Imprint← Back to home

Legal

Privacy Statement

Last updated: 30 April 2026

This statement explains how Fraction (“we”) handles personal data in connection with Imprint, our macOS application, and the website at useimprint.io. We are the data controller for the limited personal data processed via the website. The application itself processes your data exclusively on your own device — we are not the controller of that data.

Whether you install Imprint from the Mac App Store or download it directly, the privacy properties are identical: local-only data, no telemetry, no cloud sync of your activity. The App Store version goes through Apple's review process for added security verification.

The short version

  • The Imprint application stores everything locally on your Mac. We never receive your activity data, calendar contents, email metadata, or meeting notes.
  • The website collects (a) your email address if you join the waitlist, and (b) anonymous, aggregate analytics. Nothing else.
  • We don't use cookies, and we don't need a cookie banner.
  • You can email petter@fraction.no to be removed from the waitlist or to ask any privacy question.

1. The application (Imprint for macOS)

Imprint is designed so that all activity events, calendar entries, emails, and meeting notes you choose to track stay on your device. The data is stored in a SQLite file at ~/Library/Application Support/Imprint/, which is readable only by your macOS user account.

The application makes no network calls that carry your activity, calendar, email, or note data to us or any third party. Outbound traffic is limited to:

  • Optional update checks against our domain;
  • Connections to services you explicitly authorize — for example chat platforms (Slack, Microsoft Teams), project tools (Linear, Jira, GitHub), and AI providers for meeting transcription and summary (Soniox for transcription, Anthropic for summary). These run directly from your Mac to the chosen service using your own credentials, and Imprint never proxies the data.

Because everything is local, exercising data rights is straightforward: you can read, export, modify, or delete the database at any time by managing the data directory.

2. The website (useimprint.io)

2.1 Waitlist email addresses

If you submit your email address to the waitlist, we store it for the purpose of contacting you about Imprint launch availability. The form also asks whether you separately consent to receiving product updates and marketing emails — that consent is opt-in (the box is unchecked by default).

  • What we collect: your email address, your marketing-consent choice (true/false), the timestamp the consent was given, a one-way hash of your IP address (for fraud detection only — we cannot reverse it), and a truncated User-Agent string.
  • Legal basis: consent (GDPR Art. 6(1)(a)) for waitlist participation and, if ticked, for marketing emails.
  • If you do not tick the marketing box: we will only email you about your waitlist spot (a service / transactional email). We will not send you product news, tips, or other marketing.
  • Storage: a Postgres database operated for us by Neon (EU/EEA region) under a Data Processing Agreement. If we have configured Resend as an email provider, your address is also synced there for delivery purposes.
  • Retention: until you ask to be removed, or up to 24 months after the public launch — whichever comes first.
  • Withdrawal: email petter@fraction.no and we'll delete your record. You can withdraw marketing consent at any time without leaving the waitlist.

2.2 Analytics

We use Plausible Analytics to understand aggregate site traffic — page views, referrers, and rough country-level location. Plausible is privacy-respecting by design: it does not use cookies, does not collect personal data, and does not build individual visitor profiles. No cross-site tracking occurs.

  • Legal basis: legitimate interest (GDPR Art. 6(1)(f)) — measuring aggregate website performance with no personal data involved.
  • Data location: EU (Plausible is hosted in Germany).

2.3 Server logs

Our hosting provider (Vercel) keeps short-term operational logs that may include IP addresses for the purpose of preventing abuse and debugging. These are retained for a short period (typically days) and are not used to profile visitors.

3. Cookies

The website does not set any tracking, advertising, or analytics cookies. Plausible is cookieless. We may use a small number of strictly necessary technical cookies if required for site operation — these do not require consent under GDPR / ePrivacy.

4. Your rights under GDPR

If you are in the EU/EEA (or the UK), you have the right to:

  • Access the personal data we hold about you;
  • Rectify inaccurate data;
  • Have your data erased (“right to be forgotten”);
  • Restrict or object to processing;
  • Receive your data in a portable format;
  • Withdraw consent at any time (this does not affect prior lawful processing);
  • Lodge a complaint with the Norwegian Data Protection Authority (Datatilsynet) or your local supervisory authority.

To exercise any of these rights, email petter@fraction.no. We will respond within 30 days.

5. International transfers

Resend and Plausible primarily process data within the EU/EEA. Where any sub-processors are located outside the EU/EEA, transfers are covered by the EU Standard Contractual Clauses or an equivalent adequacy mechanism.

6. Children

Imprint is not directed at children under 16. We do not knowingly collect personal data from children. If you believe a child has submitted personal data to us, contact us and we will delete it.

7. Changes to this statement

We may update this statement to reflect changes in the Service or in applicable law. Material changes will be highlighted on the website. The “Last updated” date at the top reflects the most recent revision.

8. Contact

Privacy questions, data-rights requests, or anything else: petter@fraction.no.