Privacy Policy

Effective Date: January 1, 2025 · Last Updated: December 29, 2024

Introduction

MenuOps ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use the MenuOps application (the "App").

Information We Collect

Information You Provide

• GitHub Personal Access Tokens: Stored securely in your Mac's Keychain to access GitHub APIs
• Repository Information: Repository names and owners you choose to monitor
• Account Configuration: GitHub server URLs for enterprise users

Information Automatically Collected

• Usage Analytics: Basic app usage metrics (stored locally only) - number of repositories monitored, frequency of notifications, feature usage patterns
• Crash Reports: Technical diagnostic information when the app encounters errors
• CloudKit Data (Premium users only): Workflow status updates for real-time notifications

Information We Do NOT Collect

• Personal identifying information (name, email, address)
• GitHub repository contents or code
• Detailed user activity logs
• Location data
• Device identifiers

How We Use Your Information

GitHub API Access

• Your Personal Access Token is used solely to retrieve workflow status from GitHub's API
• Tokens are stored in your Mac's Keychain and never transmitted to our servers
• We only access the specific repositories you configure

CloudKit Services (Premium Users)

• Workflow status updates are synchronized through Apple's CloudKit service
• Data is encrypted in transit and at rest using Apple's security infrastructure
• Used exclusively for providing real-time notifications

Analytics and Improvement

• Local usage metrics help us understand feature adoption
• Crash reports help us identify and fix technical issues
• All analytics data is stored locally on your device

Data Storage and Security

Local Storage

• All configuration data is stored locally on your Mac
• GitHub tokens are stored in the secure macOS Keychain
• No personal data is transmitted to third-party analytics services

CloudKit (Premium Features)

• Apple's CloudKit service is used for real-time workflow synchronization
• Data is automatically encrypted by Apple's infrastructure
• You can disable CloudKit sync in System Preferences if desired

Data Retention

• Local data persists until you uninstall the app
• CloudKit data is retained according to Apple's CloudKit policies
• Crash reports are automatically deleted after 30 days

Third-Party Services

GitHub API

• We access GitHub's API using your Personal Access Token
• Subject to GitHub's Privacy Policy and Terms of Service
• We do not store GitHub data beyond basic workflow status

Apple Services

• CloudKit for premium real-time features
• Apple Push Notifications for instant workflow updates
• StoreKit for subscription management
• All subject to Apple's Privacy Policy

DigitalOcean (Infrastructure)

• Our webhook service runs on DigitalOcean infrastructure
• Used only for processing GitHub webhook events
• No personal data is stored on our servers

Your Rights and Choices

Data Access

• All your data is stored locally and accessible through the app's interface
• You can export your configuration at any time

Data Deletion

• Uninstalling the app removes all local data
• CloudKit data can be deleted through iCloud settings
• Contact us to request server-side data deletion

Opt-Out Options

• Disable analytics through the app preferences
• Disable CloudKit sync in System Preferences
• Use the free tier to avoid cloud-based features entirely

Children's Privacy

MenuOps is not designed for or directed at children under 13. We do not knowingly collect personal information from children under 13.

International Users

If you are located outside the United States, please note that your information may be processed in the United States where our servers are located.

Changes to This Policy

We may update this Privacy Policy periodically. We will notify users of significant changes through the app or our website. Your continued use of the app after changes constitutes acceptance of the updated policy.

Data Protection Rights (GDPR)

If you are in the European Union, you have the following rights:

• Right to access your personal data
• Right to rectify inaccurate data
• Right to erase your data
• Right to restrict processing
• Right to data portability
• Right to object to processing

To exercise these rights, contact us at [email protected].

California Privacy Rights (CCPA)

California residents have the right to:

• Know what personal information is collected
• Know whether personal information is sold or disclosed
• Say no to the sale of personal information
• Access personal information
• Request deletion of personal information
• Not be discriminated against for exercising privacy rights

Technical Details

Encryption

• All data in transit is encrypted using TLS 1.3
• Local data uses macOS file system encryption
• CloudKit data is encrypted using Apple's security standards

Access Controls

• GitHub tokens are restricted to configured permissions only
• App follows macOS security best practices
• No unnecessary permissions are requested

Data Minimization

• We collect only the minimum data necessary for app functionality
• Automatic data purging for temporary files
• No tracking of user behavior beyond basic usage metrics

---

Contact Information

If you have questions about this Privacy Policy or our data practices, please contact us:

Email: [email protected]
Website: https://menuops.dev/privacy