputs for model training.

6. Data Retention

• Detailed activity records are retained for 90 days in our cloud database.
• Aggregated daily statistics are retained for 1 year.
• Your local SQLite database retains all data indefinitely unless you delete it.
• You can request full deletion of your cloud data at any time (see Section 9).

7. Data Security

All data in transit is encrypted via TLS. Cloud data is stored in a PostgreSQL database hosted on Railway with encrypted connections. Device authentication uses per-device API keys with bcrypt-hashed storage. We do not store passwords — authentication is handled entirely through Google OAuth.

8. Third-Party Services

• Google OAuth — for authentication. We receive your email, name, and profile picture. We do not access your Google Drive, Gmail, or Calendar.
• Anthropic Claude API — for generating productivity insights. Activity metadata only; no personal content.
• Stripe — for payment processing. We do not store credit card numbers.
• Railway — for cloud hosting and database infrastructure.

9. Your Rights

• Access. You can export all your data at any time via Settings > Export All Data.
• Deletion. You can delete your account and all associated data via Settings > Delete Account. This is irreversible.
• Portability. Data export is available in JSON format.
• Local control. You can delete your local database at any time by removing ~/.dtangle/activity.db.

10. Children

dtangle is not intended for use by anyone under the age of 16. We do not knowingly collect data from children.

11. Changes to This Policy

We may update this policy from time to time. Material changes will be communicated through the product. Continued use after changes constitutes acceptance.

12. Contact

For privacy questions or data requests, submit a request here.