Privacy Policy

Loon is built around a simple split: your calendar belongs to you and stays on your Mac; the only thing we ever see is anonymous usage data that helps us make the app better. We do not sell your personal information — ever.

Last updated: June 15, 2026

Who we are

Loon is developed and operated by Chaitanya Nijhara, an individual developer based in Foster City, California, United States. For privacy and data-protection purposes, the data controller is Chaitanya Nijhara, reachable at support@loon.so. This policy is governed by the laws of the State of California, United States.

The short version

Your calendar events, attendees, agendas, and meeting links are fetched directly from Google Calendar and processed entirely on your Mac — they never touch Loon servers. If you subscribe, we store your email address and subscription status. We collect anonymous, content-free usage analytics to understand which features are useful. We do not sell, share, or use your data for advertising.

Information we process

Calendar data

Loon connects directly from your Mac to the Google Calendar API using OAuth 2.0. Your events, attendees, agendas, video-conference links, and all other calendar content are fetched over an encrypted connection and processed entirely on your machine. This data is never sent to Loon servers. The OAuth tokens that authorize this access are stored in the macOS Keychain, protected by the same system that guards your passwords.

Loon requests two Calendar scopes: read access to your calendars, and write access limited exclusively to recording RSVP responses you make inside the app. No other calendar mutations are performed.

Account and subscription data

If you subscribe, your account email address and subscription status are stored with our authentication provider (Supabase) in order to manage access to paid features. This is the minimum required to maintain your subscription.

Payment data

Payments are processed by Stripe. When you subscribe, Loon opens a Stripe-hosted checkout page in your browser; your card details go directly to Stripe. We never see, store, or transmit your card number, CVV, or banking information. Stripe is PCI-DSS Level 1 certified.

Anonymous usage analytics

Loon sends anonymous usage events via Amplitude — for example, "a meeting was joined from the menu bar" or "a focus session started." These events never include meeting titles, attendee names, agendas, links, or any other content from your calendar. They tell us which features earn their place; nothing about your meetings or your identity.

App update checks

App Store builds are updated through Apple's standard update mechanism, which carries no personal data beyond your Apple ID (managed entirely by Apple). Direct-download builds check a public Sparkle update feed; that request carries no user identifiers.

Website and download hosting

This website is hosted on Vercel. App downloads are served via Cloudflare R2. Both providers may retain standard server logs (IP address, timestamp, request path) for security and reliability purposes. These logs are not used for advertising and are governed by Vercel's and Cloudflare's own privacy policies.

Google API Services — Limited Use

Loon's use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. Specifically:

• Google Calendar data is used only to provide and improve the calendar features visible to you inside Loon.
• Google Calendar data is processed locally on your device and is not transferred to third parties, except as necessary to provide the app, comply with applicable law, or protect against security threats.
• Google Calendar data is never used for advertising. Loon does not allow humans to read your Google data except with your explicit consent, for security purposes, or as required by law.
• Loon does not use Google user data to develop, improve, or train generalized AI or machine-learning models.

How we use your information

• To provide Loon's features — display your calendar, enable one-click meeting joins, power focus timers, and deliver alerts.
• To manage your subscription — verify access to paid features, process billing, and send transactional emails such as receipts.
• To improve the app — anonymous analytics help us understand which features are useful and surface bugs.
• For security — detecting and preventing fraud or abuse.
• To comply with legal obligations — as required by applicable law.

We do not use your information for advertising, profiling, or any purpose beyond those listed above.

Legal bases for processing (GDPR)

If you are in the European Economic Area or the United Kingdom, we process personal data under these legal bases:

• Contract — processing your account email and subscription status is necessary to deliver the paid service you subscribed to.
• Consent — we request permission to access your Google Calendar during sign-in. You can withdraw this consent at any time (see Your Rights below).
• Legitimate interests — anonymous, aggregated analytics and security logging, where these do not override your rights and freedoms.
• Legal obligation — where applicable law requires us to retain or disclose information.

