Legal

Privacy Policy

Last updated: June 1, 2026

This policy explains what data we collect and why, how we handle it, and your rights over it. We never sell your data.

This policy applies to all products built and maintained by Tinker Citadel LLC, including LogCEC (all versions). When we say "you" in this policy, we mean site visitors, prospective customers, customers, and authorized users.

Note for end users of our customers: This policy covers how we handle information about you as a direct user of our Services. It does not cover how we process data on behalf of our customers' own end users — that is governed by our agreement with the relevant customer. If you're an end user of one of our customers and have questions about how your data is handled, please contact that organization directly.

If you are a California resident, see our California Notice at Collection for additional disclosures required by California law.

What we collect and why

Our guiding principle is to collect only what we need. Here's what that means in practice:

Identity and access

When you sign up, we ask for your name, email address, and possibly a few other details. We use this to personalize your account and send you essential product updates. We may also send optional surveys to understand how you use our products. With your consent, we'll send newsletters and other updates. You can also optionally add a profile picture.

We will never sell your personal information to third parties, and we won't use your name or company in marketing without your permission.

Billing information

For paid plans, we ask for payment information and billing address. Your credit card number goes directly to our payment processor — it never touches our servers. We store the last 4 digits of your card number, along with a record of each transaction, for account history, invoicing, and billing support. We store your billing address to charge you correctly, calculate sales tax, send invoices, and detect fraud. We may use aggregate billing data (not individual records) to guide marketing decisions.

Product interactions

We store the content you upload, receive, or maintain in your Tinker Citadel LLC account so our products work as intended — for example, to store your projects in LogCEC. We keep this content as long as your account is active. If you delete your account, we'll delete the content within 180 days.

General geolocation data

We log the IP address used to create your account, and we log the IP address of all account logins. We use this for spam prevention, security, and fraud detection. Login data is retained for as long as your account is active.

Website interactions

We collect browsing activity data for analytics — things like which pages you visited, how long they took to load, your browser and OS versions, your IP address, and which site referred you to us. This helps us test new designs and improve our products. If you're signed in, this data is associated with your account while it's active. See the Advertising and Cookies section for more details.

Anti-bot assessments

We use CAPTCHA and similar tools to prevent spam and brute-force login attempts. When you log in or fill out certain forms, the CAPTCHA service analyzes signals like your IP address, time on page, and mouse movements to determine whether you're a human. It sends us only a score — we don't receive the underlying data it evaluated.

Advertising and Cookies

We occasionally run ads on third-party platforms such as Google. If you click one of our ads, you'll be taken to the LogCEC marketing site. Where permitted by law, we may load an ad-network script on your browser that sets a third-party cookie to help us measure ad effectiveness — for example, which ad you clicked and whether you took a follow-up action.

We also use first-party and some third-party cookies to remember your preferences, make our apps easier to use, run A/B tests, and support analytics.

A cookie is a small piece of text stored in your browser. Cookies can remember login sessions and preferences, and may collect data like browser type, OS, pages visited, and time spent. You can manage or block cookies in your browser settings, but doing so may prevent our apps from working properly.

Voluntary correspondence

When you email us with a question or request, we keep that correspondence — including your email address — so we have context for future interactions.

We also retain information you voluntarily share, such as survey responses. If you agree to a customer interview, we may ask to record it. We'll only do so with your explicit consent.

Mobile app permissions

Our optional desktop and mobile apps may ask permission to access your contacts, calendar, camera, or other device features. These permissions are always optional — our apps work without them, though some features may be unavailable.

When we access or disclose your information

To provide the Services. We work with third-party subprocessors to run our applications. A list of subprocessors for each product is available upon request, along with a list of processors used for other business functions like newsletters and customer surveys.

If you connect a third-party service to your account, we may share relevant information with that service at your direction.

No Tinker Citadel LLC employee reads your content except in limited cases with your permission — for example, if an automated process fails and manual intervention is needed to fix it. We treat these as rare exceptions and look for ways to prevent them from recurring. We may also access your data if required by law (see "When required under applicable law" below).

To suppress you from our ads. Where permitted by law, we may share a one-way scrambled version of your email address with ad networks to prevent you from seeing our ads if you already have a LogCEC account.

To help you troubleshoot. If we need to access your content to help with a support case, we'll ask for your consent first.

To investigate misuse. Accessing a customer's account during an abuse investigation is a last resort. We balance customer privacy with the responsibility to address reports of harm. If we find a violation, we'll take appropriate action, which may include notifying authorities.

Aggregated or anonymized data. We may combine or anonymize data collected through the Services and use it for any purpose, including marketing or analytics.

When required under applicable law. Tinker Citadel LLC is a U.S. company with its primary infrastructure in the U.S.

If Tinker Citadel LLC is acquired or merges with another company, we'll notify you well before any of your personal information is transferred or subject to a new privacy policy.

Your rights with respect to your information

We apply the same data rights to all customers, regardless of where they are located. These rights include:

Many of these rights can be exercised by signing in and updating your account. Some information may be exempt from deletion or access requests under applicable law — for example, data we need to retain to provide our services or meet legal obligations.

To verify your identity before processing a request, we may ask you to confirm your name and email address. If we can't verify you, we may not be able to fulfill the request. If someone is acting on your behalf, we'll need written authorization signed by the account holder.

If we deny a request, you may have the right to appeal under applicable law — we'll explain how in our denial notice. You can also file a complaint with a supervisory authority. If you're in the EU or UK, contact your local data protection authority.

How we secure your data

All data is encrypted in transit using SSL/TLS when moving between the servers and your browser. Database backups are encrypted by our service providers.

Most data in our database is not encrypted at rest — it needs to be immediately accessible to serve you. However, we apply additional encryption to sensitive product data where appropriate.

What happens when you delete content in your product accounts

When you trash content in one of our apps, it stays in your trash for about 45 days (exact timing varies by product). After that, it's no longer accessible through the app and we can't retrieve it for you. The deleted content may remain on our active servers for another 30 days, and in backups for up to 30 days after that. Total purge time: up to 90 days from when you moved it to trash.

If you cancel your account, your content becomes immediately inaccessible and is fully purged from our systems within 60 days. See our Cancellation Policy for more details.

Data retention

We keep your information only as long as needed for the purposes described in this policy. Retention periods depend on what the data is, how it's used, and your choices. We may also retain data as required to meet legal obligations, resolve disputes, or enforce our agreements. Specific retention periods for different data types are noted throughout this policy.

Location of site and data

Our products and infrastructure are primarily based in the United States. If you're located in the EU, UK, or elsewhere outside the U.S., any information you provide will be transferred to and stored in the U.S. By using our Services or providing personal information, you consent to this transfer.

When transferring personal data from the EU

EU law requires that personal data transferred outside the EU receive the same level of protection as it does within the EU. UK law provides similar protections for UK user data. To meet this requirement, Tinker Citadel LLC has adopted Standard Contractual Clauses (SCCs) — a set of contractual protections approved by EU regulators — as part of our data processing agreements. Our Data Processing Addendum (DPA) is available upon request.

Changes and questions

We may update this policy as needed to reflect new practices or comply with applicable law. If we make significant changes, we'll refresh the date at the top of this page.

Questions, comments, or concerns? Email us at privacy@tinkercitadel.com.