OnTrack Privacy Policy

Last updated: 2026-05-08

OnTrack ("the Service") is a productivity tool consisting of a macOS desktop app and a Chrome extension. This document describes what data is collected, where it is stored, and when (if ever) it leaves your device.

1. TL;DR

All OnTrack data is stored locally on your own computer. We do not operate any backend server. Your activity records are never transmitted off your device — with one explicit exception: if you opt in to "AI Insights," session metadata is sent to Google's Gemini API using your own API key.

2. Operator

• Operator: Yangyeong Jin (independent developer, South Korea)
• Contact: contact@ontrack.so

3. Data We Collect

3-1. macOS App (stored only in local SQLite on your Mac)

• Active window information: app name, window title, bundle_id, and AFK flag — sampled every 1 second (events table)
• Session records: start/end timestamps, session name, intent, status of manual sessions (sessions table)
• User-entered todos and goals: kept in memory and (later) the local DB

3-2. Chrome Extension (stored locally)

• Active tab URL, page title, host (domain), tab count
• Incognito tabs are excluded from collection (web_events table)

3-3. What We Never Collect

• Screen recordings or screenshots
• Keystrokes / typed content
• Passwords, financial data, or identity information
• Incognito browsing history

4. Where Data Is Stored

• Local SQLite database: ~/.ontrack/events.db — exists only on your machine
• Gemini API key: ~/.ontrack/.env — entered by you, never transmitted by us
• Developer-operated servers: none

5. Purpose of Processing

• Visualize your own time usage patterns
• Analyze sessions and focus
• Generate AI-based insights (only if you explicitly enable the feature)

6. Retention

Data is retained until you delete the SQLite file (~/.ontrack/events.db). Deleting the file destroys the data permanently. We never receive a copy.

7. Third-Party Sharing

By default, no data is shared with any third party. The only exception is opt-in: if you enable AI Insights with your own Gemini API key, session metadata (name, duration, app share) is sent to Google. In that case Google's privacy policy applies.

8. Permissions Requested

• macOS Accessibility: read active window titles
• macOS Screen Recording: read window titles of other apps (required by recent macOS versions)
• Chrome permissions: tabs, webNavigation, declarativeNetRequest, <all_urls> host

These permissions are used solely for local data collection. They are not used to record screens or capture keystrokes.

9. Your Rights

• Access: open the SQLite file directly to inspect all data
• Deletion: remove the ~/.ontrack/ folder to erase data immediately
• Stop processing: quit the app or disable the extension
• Opt out of AI: toggle off AI Insights to stop all external transmission

GDPR (EU users)

If you are located in the EU/EEA, you also have the rights to rectification, restriction, portability, and to lodge a complaint with your local Data Protection Authority. Since we operate no servers and hold no copy of your data, access/deletion are accomplished entirely on your device.

CCPA (California users)

We do not sell personal information. We do not collect personal information on any server we operate.

10. Children

OnTrack is not directed to children under 13 (or under 16 in the EEA). We do not knowingly collect data from children.

11. Future Changes

If we ever add optional cloud sync, it will require separate explicit consent, and this policy will be revised in advance.

12. Contact

• Email: contact@ontrack.so