Privacy Policy

• We never see your Mac password. It stays in the encrypted macOS Keychain on your device.
• Bluetooth proximity detection runs entirely on-device. No location or signal data leaves your Mac.
• We collect the minimum information needed to deliver your license and provide support.
• We don't sell your data. Ever.

When you purchase a license, our reseller Paddle collects:

• Your name and email address.
• Your billing country (for tax purposes).
• Payment information (handled directly by Paddle — we never see your card details).

We receive your name, email, country, and a transaction reference from Paddle so we can issue your license key and provide support.

The Blunlock app stores the following on your Mac, never transmitted to our servers:

• Your license key (in app preferences).
• Your Mac login password (in the macOS Keychain, encrypted by the system).
• The Bluetooth identifier of your paired proximity device.

• Your Mac password.
• Your location.
• Bluetooth scan results, signal strength, or device names.
• Usage analytics or telemetry inside the locked Mac session.

With your explicit opt-in, the Software may send anonymous crash reports to help us fix bugs. These contain stack traces and macOS version info — no personally identifying data. You can disable this in Preferences at any time.

• To deliver your license key by email.
• To respond to support requests.
• To send occasional important updates about the Software (security fixes, major releases). You can unsubscribe at any time.

We share data only with service providers we need to operate, under appropriate data processing agreements: Paddle (payments), and our transactional email provider. We do not sell or rent your personal information.

We retain your purchase record (name, email, country, license key) for as long as you remain a customer, plus the period required by tax law (typically seven years). You can request deletion at any time; we will retain the minimum required for legal compliance.

Depending on where you live (GDPR, CCPA, etc.), you may have the right to access, correct, delete, or export your personal information. Email saurabhdabral61@gmail.com and we will respond within 30 days.

We follow standard practices: TLS in transit, encryption at rest, and minimum-necessary access internally. No system is 100% secure, but we limit how much data we hold so that a breach can never expose what we don't collect.

We may update this Privacy Policy. Material changes will be reflected by an updated “Last updated” date at the top of this page.

Privacy questions? Email saurabhdabral61@gmail.com.