Last updated: June 5, 2026 · Effective: June 5, 2026
This Privacy Policy explains what personal information Minute Left (the “App”) and the website at minuteleft.app collect, how we use it, who we share it with, and the rights you have. Please read it together with our Terms of Service and Refund Policy.
The data controller and seller is Roman Melnychuk (Roman Vasylovych Melnychuk), an individual entrepreneur (sole proprietor) registered in Ukraine (“we”, “us”, “our”). We decide why and how your personal information is processed.
| Contact for privacy matters | hello@minuteleft.app |
|---|---|
| Website | minuteleft.app |
| Licensing API | api.minuteleft.app |
Minute Left needs read access to your macOS Calendar (Apple’s EventKit framework, “Full Calendar Access”) so it can remind you before meetings. From each event it reads the title, start/end time, all-day flag, notes, location, URL, and the calendar account’s name (which is often an email address), and it scans the notes, location, and URL fields to find a video-meeting link.
This calendar information is processed entirely on your Mac. It is never
transmitted to our servers or to any third party. It is held in memory and shown
on screen. The only thing stored is a short list of local app preferences in macOS
UserDefaults — identifiers of reminders already shown (an opaque event ID plus
a timestamp) and snooze times — so the App doesn’t repeat a reminder. These local records
are automatically deleted after 48 hours.
authuser= value to the meeting link before opening it in your own
browser, so the browser opens the right Google account. This stays on your device and
is not sent to us.To run the trial and the paid license, the App collects and transmits a small amount of account data to our backend. We do not use a password — your email address is your identity, and it is not independently verified by us.
| Data | Source | Purpose |
|---|---|---|
| Email address | Entered by you in the App (required) | Identify you, run the trial, attach/restore the license, and contact you about your purchase |
| Install identifier | Random ID generated on your device on first run | Anchor the trial to an installation and link a purchase to it |
| Trial start time | Set on our server on first contact | Compute your 7-day trial window |
| License / entitlement status | Derived on our server (trial / active / expired / revoked) | Decide whether the App is unlocked |
| Purchase & transaction records | Received from our payment provider (Paddle) by webhook | Grant or revoke your license; keep an audit record for refunds and chargebacks |
| Technical log data | Generated automatically when the App contacts our API | IP address and standard request metadata, logged by our hosting provider for security and reliability |
We do not store your payment-card details. Card and billing data are handled by Paddle (see §7).
The App itself contains no analytics, advertising, or third-party tracking SDKs. The website at minuteleft.app does not set its own advertising or analytics cookies. Fonts are self-hosted, so the site does not call out to Google Fonts or any font CDN. The only third-party resources are:
These are limited to operating the site and the purchase; we do not use them to build advertising profiles. If you do not want to load Paddle’s checkout, do not visit the checkout page.
We use the limited information we collect only for these purposes:
The App uses the open-source Sparkle framework to keep itself up to date.
About once a day it checks an update feed hosted on GitHub Pages
(chamooo.github.io). Each check sends your IP address and standard
HTTP request metadata to GitHub; no account or identifier is sent. Updates are
cryptographically signed (EdDSA) and verified before installation. You can disable
automatic update checks in the App’s settings.
We share personal information only with the providers we need to run the service. Each acts under a contract that limits their use of the data.
| Provider | Role | Data they process |
|---|---|---|
| Paddle (Paddle.com Market Ltd) | Merchant of Record & payment processor — Paddle is the seller of record for your purchase | Your name, email, billing and payment details, and transaction data; Paddle handles invoicing, VAT/sales tax, receipts and refunds under its own terms and privacy policy |
| Cloudflare, Inc. | Hosting of our backend (Workers) and database (D1), plus request logging | Email, install ID, trial/entitlement data, transaction IDs, and request logs including IP address |
| GitHub, Inc. (GitHub Pages) | Hosts the website and the App’s update feed | Your IP address and request metadata when you visit the site or the App checks for updates |
| Apple Inc. | Provides the macOS calendar APIs and code-signing/notarization | Calendar access is mediated by macOS on your device; we receive no data from Apple about you |
We do not sell your personal information and we do not give it to data brokers or advertisers.
We are based in Ukraine, and our providers Paddle, Cloudflare and GitHub are based in or process data in the United States and other countries. By using the App you understand that your information is processed in those locations. Each provider operates under a data-processing agreement that limits its use of the data; you can ask us for details by email.
Minute Left is not offered to, or directed at, individuals located in the European Economic Area or the United Kingdom, and we use country-level access controls to block access from those regions. We do not intentionally collect personal information from people in the EEA or the UK. If you are located there, please do not use the App. If you believe we hold your data despite these measures, email us and we will delete it.
If you are a resident of California or another U.S. state with a comprehensive privacy law (e.g. Virginia, Colorado, Connecticut, Texas, Utah), you have the right to:
For the 12 months before this policy’s date, we collected these CCPA/CPRA categories: identifiers (email address, install identifier, IP address) and commercial information (purchase and license records). We collect them from you and from our payment provider, use them for the purposes described in §5, and disclose them only to the service providers listed in §7. We did not sell or share personal information.
To make a request, email hello@minuteleft.app. We will verify your request using the email address associated with your account and respond within 45 days (extendable once where permitted). You may use an authorized agent to submit a request on your behalf. California residents may also request information under California’s “Shine the Light” law (Civil Code §1798.83); as stated, we do not share personal information with third parties for their own direct-marketing purposes.
We do not sell your personal information, and we do not “share” it for cross-context behavioral advertising, as those terms are defined under U.S. state privacy laws. We do not knowingly collect sensitive personal information for the purpose of inferring characteristics about you. Because we never sell or share, there is no opt-out to configure — but you may still email us with any related request.
Minute Left is intended for adults and is not directed to children. We do not knowingly collect personal information from children under 16. If you believe a child has provided us personal information, contact us and we will delete it.
We use HTTPS for all data in transit, store your credentials in the macOS Keychain on your device, verify payment webhooks with a signed secret, and limit access to the backend. No method of transmission or storage is completely secure, but we work to protect your information and will notify you and the relevant authorities of a data breach where the law requires.
We may update this policy from time to time. We will change the “Last updated” date above and, for material changes, take reasonable steps to notify you. Your continued use of the App after a change means you accept the updated policy.
For any privacy request or question, email hello@minuteleft.app.