Third parties and sub-processors

We share data with the following service providers only to the extent necessary to operate Loon:

• Google — Calendar API access. Calendar data is processed on your device; Google receives OAuth token exchanges and API requests originating from your Mac.
• Supabase — stores your account email and subscription status (located in the US).
• Stripe — payment processing (PCI-DSS Level 1 certified; your card details go directly to Stripe, never through us).
• Amplitude — anonymous usage analytics (no calendar content; located in the US).
• Apple— App Store distribution and updates (governed by Apple's privacy policy).
• Vercel — website hosting (standard server logs).
• Cloudflare — direct-download artifact hosting and CDN (standard server logs).

We do not sell, rent, or share your personal information with any third party for their own marketing or advertising purposes. This applies to California residents under the CCPA/CPRA and to everyone else equally.

Data retention

• Calendar data lives entirely on your device and is removed when you disconnect your Google account inside Loon or uninstall the app.
• OAuth tokens in the macOS Keychain are deleted when you sign out or when you revoke access at myaccount.google.com/permissions.
• Account and subscription data (via Supabase) is retained while your account is active and for a reasonable period afterward to resolve billing disputes, then deleted upon request.
• Payment records are retained by Stripe as required by financial regulations.
• Analytics events are retained in aggregated, anonymized form. Because no event is linked to you personally, individual deletion is not technically possible, but no event can be traced back to you.

International data transfers

Loon is available worldwide. Our sub-processors — Supabase, Stripe, and Amplitude — are primarily located in the United States. If you are in the EEA or UK, transfers to these providers are made under appropriate safeguards such as EU Standard Contractual Clauses (SCCs) or equivalent mechanisms recognized by your jurisdiction. To request information about the safeguard applicable to a specific processor, email support@loon.so.

Your rights

Everyone

You can disconnect your Google account and revoke Loon's Calendar access at any time from within the app or at myaccount.google.com/permissions. You can cancel your subscription at any time through Stripe's billing portal.

EEA and UK residents (GDPR / UK GDPR)

You have the right to:

• Access — request a copy of the personal data we hold about you.
• Rectification — correct inaccurate personal data.
• Erasure— request deletion of your personal data ("right to be forgotten").
• Restriction — ask us to pause processing while a dispute is resolved.
• Portability — receive your data in a machine-readable format.
• Object — to processing based on legitimate interests.
• Withdraw consent — at any time, without affecting the lawfulness of prior processing.
• Lodge a complaint — with your local data protection authority (for example, the ICO in the UK or your national DPA in the EU).

California residents (CCPA / CPRA)

You have the right to:

• Know — what personal information we collect, how it is used, and with whom it is shared.
• Delete — request deletion of personal information we hold about you.
• Correct — inaccurate personal information.
• Opt out of sale or sharing — we do not sell or share personal information for advertising, so there is nothing to opt out of.
• Non-discrimination — we will not discriminate against you for exercising any of these rights.

To exercise any right, email support@loon.so. We respond within 30 days (45 days for California requests, as permitted by law).

Security

Calendar data never leaves your device. OAuth tokens are stored in the macOS Keychain using Apple's secure storage APIs. All connections between your Mac and Google Calendar, Supabase, Stripe, and Amplitude are encrypted in transit using TLS. We apply security practices appropriate for a consumer macOS application.

Children's privacy

Loon is not directed to children. We do not knowingly collect personal information from anyone under 16 (or under 13 in the United States). If you believe a child has provided us with personal information, contact support@loon.so and we will delete it promptly.

Tracking and advertising

Loon does not track you across other companies' apps or websites. We do not use your device advertising identifier (IDFA or equivalent) for advertising or cross-app tracking. The anonymous usage analytics we collect via Amplitude are scoped entirely to Loon itself and are never used to build third-party advertising profiles.

Changes to this policy

If we make material changes, we will update the date at the top of this page and, where we hold your contact email, notify you by email. Continued use of Loon after the effective date constitutes acceptance of the updated policy.

Questions

Email support@loon.so — a human reads it.