Privacy Policy

TL;DR: Zen stores all data locally on your Mac using the system Keychain. We don't collect, transmit, or store any of your data on external servers. Your calendar events, OAuth tokens, and settings never leave your device.

Overview

Zen is designed with privacy as a core principle. This policy explains what data Zen accesses, how it's stored, and how it's used—all of which happens exclusively on your local device.

Data Collection and Storage

What Data Zen Accesses

To provide its functionality, Zen requires access to:

Google Calendar Events: Zen reads your calendar events to detect when you're in meetings and automatically enable Focus Mode.
OAuth Credentials: When you authenticate with Google, Zen receives OAuth tokens that allow it to access your calendar data.
Focus Mode Settings: Zen stores your preferences for which Focus Mode to activate and when.

How Data is Stored

All data accessed by Zen is stored exclusively on your local device:

macOS Keychain: OAuth tokens and credentials are stored in the macOS Keychain, the same secure, encrypted storage used by the operating system for passwords and certificates.
Local Application Storage: User preferences and settings are stored in standard macOS application directories on your device.
No Cloud Storage: Zen does not upload, sync, or transmit any of your data to external servers or cloud services.

Third-Party Services

Google Calendar API

Zen uses the Google Calendar API to access your calendar events. This connection is established directly between your device and Google's servers—Zen does not act as an intermediary or store your calendar data.

The OAuth authentication flow follows Google's security standards, and you can revoke Zen's access at any time through your Google Account settings.

No Analytics or Tracking

Zen does not include any analytics, telemetry, or tracking code. We don't collect information about how you use the app, which features you access, or any other behavioral data.

Data Sharing

Zen does not share, sell, rent, or otherwise disclose any of your data to third parties. Because all data stays on your device, there is no opportunity for data sharing.

Data Security

The security of your data is a top priority:

Keychain Encryption: All sensitive credentials are stored using the macOS Keychain, which provides hardware-backed encryption on supported devices.
Local-Only Processing: All calendar event processing and Focus Mode automation happens locally on your device.
No Network Transmission: Beyond the necessary API calls to Google Calendar, Zen does not transmit any data over the network.

Open Source Transparency

Zen is open source software. You can review the complete source code at github.com/katiawheeler/Zen to verify our privacy claims and understand exactly how your data is handled.

Your Rights

Because all data is stored locally on your device, you have complete control:

Access: You can access all data stored by Zen through your macOS Keychain and application data directories.
Deletion: You can delete all Zen data by uninstalling the application and removing its associated Keychain entries.
Revocation: You can revoke Zen's access to Google Calendar at any time through your Google Account settings.

Changes to This Policy

If we make changes to this privacy policy, we will update this page and note the revision date below. As an open source project, all changes will be visible in our Git history.

Contact

If you have questions about this privacy policy or Zen's data handling practices, please open an issue on our GitHub repository.

Last updated: January 8, 2026