Privacy Policy

Last Updated: February 9, 2026

Brainsoft Oy
Email: roberto@brnsft.com
Website: www.brnsft.com

Our Privacy Commitment

We believe your productivity data is personal and should stay that way. This Privacy Policy explains what data we collect, why we collect it, and how we protect your privacy across all our services.

Key Principles:

  • 🔒 Your productivity data stays on your device - We never upload it to our servers
  • 🎯 Minimal collection - We only collect what's necessary to improve our services
  • 🌍 GDPR compliant - Full transparency and user rights
  • 🚫 No selling - We never sell your data to third parties

Table of Contents

  1. What This Policy Covers
  2. Data We Collect
  3. How We Use Your Data
  4. Data Storage and Security
  5. Third-Party Services
  6. Your Rights (GDPR)
  7. Cookies and Tracking
  8. Children's Privacy
  9. Changes to This Policy
  10. Contact Us

What This Policy Covers

This Privacy Policy applies to:

  • Ikuna - Our macOS productivity tracking application
  • Our Website - www.brnsft.com and associated domains
  • Any other services - Current or future services we may offer

Data We Collect

1. Ikuna Application

A. Data Stored Locally on Your Device (Never Uploaded)

Productivity Tracking Data:

  • Application names and window titles you use
  • Activity levels (Actions Per Minute - APM)
  • Context switches between applications
  • Deep work session durations
  • Break times and idle periods
  • Workspace configurations (apps, positions, settings)

Important: This data is stored entirely on your Mac and is never transmitted to our servers or any third party.

B. Analytics Data (Anonymized & Transmitted)

To improve Ikuna, we collect anonymized technical information via Google Analytics 4:

System Information:

  • Country (from system locale, not IP address)
  • Language preference
  • Timezone offset
  • macOS version
  • App version
  • Subscription tier (free/premium)

Usage Events:

  • App launches and closes
  • Feature usage (which screens you visit)
  • Workspace switches
  • Settings changes
  • Onboarding completion

Workspace Metadata (Anonymized):

  • Workspace type (work/personal/development/creative/etc.) - detected from keywords
  • Name length and word count
  • Whether workspace has emojis or numbers
  • Whether default name is used
  • NOT the actual workspace name

What We Don't Collect:

  • ❌ IP addresses
  • ❌ Personal names or email addresses
  • ❌ Actual workspace names
  • ❌ Specific app names or window titles from your productivity data
  • ❌ File paths or content
  • ❌ Browsing history
  • ❌ Any personally identifiable information

Legal Basis: Legitimate interest in improving our product (GDPR Art. 6(1)(f))

2. Website (www.brnsft.com)

A. Data Collected Automatically

When you visit our website, we automatically collect:

Usage Data:

  • Pages viewed
  • Time spent on pages
  • Clicks and navigation patterns
  • Session statistics
  • Referral sources (how you found us)

Device Information:

  • Device type and operating system
  • Browser type and version
  • Language preference
  • IP address and approximate location (country/city level)

Legal Basis: Legitimate interest in website analytics and security (GDPR Art. 6(1)(f))

B. Data You Provide

If you contact us or fill out forms:

  • Name and email address
  • Message content
  • Any other information you choose to provide

Legal Basis: Consent (GDPR Art. 6(1)(a)) or contract performance (GDPR Art. 6(1)(b))

How We Use Your Data

Ikuna Application

  • Improve the app: Understand which features are used and prioritize development
  • Fix bugs: Identify and resolve technical issues
  • Measure engagement: Track retention and user satisfaction
  • Optimize performance: Ensure compatibility across macOS versions
  • Understand usage patterns: Learn how different user types use Ikuna (developers vs. designers, etc.)

