Privacy Policy

Effective May 12, 2026. Last updated May 12, 2026.

1. Who we are

DoingRN is a voice-first time tracker for macOS. This policy describes how the DoingRN macOS application and the doingrn.com website handle information about you. In this policy, "DoingRN," "we," "our," and "us" refer to the developer of the app and operator of the site.

You can reach us about anything in this policy at eddie@doingrn.com.

2. What we collect

2.1 Email address

When you sign in to DoingRN we collect your email address. We use it to authenticate you, identify your account across devices, and contact you about account-related events. We do not send marketing email to you unless you explicitly opt in to receive it.

2.2 Time entry text

Each time you record a time entry, the text transcribed from your voice is stored against your account so it can appear on your dashboard, daily review, and any reports you choose to generate. You can edit or delete any entry at any time inside the app.

2.3 Account identifier

We assign your account a stable internal identifier so we can associate your entries, settings, and subscription state with the right account. This identifier is meaningful only inside DoingRN. It is not shared with advertising networks or data brokers.

2.4 Subscription status

If you purchase a Pro subscription through Apple In-App Purchase, we receive your subscription status (active, expired, in a free trial, in a billing retry) from Apple's payment processor. We use this only to unlock Pro features for your account. Your payment card or bank information is handled entirely by Apple and is never seen by DoingRN.

3. What we do not collect

3.1 Your voice audio

This is the most important part of this policy. DoingRN performs speech recognition entirely on your own device using a local model based on sherpa-onnx. The raw audio that you speak into your microphone never leaves your computer. We do not record it to disk, do not transmit it over the network, and do not store it on any server.

3.2 Tracking data

We do not link your data with third-party data for advertising. We do not share your data with data brokers. We do not use advertising identifiers. We do not run third-party analytics inside the app.

3.3 Other data we do not need

We do not collect your name (unless you choose to provide it during sign-up), phone number, physical address, location, contacts, photos, browsing history, search history, health information, or any other sensitive category. We do not access the contents of any other application on your device.

4. How we use what we collect

The data described in Section 2 is used only for the following purposes.

• Authenticating you and keeping you signed in.
• Storing your time entries so you can view, edit, search, and review them.
• Generating the daily and weekly summaries that make up the core experience.
• Determining whether to show or hide Pro features based on your subscription state.
• Responding to support requests you send to us.
• Diagnosing and fixing bugs reported to us, only with information you choose to share.

We do not use your data to profile you, predict your behavior for advertising, train any general-purpose AI model, or any purpose unrelated to running DoingRN for you.

5. Service providers we use

To run DoingRN we rely on a small set of trusted third-party services. Each one processes a specific slice of your data under their own privacy policy. We have selected providers that are appropriate for a privacy-respecting app.

5.1 Clerk

Clerk handles user authentication. When you sign up or sign in, Clerk receives your email address and any sign-in method you choose to use (password, Google sign-in, etc.). Clerk does not receive your time entries or your voice audio. You can read Clerk's privacy policy at clerk.com/privacy.

5.2 Convex

Convex is the database and real-time backend that stores your time entries, account record, and subscription state. Convex is the only place where your synced text data lives. Convex does not receive your voice audio. You can read Convex's privacy policy at convex.dev/legal/privacy.

5.3 RevenueCat

RevenueCat is the subscription infrastructure that processes Apple In-App Purchase receipts and tells DoingRN whether your subscription is active. RevenueCat receives your account identifier and your subscription state. RevenueCat does not receive your time entries or your voice audio. You can read RevenueCat's privacy policy at revenuecat.com/privacy.

5.4 Apple

If you purchase a Pro subscription, the transaction itself is processed by Apple under the standard App Store terms. Apple handles your payment information. DoingRN never sees your card details. You can read Apple's privacy policy at apple.com/legal/privacy.

5.5 Website analytics

This website, doingrn.com, uses Vercel Analytics to count aggregate page views. Vercel Analytics is cookieless and does not identify individual visitors. The DoingRN application itself contains no analytics SDK.

6. The speech recognition model

On first launch, DoingRN downloads a small speech recognition model (about 50 MB) from the sherpa-onnx project so the app can transcribe your voice locally. This download is a one-time event. After it completes, all speech processing happens on your device with no further network calls for transcription. Your voice audio remains on your device.

7. Where your data is stored

Your synced data (email, time entry text, account identifier, subscription state) is stored on infrastructure operated by Convex, Clerk, and RevenueCat. These providers run their services on cloud infrastructure primarily located in the United States. If you use DoingRN from outside the United States, your data is transferred to and processed in the United States.

8. How long we keep your data

We keep your account data for as long as your account is active. If you delete your account, we delete your time entries and account record from Convex within 30 days. Authentication records held by Clerk and subscription records held by RevenueCat may be retained for a limited additional period by those providers to satisfy their own legal and operational requirements.

9. Your rights

You have meaningful control over the data DoingRN holds about you.

• Access. You can see every time entry we have stored for you directly inside the app.
• Correction. You can edit any time entry inside the app.
• Deletion. You can delete individual entries inside the app. You can request deletion of your entire account by emailing us at eddie@doingrn.com. We will action a deletion request within 30 days.
• Portability. If you want a copy of your data in a portable format, email us and we will provide a JSON export.
• Withdraw consent. You can stop using DoingRN at any time. Deleting your account stops all future processing.

If you are in the European Economic Area, the United Kingdom, or California, you have additional rights under the GDPR, UK GDPR, and CCPA respectively. You can exercise any of these rights by contacting us at eddie@doingrn.com.

10. Security

Data in transit between your device and our service providers is encrypted using standard TLS. Data at rest is encrypted by the underlying cloud providers. We restrict access to production systems to the developers who need it to operate DoingRN. No system is perfectly secure. If we learn of a breach that affects you, we will notify you promptly.

11. Children's privacy

DoingRN is not directed at children under 13 and we do not knowingly collect personal data from children under 13. If you believe a child has provided us with personal data, please contact us at eddie@doingrn.com and we will delete it.

12. Changes to this policy

If we change this policy in a way that materially affects how we handle your data, we will update the Effective date at the top of this page and, where we have your email address, send you a notice before the change takes effect. Continued use of DoingRN after a change means you accept the updated policy.

13. Contact

Questions about this policy or about how DoingRN handles your data can go to eddie@doingrn.com.