Beta Pricing: Get 30% off while we're in beta!

BETA30

Privacy Policy

Effective Date: February 20, 2026

1. Introduction

Welcome to SupaSidebar! Your privacy is important to us, and this Privacy Policy explains how we collect, use, and protect your information when you use our macOS application and website.

2. Information We Collect

SupaSidebar is designed with privacy in mind. We collect minimal information to provide and improve our services:

  • Email Address: When you purchase a license or contact support, we collect your email address for license management, authentication, and communication purposes.
  • License Information: We store license keys, activation status, and device associations to manage your SupaSidebar license and prevent unauthorized use.
  • Website Cookies: Our website uses cookies to maintain your session and remember preferences for the licensing and download system.
  • Desktop App Analytics: The SupaSidebar macOS app collects anonymous usage data to help us understand which features are useful and how to improve the app. See Section 2a below for the full details of exactly what is collected.

2a. Desktop App Analytics: Exactly What We Collect

We believe in being completely transparent. Here is the full list of what the SupaSidebar macOS app collects. Nothing more, nothing less.

What we collect

  • App opens and session length: We know when you open the app and how long you use it. This tells us if people find the app useful enough to keep coming back.
  • Feature usage: We track which features you use (for example, toggling the sidebar, opening links, switching spaces, or using keyboard shortcuts). We only record that a feature was used, not what content was involved.
  • Feature settings: We check which features you have turned on or off (like Live Tabs, Mouse Triggers, Compact Mode, etc.). This helps us understand which features matter most to our users.
  • Content counts: We record how many spaces and links you have created (just the count, not the content itself).
  • App version and macOS version: So we know which versions to support and when it's safe to drop older ones.
  • License status: Whether you're on a trial, free, or paid plan.
  • Device identifier: A random hardware ID generated by your Mac, used to count unique users. This ID cannot be used to identify you personally.

What we DO NOT collect

  • Your name, email, or any personal information
  • URLs, page titles, or any browsing history
  • The content of your links, folders, or spaces
  • Anything you type, search for, or copy
  • Screenshots, clipboard data, or file contents
  • Information about other apps on your Mac

You are in control

You can turn off all desktop app analytics at any time from Preferences > About > Share Only Feature Usage Data. When you turn it off, no data is collected or sent. The app works exactly the same either way.

3. How We Use Your Information

We use your information for the following purposes:

  • License Management: To validate licenses, manage device activations, and ensure compliance with licensing terms.
  • Product Improvement: To analyze usage patterns, understand user behavior, and improve SupaSidebar's features and performance.
  • Customer Support: To provide technical support and respond to your inquiries about SupaSidebar.
  • Optional Communications: To send you important updates about SupaSidebar, new features, or significant changes to our service (you can opt out at any time).
  • Authentication: To verify your identity for license downloads and management through Firebase Auth.

4. Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Contractual Necessity: To provide our services, manage your account, and fulfill our obligations under our terms of service.
  • Legitimate Interests: To improve our products, analyze usage patterns, and enhance user experience.
  • Consent: Where required by law, such as for certain marketing communications.

5. Data Sharing and Third Parties

We use only essential third-party services to provide SupaSidebar:

  • PostHog: For privacy-focused analytics on both our website and the macOS app. On the website, PostHog tracks page views, button clicks, and user interactions. When you purchase a license or log in, we identify your session by email address to understand the journey from first visit to purchase. We also capture UTM parameters and referrer information to understand how users discover SupaSidebar. For EU users, website tracking only begins after you accept cookies via our consent banner. In the macOS app, PostHog receives only anonymous feature usage data as described in Section 2a. You can opt out of app analytics in Preferences.
  • Firebase Auth: For secure authentication and license management. Google processes authentication data according to their privacy policy and industry security standards.
  • Vercel (Hosting Provider): Our website is hosted on Vercel. For GDPR compliance, we use Vercel's geo-location headers to detect if you're visiting from the EU, which requires processing your IP address. This determination is made server-side and your IP address is not stored or logged.

We do not sell, rent, or share your personal information with third parties for advertising or marketing purposes. We do not use tracking or advertising networks.

6. Cookies and GDPR Compliance

We use cookies to provide and improve our services. Here's how we handle cookies and ensure GDPR compliance:

  • Essential Cookies: Required for core functionality like license authentication and session management. These cannot be disabled as they are necessary for the service to work.
  • Analytics Cookies: PostHog uses cookies to track your anonymous session before purchase and identify you by email after purchase. These cookies enable us to understand user behavior, measure marketing effectiveness, and improve our product.
  • Cookie Consent for EU Users: If you're visiting from the EU, EEA, UK, or Switzerland, you'll see a cookie consent banner when you first visit our website. PostHog analytics will not run until you accept cookies. You can reject analytics cookies and still use the website, though some features may be limited.
  • Non-EU Users: If you're visiting from outside the EU, analytics cookies are enabled by default to help us improve our service and understand our users. You can still opt out by contacting us or clearing your browser cookies.
  • Managing Your Cookie Preferences: You can change your cookie preferences by clearing your browser cookies and refreshing the page, which will show the consent banner again for EU users. You can also opt out of PostHog tracking by enabling "Do Not Track" in your browser settings.

What Data Do We Collect With Cookies?

  • Anonymous distinct ID (before purchase)
  • Email address (after purchase or login)
  • Page views and navigation patterns
  • Button clicks and interactions
  • UTM parameters (campaign source, medium, campaign name)
  • Referrer (website you came from)
  • Device type and browser information
  • Session duration and return visits

7. Data Storage and Retention

SupaSidebar prioritizes local storage and minimal cloud data retention:

  • Local App Data: All your SupaSidebar data (saved apps, websites, folders, preferences, and shortcuts) is stored locally on your Mac using Core Data with iCloud sync. We do not have access to this personal data.
  • License Information: License keys and activation status are stored securely for as long as your license is active, plus reasonable time for support purposes.
  • Analytics Data: Usage data collected by PostHog (including page views, events, and user properties linked to your email after purchase) is retained for up to 2 years for analysis, marketing attribution, and product improvement purposes.
  • Email Communications: Email addresses are retained for license management and optional communications until you request deletion or opt out.

8. Your Rights

You have the following rights regarding your personal data:

  • Access: Request access to your personal data and information about how it's processed.
  • Correction: Request correction of inaccurate personal data.
  • Deletion: Request deletion of your personal data, subject to legal obligations.
  • Portability: Request a copy of your data in a structured, machine-readable format.
  • Objection: Object to processing of your personal data for legitimate interests.

9. Security

We implement appropriate technical and organizational security measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. However, no method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.

10. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by posting the updated policy on our website and updating the effective date.

11. Contact Us

SupaSidebar is developed and maintained by an independent developer. If you have any questions about this Privacy Policy or wish to exercise your rights, please contact us at admin@supasidebar.com.