Website

  • Operate and secure: Keep the website running and protected
  • Analytics: Understand visitor behavior and improve content
  • Communication: Respond to your inquiries
  • Marketing: Measure campaign effectiveness

Data Storage and Security

Ikuna Application

Local Storage:

  • All productivity data is stored in: ~/Library/Application Support/Ikuna/
  • Data is stored in local databases (Core Data/SQLite)
  • Only you have access to this data on your device

Analytics Data:

  • Transmitted over HTTPS to Google Analytics
  • Stored on Google's servers (see Third-Party Services)
  • Retained for 14 months, then automatically deleted

Security Measures:

  • Local data is protected by macOS file permissions
  • Analytics transmission uses encrypted HTTPS
  • No cloud storage of productivity data

Website

Hosting:

  • Hosted on Squarespace servers (United States)
  • Protected by industry-standard security measures
  • HTTPS encryption for all connections

Third-Party Services

We use the following third-party services that may process your data:

Google Analytics 4

Squarespace

  • Provider: Squarespace, Inc.
  • Purpose: Website hosting and platform services
  • Data Processed: Device info, geography, language, usage data
  • Location: United States
  • Privacy Policy: Squarespace Privacy Policy

Google Tag Manager

  • Provider: Google LLC
  • Purpose: Manage website tracking tags
  • Data Processed: Trackers, usage data
  • Location: United States
  • Privacy Policy: Google Privacy Policy

Meta Events Manager (Facebook Pixel)

  • Provider: Meta Platforms, Inc.
  • Purpose: Website analytics and advertising
  • Data Processed: Browsing history, clicks, trackers, usage data
  • Location: United States
  • Privacy Policy: Meta Privacy Policy
  • Opt-out: Your Meta account settings and browser settings

Paddle (Payment Processing)

  • Provider: Paddle.com Market Limited
  • Purpose: Payment processing and license management
  • Data Processed: Payment information, email, license details
  • Location: United Kingdom/United States
  • Privacy Policy: Paddle Privacy Policy

Your Rights (GDPR)

If you are in the European Union, you have the following rights:

Right to Access

Request a copy of the personal data we hold about you.

Right to Rectification

Request correction of inaccurate or incomplete data.

Right to Erasure ("Right to be Forgotten")

Request deletion of your personal data.

For Ikuna: Simply uninstall the app to delete all local data. For analytics data, contact us at privacy@brnsft.com.

Right to Restriction

Request that we limit how we use your data.

Right to Data Portability

Request your data in a machine-readable format.

Right to Object

Object to processing based on legitimate interests.

Right to Withdraw Consent

Withdraw consent at any time (where processing is based on consent).

How to Exercise Your Rights

Email us at: privacy@brnsft.com

We will respond within 30 days as required by GDPR.

Cookies and Tracking

Website Cookies

Our website uses cookies and similar tracking technologies:

Essential Cookies:

  • Session management
  • Security features
  • Required for website functionality

Analytics Cookies:

  • Google Analytics
  • Meta Pixel
  • Usage tracking

Managing Cookies: You can control cookies through:

  • Your browser settings
  • Our cookie consent banner (when you first visit)
  • Third-party opt-out tools

Ikuna Application

The Ikuna app does not use cookies. It stores:

  • User preferences in macOS UserDefaults
  • Productivity data in local databases
  • A random UUID for anonymous analytics

Children's Privacy

Our services are not directed to children under 16. We do not knowingly collect personal data from children. If you believe we have collected data from a child, please contact us immediately at privacy@brnsft.com.

Data Retention

Ikuna Application

  • Local productivity data: Retained indefinitely on your device until you delete it
  • Analytics data: Automatically deleted after 14 months

Website

  • Analytics data: Retained according to third-party policies (typically 14-26 months)
  • Contact form data: Retained as long as necessary to respond to your inquiry

International Data Transfers

We are based in Finland (EU), but some of our service providers are in the United States:

  • Google Analytics (US)
  • Squarespace (US)
  • Meta (US)

These transfers are protected by:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Adequacy decisions where applicable
  • Privacy Shield successor frameworks (where applicable)

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

  • Updating the "Last Updated" date at the top
  • Posting a notice on our website
  • Sending an email notification (if we have your email)
  • In-app notification (for Ikuna users)

Your continued use of our services after changes constitutes acceptance of the updated policy.

Contact Us

For privacy questions, to exercise your rights, or to report concerns:

Email: roberto@brnsft.com
Website: www.brnsft.com
Company: Brainsoft Oy (Finland)

Data Protection Officer: For GDPR inquiries, contact roberto@brnsft.com

Legal Information

Data Controller:
Brainsoft Oy
Finland
roberto@brnsft.com

Supervisory Authority:
If you are in the EU and have concerns about how we handle your data, you can lodge a complaint with your local data protection authority or the Finnish Data Protection Ombudsman.

Last Updated: February 9, 2026
Version: 1.0