Privacy Policy

Introduction

Ironpine Labs LLC (“Ironpine Labs,” “we,” “us,” or “our”) is a Florida single-member LLC that develops and publishes apps, games, and developer tools. This Privacy Policy explains how we collect, use, store, and protect information about you when you use any app or tool published under the Ironpine Labs name (collectively, “the Apps” or “our Services”).

This policy applies to all products in the Ironpine Labs portfolio. Some products collect additional or different data — those specifics are documented in the per-app privacy sections linked from each app’s page on this site.

Effective date: April 9, 2026. This policy applies to all data collected on or after that date.

If you have questions, contact us at [email protected] before using our Services.

Information We Collect

The information we collect depends on which app or tool you use and how you use it. Across our portfolio, we may collect:

• Account information — email address used to create and authenticate your account
• App content data — content you create inside the app (habits, preferences, game state, etc.)
• Usage information — how you interact with app features, navigation patterns, session timing
• Technical information — crash logs, device type, operating system version, app version
• Transaction information — subscription status and purchase history (processed by Apple or Google, surfaced to us via RevenueCat)

We do not collect your location, phone number, contacts, browsing history, photos, camera data, microphone data, or data from health APIs (Apple Health, Google Fit) in any of our current apps. We do not collect any data categories not listed in this policy or in the per-app sections linked below.

Forge

Forge runs entirely on your machine. The following data practices apply specifically to Forge:

What Forge does NOT transmit: Source code, file paths, search queries, tool call inputs/outputs, index contents, and codebase metadata are never transmitted to Ironpine Labs or any third party.

License health check: Forge sends a weekly license health check containing only: a SHA-256 hash of your license key (not the key itself), the Forge client version, and your operating system platform. No other data is sent during this check.

Anonymous feature telemetry (opt-out): Forge may collect anonymous, aggregated tool invocation counts to help us understand feature usage. This telemetry contains no code content, no queries, and no identifiers tied to your license or identity. To disable: run forge telemetry off.

Machine seat binding: To enforce per-tier machine limits, Forge computes a SHA-256 hash of your machine-id, hostname, and primary MAC address. Only this hash is stored — the raw components are never transmitted or retained by Ironpine Labs.

Payment data: Forge purchases are processed by Stripe. Ironpine Labs never stores raw card data.

For detailed Forge privacy information, see forge.ironpinelabs.com/privacy.

Our Three-Tier Data Model

We organize every piece of data we collect into one of three tiers. This structure determines what we collect, why, and whether you can opt out. We believe this transparency is the minimum standard for any app you trust with personal data.

Tier 1 — Run the App (Required)

You cannot opt out of Tier 1. This data is the contractual minimum required for us to deliver the service. Without it, the app cannot function.

What Tier 1 includes:

• Email address (account creation, authentication, account recovery)
• Authentication tokens (session management)
• Core app data (habits, creature or game state, user preferences)
• Subscription status and purchase history (via RevenueCat, for premium feature access)
• Crash logs and error reports (for app stability)

We retain Tier 1 data for the lifetime of your account. When you delete your account, this data is permanently purged within 30 days (see Data Retention below).

Tier 2 — Improve This App (Opt-Out Available)

Tier 2 analytics help us understand how you use the app so we can improve it. This data is collected via PostHog, a privacy-respecting analytics platform.

What Tier 2 includes:

• Which features you use and how often
• Screen navigation patterns and flows
• Onboarding funnel completion steps
• Session duration and frequency
• Performance metrics (load times, responsiveness)

To opt out: Settings > Privacy > “Help improve [App Name]” toggle. Opting out stops all Tier 2 collection immediately. Previously collected Tier 2 data is deleted when you delete your account.

Tier 3 — Improve the Ironpine Labs Portfolio (Opt-Out Available)

Tier 3 data is anonymized and aggregated before it leaves your device or before we analyze it. It helps us understand which types of tools help users most across our app portfolio — informing future product decisions.

What Tier 3 includes:

• Anonymized habit completion patterns
• Aggregated mood correlation trends
• Task decomposition usage patterns (aggregated)
• Feature adoption rates across app categories

Key commitment: Tier 3 data is never linked back to your account or identity. It is never shared outside Ironpine Labs. It is used only for internal product research.

To opt out: Settings > Privacy > “Help improve future Ironpine Labs apps” toggle. Tier 2 and Tier 3 have independent opt-out controls — opting out of one does not affect the other.

Note: Tier 3 cross-app analytics does not apply to Forge or other developer tools, which operate entirely offline.

What We Never Do With Your Data

No exceptions. No carve-outs.

