👋 The Short Version

Terminal Biographer is built by Dangerous Media with a simple philosophy: your data belongs to you. We encrypt everything, we don’t sell anything, and we give you full control over what gets captured, stored, and shared.

This policy explains exactly what we collect, why, and how you can manage it. If you have questions, reach out at support@dmplus.io.

📄 What We Capture

Terminal Biographer captures dev workflow data to generate your daily summaries. This includes:

• Terminal commands — Commands you run in your shell (bash, PowerShell, zsh). We capture the command text, timestamp, and working directory.
• Editor events — File open/save events from VS Code and other editors. We capture file names and timestamps, not file contents.
• Git commits — Commit messages, branch names, and timestamps from your local repositories.
• AI chat content — Conversations shared from Claude, ChatGPT, Gemini, or other AI tools via the Android Share Sheet or desktop capture hooks.
• Manual notes — Any text you manually add to your daily log through the app.

You can disable any capture source individually in the app settings. Nothing is captured until you install and configure the capture hooks.

🔒 Encryption & Storage

All captured data is encrypted at rest using AES-256-GCM with keys derived from your own passphrase. Here’s how it works:

• Your encryption key is derived locally on your device — it never leaves your machine.
• Event logs, summaries, and daily digests are encrypted before being written to disk.
• If you enable cloud sync (optional, via Supabase), data is encrypted before it leaves your device. We store only ciphertext — we cannot read your data.
• Self-hosted users keep all data on their own infrastructure. Zero data touches our servers.

We do not have access to your encryption keys. If you lose your passphrase, we cannot recover your data. This is by design.

☁️ Cloud Sync

Cloud sync is entirely opt-in. If you enable it:

• Encrypted event data syncs to Supabase (hosted on AWS) every 5 minutes.
• Only ciphertext is transmitted and stored. Supabase stores encrypted blobs, not readable data.
• Sync enables multi-device access (desktop + mobile) using the same encryption passphrase.
• You can disable sync at any time. Your cloud data can be deleted on request.

If you don’t enable cloud sync, Terminal Biographer operates entirely offline. No data leaves your machine.

📈 Share Analytics

When you share a summary via a public link, we collect minimal analytics to show you who viewed it:

• Hashed IP addresses — We hash visitor IPs (SHA-256) so you can see unique view counts without us storing raw IPs.
• Platform detection — Browser user-agent is parsed to show platform breakdown (Desktop/Mobile, OS, browser). Raw user-agents are not stored.
• View counts & timestamps — Total views, unique views, and when they happened.
• Referrer data — Where traffic came from (LinkedIn, Twitter, direct link, etc.).

Share analytics are visible only to you (the author). Viewers of your shared content are not tracked across pages or sessions.

📧 Waitlist & Communications

If you sign up for the waitlist, we collect:

• Name and email address — Used only to notify you about launch updates and early access.
• Optional “what do you build” response — Helps us understand our users. Not shared with anyone.

We will not sell, share, or rent your email address. You can unsubscribe at any time. We send launch updates only — no marketing blasts, no third-party newsletters.

🚫 What We Don’t Do

• We do not sell your data to anyone, ever.
• We do not use third-party ad networks or tracking pixels.
• We do not share your captured workflow data with AI providers (Claude API calls for premium summaries are made with your data and returned to you only).
• We do not retain raw data from premium AI summarization — your events are sent to the Anthropic API for processing and not stored on our end beyond the encrypted result.
• We do not access your encryption keys or read your encrypted data.

🌎 Cookies

The Terminal Biographer website uses minimal cookies for basic analytics (page views, referrers). The desktop and mobile apps do not use cookies. We do not use advertising cookies or cross-site tracking.

👤 Your Rights

You have the right to:

• Access all data we hold about you.
• Delete your data at any time (locally and from cloud sync).
• Export your data in standard formats (JSON).
• Disable any or all capture sources.
• Opt out of cloud sync and operate fully offline.

To exercise any of these rights, email support@dmplus.io.

📝 Changes to This Policy

We may update this policy as Terminal Biographer evolves. Significant changes will be communicated via email to waitlist subscribers and displayed in the app. The “last updated” date at the top always reflects the current version.

📬 Contact

Dangerous Media
Email: support@dmplus.io
Web: dmplus.io