Legal

Privacy Policy

Antimolecule is built to protect attention, not harvest it. Your focus history is end-to-end encrypted, on-device by default, and never sold.

Last updated: May 18, 2026 · Effective: June 1, 2026

This Privacy Policy describes how {{appName}} (“we”, “us”) collects, uses, and protects information when you use our mobile application and website (collectively, the “Service”). By using the Service you agree to this policy. Questions? Email {{contactEmail}}.

The short version

  • We store your focus sessions, blocks, and notes on your device by default.
  • If you turn on sync, the data is end-to-end encrypted before it leaves your device. We can't read it.
  • We do not sell your data, share it with advertisers, or use it to train machine-learning models.
  • We collect the minimum diagnostic data needed to keep the app stable, and you can turn that off.

Information we collect

Account information

If you create an optional account (required only for cross-device sync and team rooms), we collect your email address and a hashed password. We never store passwords in plaintext.

Focus data

Sessions you record, blocks you schedule, and notes you write. By default this lives only on your device. If sync is enabled, it's encrypted with a key derived from your password before upload — our servers see ciphertext, never content.

Device information

To deliver the right build and diagnose crashes, we record: device model, operating system version, app version, and a randomly generated install ID. We do not collect IMEI, advertising ID, or precise location.

Usage analytics

Aggregated counts of feature usage (e.g. “focus timer started”) without any content. You can opt out under Settings → Privacy → Diagnostics.

How we use information

  • To run the Service, including sync, team rooms, and authentication.
  • To send you transactional emails (sign-in links, receipts) — never marketing without opt-in.
  • To improve reliability — debugging crashes, identifying performance regressions.
  • To comply with legal obligations.

When we share information

We share data only with infrastructure providers necessary to run the Service (hosting, error monitoring, transactional email). These providers act as our processors under contractual data-protection terms. We do not share data with advertisers, data brokers, or any third party for marketing purposes.

We may disclose information if compelled by valid legal process. We will challenge over-broad requests and notify you when allowed by law.

Security

We use industry-standard transport encryption (TLS 1.3) for all network traffic. Synced focus data is encrypted client-side with AES-256-GCM using a key derived from your password via Argon2id. Our servers never see your key. If you lose your password and have not saved your recovery key, your encrypted data cannot be recovered — that's by design.

Data retention

Local data persists until you delete it from the app. Synced (encrypted) data persists until you delete your account; account deletion is permanent and immediate. Diagnostic logs are retained for 30 days, then automatically purged.

Your rights

Regardless of where you live, you can:

  • Export all your data in a portable format from Settings → Privacy → Export.
  • Delete your account and all server-side data at any time from Settings → Account → Delete.
  • Opt out of diagnostics and analytics individually.
  • Contact us at {{contactEmail}} for any other request — we'll respond within 30 days.

Residents of the EU/EEA, UK, California, and other jurisdictions with comprehensive privacy laws have additional rights (access, correction, restriction, objection, portability). Email us to exercise them; no special form required.

Children

The Service is not directed at children under 13 (under 16 in the EU). We do not knowingly collect data from children. If you believe a child has provided us information, contact us and we will delete it.

International transfers

{{appName}} is operated from the United States. If you use the Service from outside the US, your data will be transferred to and processed in the US. We rely on Standard Contractual Clauses where required.

Changes to this policy

We'll post material changes here and, for significant changes affecting your data, notify you in-app or by email at least 14 days before they take effect.

Contact

Privacy questions, requests, or concerns: {{contactEmail}}.

For details about how we secure your data, see our Security overview. For terms governing your use of the Service, see the Terms of Use.