tack

privacy policy

last updated: october 25, 2025

we built tack to help you focus. we keep your data private, secure, and only use what we need to make the app work.

what we collect

  • account info: email address, name, and authentication details
  • notifications: messages you choose to triage through tack
  • tasks: quick notes you create
  • audio recordings: the last 30 seconds when you use “tack that”
  • usage data: how you use the app to improve features

how we use your data

  • to triage your notifications
  • to convert audio into tasks (then we delete the audio right away)
  • to improve tack based on how people use it
  • to contact you only when there's something important to say

audio recordings

when you use “tack that”, we record the last 30 seconds of audio. we convert it to a task, show it to you for confirmation, and delete the audio immediately. we don't keep audio recordings.

how long we keep data

we keep your data only as long as we need it. when you delete something or close your account, it's gone. no unnecessary backups, no hidden archives.

third-party tools

we use trusted third-party services that protect your data:

  • marketing tools (to manage early access)
  • cloud infrastructure (to run the app)
  • speech-to-text services (to convert audio to tasks)

all third parties we work with maintain strong data protection standards.

what we don't do

  • we never sell your data
  • we don't spam you with emails
  • we don't share your data except with the third-party tools needed to run tack
  • we don't keep data longer than necessary

your rights

you can:

  • see what data we have about you
  • ask us to correct or delete it
  • export your data
  • close your account at any time

security

we use industry-standard security measures to protect your data:

  • end-to-end encryption: your messages are encrypted with your personal encryption key. only you can decrypt your data.
  • encryption in transit: all data is encrypted using TLS when transmitted
  • encryption at rest: your data is encrypted in our database
  • secure authentication: we use Microsoft Entra ID for authentication
  • zero-knowledge architecture: our administrators cannot access your messages without your credentials

your encryption keys are stored in Azure Key Vault and protected by Azure's enterprise-grade security.

ai & automated processing

tack uses smart features to help you stay focused. here's how we handle AI and automation:

zero-retention ai processors

we may use third-party AI processors for classification and optional drafting with zero data retention and no training on your data. we send only the minimum necessary snippets, and you can turn these features off at any time.

derived metadata only

tack stores small amounts of derived metadata you approve (e.g., labels, due dates, task text you saved). we do not keep message bodies.

automated actions with consent

with your consent, tack can draft emails or schedule meetings on your behalf. drafts are shown for review, automations can be disabled, and a log of automated actions is available.

short-lived processing

where brief access to text is needed to compute a result, tack processes it in a short-lived buffer and discards it immediately after. no content is retained beyond what you explicitly save.

changes to this policy

if we make changes, we'll let you know. we'll update the date at the top and email you if the changes are significant.

questions?

reach out to us at privacy@setyourtack.com