• We never sell your personal data to anyone, for any price
• We never share your personal data with third parties for marketing or advertising purposes
• We never show targeted or behavioral advertising in any of our apps
• We never share data with data brokers, ad networks, or data aggregators
• We never use your data to build advertising profiles, even internally
• We never monetize your data — our only revenue is from subscriptions and one-time purchases

What We Do Not Collect From Forge Users

For Forge specifically, we do not collect and have no access to:

• Source code or file contents of any kind
• File paths or directory structures from your repositories
• Search queries or tool call inputs and outputs
• Repository names or Git remote URLs
• IP addresses beyond transient Cloudflare edge logs (which Cloudflare does not share with us)
• Location data of any kind

Newsletter Subscriptions

If you sign up for our newsletter, we collect:

• Email address (required): to send you the updates you requested
• First name (optional): to personalize emails
• Interest selections: which apps or updates you want to hear about
• Consent timestamp and IP address: for GDPR/CAN-SPAM compliance audit trail

What we do with newsletter data

• Send you updates about the apps and games you selected
• Send release announcements, major version updates, and relevant news
• We do not sell or share newsletter data with third parties

How to unsubscribe

Every email includes a one-click unsubscribe link in the footer. You can also email [email protected] to request removal. Unsubscribe is immediate — no retention period.

Data processor

Our newsletter is managed via Resend (resend.com) for email delivery and Supabase for subscriber storage. Both providers are GDPR compliant.

Third-Party Services

We rely on a small number of carefully selected third-party services to operate our apps. Each service receives only the data necessary for its function.

Supabase

What they access: Email address, authentication tokens, and all core app data (habits, game state, preferences). Supabase hosts our database and handles account authentication.

Why: We use Supabase as our backend infrastructure. Without it, syncing your data across devices is not possible.

Supabase Privacy Policy — Data is stored on AWS infrastructure in US-East-1 (Northern Virginia).

RevenueCat

What they access: Subscription status, purchase history, and a RevenueCat-generated user ID (not your email). RevenueCat never sees your app content data.

Why: RevenueCat validates in-app purchase receipts from Apple and Google and tells our app whether your subscription is active. This is required for premium feature access.

RevenueCat Privacy Policy

PostHog

What they access: Feature usage events, screen navigation, session timing, and performance metrics — but only if you have not opted out of Tier 2 analytics. PostHog does not receive your email address or any identifying account information. Events are associated with a pseudonymous ID.

Why: PostHog helps us understand how our apps are used so we can improve them. We self-host PostHog’s event ingestion or use PostHog Cloud depending on the app — see the per-app section for specifics.

PostHog Privacy Policy

Cloudflare

What they access: Standard web server logs (IP address, request path, user agent, timestamp) for traffic routed through Cloudflare’s network. This applies to our websites (ironpinelabs.com and app subdomains), not app API traffic.

Why: Cloudflare provides CDN, DDoS protection, and hosting for our static websites.

Cloudflare Privacy Policy

Data Retention

Active accounts

We retain your data for as long as your account exists. You may export your data at any time by emailing [email protected].

Deleted accounts

When you delete your account (Settings > Account > Delete Account):

1. Your account enters a 30-day soft-delete window. During this window, you can recover your account by logging back in with the same email address. Your data is not accessible to you during this window but is not yet purged.
2. After 30 days, all Tier 1 and Tier 2 data associated with your account is permanently and irreversibly deleted from our systems and from our service providers’ systems (Supabase, RevenueCat).
3. Tier 3 data, which is anonymized and aggregated, cannot be deleted on a per-account basis because it is not linked to your account. This data is retained in aggregate form.

Backups

Database backups may retain data for up to an additional 30 days beyond the deletion date before rotating out. This means complete purge from all backup media may take up to 60 days from the date of account deletion.

Analytics data

PostHog event data linked to your pseudonymous ID is deleted when your account is deleted. Aggregated analytics (Tier 3) are retained indefinitely in anonymized form.

Your Rights

GDPR Rights (European Economic Area, UK, and Switzerland)

If you are located in the EEA, UK, or Switzerland, you have the following rights under the General Data Protection Regulation:

• Right of access — Request a copy of all personal data we hold about you
• Right to rectification — Request correction of inaccurate data
• Right to erasure (“right to be forgotten”) — Request deletion of your personal data
• Right to data portability — Request your data in a machine-readable format
• Right to restrict processing — Request that we limit how we use your data
• Right to object — Object to processing based on legitimate interests
• Right to withdraw consent — Where processing is based on consent, withdraw it at any time

Our legal basis for processing Tier 1 data is contractual necessity (Article 6(1)(b) GDPR) — we need this data to deliver the service. Our legal basis for Tier 2 and Tier 3 is legitimate interests (Article 6(1)(f)), which you may opt out of at any time via in-app toggles.

We do not transfer personal data to third countries outside adequate protection frameworks. All processors (Supabase, RevenueCat, PostHog) operate under standard contractual clauses or equivalent protections where applicable.

