The short version
- No telemetry. Atlas does not phone home about how you use it.
- No cookies, no fingerprinting. The app collects nothing. The website uses Umami, a cookieless, privacy-first analytics tool that can't identify you (details below).
- No account. No sign-up, no login, no profile.
- No cloud. Your team list, settings and calendar never leave the device.
- No file access. Atlas cannot read your documents, photos or downloads. The only thing it can read is your calendar, and only if you allow it.
Who is the data controller?
The data controller for any personal data we hold about you is:
TJH/CO LIMITED (trading as THEODOREHQ)
A company registered in England and Wales
Company number: 16589593
Registered office: Fairway House, Links Business, Fortran Rd, St. Mellons, Cardiff, CF3 0LT, United Kingdom
Email: support@theodorehq.com
What does Atlas collect from inside the app?
Nothing. Atlas runs on your Mac and keeps a small amount of state locally so it works between launches: the teammates, cities and rosters you add; your appearance and keyboard-shortcut preferences; your licence key and activation ID (stored in the macOS Keychain, encrypted by the operating system); and the date of your most recent licence check, used for offline grace. None of this is ever transmitted off the device.
Does Atlas make any network requests?
Yes, exactly two kinds, and neither one carries anything about your schedule or your team.
Update checks. About once a day Atlas checks
https://www.theodorehq.com/atlas/appcast.xml for a new version. The request contains your
current Atlas version and your macOS version, so we can serve the right update. It carries no
unique identifier and is verified by Apple's Sparkle framework. You can turn update checks off in
Settings.
Licence checks. Atlas talks to Polar.sh, our licensing provider, in three situations: once when you activate your licence, periodically to revalidate it (at most every seven days), and if you deactivate it to move Atlas to another Mac. Each call sends only your licence key and a device label (your Mac's local name, for example "Theodore's MacBook Pro"). After activation Atlas caches the result and runs offline.
Location and calendar
Location. If you grant Location access, Atlas uses Apple's CoreLocation once, at first launch, to detect your own time zone and pin you on the map. This happens on-device. Your coordinates are used immediately and then discarded; they are never sent to us.
Calendar. If you grant calendar access, Atlas reads your upcoming events only to grey out times when you are already busy. Atlas is strictly read-only: it never creates, edits or deletes events, and your calendar data never leaves your Mac. You can revoke access at any time in System Settings > Privacy & Security > Calendars.
What personal data do we hold, and on what basis?
Three categories. The law requires us to name a lawful basis under Article 6 of the UK GDPR for each.
Your purchase email and licence-key record
Held so we can deliver and verify your licence.
Lawful basis: contractual necessity (Art 6(1)(b)).Newsletter subscription (the same email)
Used to send occasional product updates about Atlas. You consent at checkout via an unticked box, and every email has a one-click unsubscribe.
Lawful basis: soft opt-in under PECR Regulation 22(3).Licence-activation logs
Timestamp, country and the IP address of the activation request, kept to detect fraud and licence abuse.
Lawful basis: legitimate interests (Art 6(1)(f)).How long do we keep it?
- Purchase email and licence record: while your licence is active, plus seven years after your last purchase, to meet HMRC tax-record requirements (Schedule 11 of the VAT Act 1994 and corresponding income-tax rules).
- Newsletter subscription: until you unsubscribe, plus thirty days while we process the unsubscribe.
- Licence-activation logs: twelve months from activation, then automatically deleted by Polar.
- Support emails: two years, then deleted, unless you ask us to keep them for an open issue.
Crash reports
Atlas does not send crash reports or diagnostics automatically. Nothing about a crash leaves your Mac unless you choose to send it. If macOS itself shows a "Send to Apple" dialog, that is Apple's standard system, not us, and you control it in System Settings > Privacy & Security > Analytics & Improvements.
Cookies and this website
No cookies. No third-party trackers. No advertising scripts. No fingerprinting. For website analytics we use Umami (see the next section), which is cookieless and stores nothing on your device by default. If you switch this page between light and dark, that preference is stored locally in your browser; it is purely functional and exempt from consent under PECR Regulation 6(4).
Website analytics (Umami)
To understand which pages people find useful, this website uses Umami,
a privacy-friendly analytics tool we self-host on our own server at analytics.theodorehq.com.
The server is located in Manchester, United Kingdom, so this data never leaves the UK. (Atlas the
app contains no analytics of any kind; this is the website only.)
Umami records aggregate, non-identifying information: the page URL, page title and referrer, the country your visit came from (derived from your IP address, which is then immediately discarded and never stored), and your browser, operating system, device type and screen size. It sets no cookies, does not fingerprint your device, does not follow you across other websites, and shares nothing with any third party. We cannot identify you from it.
Lawful basis: legitimate interests (Art 6(1)(f) UK GDPR) in understanding aggregate site traffic without identifying individual visitors. Retention: aggregate figures indefinitely; raw event records for twelve months.
How to opt out. Any standard content blocker (uBlock Origin, Ghostery, Brave's
shields) blocks it automatically. Or, in your browser's developer console on this site, run
localStorage.setItem('umami.disabled', '1'), which Umami treats as a permanent opt-out
for this domain.
International transfers
Polar.sh, our payment and licensing provider, is based in the United States. When you buy a licence, your email and country of purchase are processed by Polar in the US under the UK International Data Transfer Agreement (IDTA), the UK government's approved transfer mechanism. You can read Polar's data-processing agreement at polar.sh/legal/dpa. No other international transfers occur.
Your rights under UK GDPR
To exercise any of these, email support@theodorehq.com. We respond within thirty days, free of charge.
Complaining to the ICO
If you think we have handled your data improperly, you can complain to the UK Information Commissioner's Office: Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF. Helpline: 0303 123 1113. ico.org.uk/make-a-complaint. We would much rather you email us first so we can put it right, but the right to escalate is yours.
Children
Atlas is not directed at children under 13 (the UK age of digital consent under section 9 of the Data Protection Act 2018). We do not knowingly collect any personal data from anyone under 13. If you believe we hold such data in error, email us and we will delete it promptly.
Changes to this policy
If we change this policy we will update the date at the top, and email anyone on the customer list a plain-English summary of what changed at least fourteen days before it takes effect. We will not quietly start collecting more from existing users.
Contact
Questions, concerns, or anything that smells off: support@theodorehq.com. A real human reads every email.
See also our Terms of Service.