CCPA/CPRA Rights (California Residents)

If you are a California resident, you have rights under the California Consumer Privacy Act:

• Right to know — Request disclosure of the categories and specific pieces of personal information we have collected about you
• Right to delete — Request deletion of personal information we have collected from you
• Right to opt out of sale — We do not sell personal information. There is nothing to opt out of.
• Right to correct — Request correction of inaccurate personal information
• Right to limit use of sensitive personal information — Request that we limit use of sensitive personal information to what is necessary to provide the services
• Right to non-discrimination — We will not discriminate against you for exercising any of these rights

Other State Privacy Rights

Residents of Virginia (VCDPA), Colorado (CPA), Connecticut (CTDPA), and other states with comprehensive privacy laws have similar rights. We honor these rights for all users regardless of jurisdiction.

How to exercise your rights

• In-app: Settings > Privacy for analytics opt-out toggles. Settings > Account > Delete Account for account deletion.
• By email: [email protected] for data access requests, data export requests, or any other privacy inquiry.

We will respond to verified requests within 30 days. We may ask you to verify your identity before processing requests that access or delete account data.

Children’s Privacy

Our apps are designed for users 18 years of age or older. We do not knowingly collect, use, or disclose personal information from children under 13 (or under 16 where applicable under GDPR).

If we discover that we have collected personal information from a child under 13, we will immediately delete that information and terminate the associated account. If you are a parent or guardian and believe we have inadvertently collected information from your child, please contact us immediately at [email protected].

By creating an account, you represent that you are at least 18 years old.

International Users

Ironpine Labs LLC is based in Florida, United States. Our infrastructure runs on AWS us-east-1 (Northern Virginia, United States) via Supabase.

If you access our Services from outside the United States, your data will be transferred to and processed in the United States. The United States may not have data protection laws equivalent to those in your country. By using our Services, you acknowledge this transfer.

For users in the European Economic Area: we rely on standard contractual clauses (SCCs) with our service providers where required to provide appropriate safeguards for international data transfers. You may request a copy of the applicable transfer mechanisms by contacting [email protected].

Security

We take security seriously. The following controls are in place:

• Encryption in transit: All data transmitted between the app and our servers uses TLS 1.3
• Encryption at rest: All data stored in Supabase is encrypted using AES-256 (provided by the underlying AWS infrastructure)
• Row-level security: Supabase row-level security (RLS) policies ensure that users can only access their own data — our own backend cannot query another user’s data without explicit policy grants
• Authentication security: Industry-standard JWT-based authentication with short-lived access tokens and secure refresh token rotation
• Access controls: Production database access is restricted to essential personnel. We do not grant broad production access.
• Dependency management: We maintain automated dependency scanning and apply security patches promptly

No security measure is perfect. In the event of a data breach that affects your personal information, we will notify affected users within 72 hours of discovery where required by law.

Contact Us

If you have questions, concerns, or requests related to this Privacy Policy:

Ironpine Labs LLC Florida, United States [email protected]

For general support inquiries: [email protected]

We aim to respond to all privacy inquiries within 5 business days.

Changes to This Policy

We may update this Privacy Policy from time to time. For material changes (changes that meaningfully affect how we collect, use, or share your data), we will:

• Provide at least 30 days’ notice via in-app notification
• Send an email notification to registered users
• Update the version number and “Last Updated” date at the top of this document

For minor changes (clarifications, corrections, formatting), we will update the document without advance notice.

The version history of this policy is maintained. If you have concerns about a change, contact us at [email protected] before the effective date of the change.

Your continued use of our Services after the effective date of a revised policy constitutes acceptance of the updated policy.

Per-App Data Collection Details

The sections above describe our portfolio-wide data practices. Each app may collect specific data types within these tiers. Detailed, app-specific data collection tables are available on each app’s page.

Pith’s Nursery

Additional data collected:

• Game progress (stage, location, prestige history)
• Currency balances (gold, capital, diamonds, tokens)
• Business levels, staff assignments, upgrade levels
• Research progress, scroll/card collection and deck configurations
• Raid history and defender configurations

Advertising: Pith’s Nursery may contain optional rewarded video ads. Ads are opt-in — you choose to watch them for in-game currency. Ad-free purchase available. No forced ads.

Forge

Data collected:

• License key hash (SHA-256) and client version — transmitted weekly for license health check only
• Machine fingerprint hash (SHA-256) — stored for seat binding enforcement; raw components never retained
• Anonymous, aggregated tool invocation counts (opt-out via forge telemetry off)
• Email address (for license delivery and support)
• Payment information processed by Stripe (we do not store card numbers)

Data NOT collected: Source code, file paths, search queries, tool call inputs/outputs, index contents, codebase metadata, repository names, Git remote URLs, IP addresses (beyond Cloudflare transient edge logs), or location data.

Advertising: Forge contains no advertisements.

Note: Forge operates entirely on your machine. The three-tier data model described above applies to our mobile apps. Forge collects no Tier 2 or Tier 3 mobile analytics data. For full details, see forge.ironpinelabs.com/privacy.