← Back to docs
🔒
Reference

Privacy & data

Last verified: May 2026

FocusDragon is built so that the smallest possible amount of data ever leaves your Mac, and so that the data that does leave is precisely accounted for. This page is the canonical reference — if anything here conflicts with the in-app copy, this page is right.

What we store on our servers

  • Account: email, display name, and an optional age range. Stored on EU-hosted infrastructure managed by our authentication partner.
  • Block configurations and entitlements (if you've opted into cross-device sync). Daily statistics rollups when sync is enabled.
  • Subscription state: tier, expiry, and your payment customer ID. Card numbers are handled entirely by our payment partner — we never see them.
  • A single monthly per-user AI usage counter (one integer) for quota enforcement.

What we do NOT store

  • AI screenshots and text snippets — sent to FocusDragon AI for classification, then immediately discarded. FocusDragon never persists them on its servers or on your Mac.
  • Per-second usage telemetry — stays on-device. Your focus session history, block lists, lock configurations, and task contexts live in a local database.
  • Browsing history, page contents, or keystrokes outside an active AI focus block — never captured.
  • Payment card numbers — handled by our payment partner, never touch our infrastructure.

AI classification: exactly what happens

When you start a focus block with a task context ("writing my essay"), the app captures a downscaled, compressed screenshot of your main display at regular intervals along with a short text snippet (up to ~1,200 characters of visible browser DOM text, or window titles on native apps). Capture only runs while a block is active.

On a paid AI Focus plan, the payload transits FocusDragon's server so we can authenticate your subscription and increment the monthly counter, then routes through FocusDragon AI's third-party model providers — the content is not logged or stored. With BYOK enabled, the payload goes directly from your Mac to your configured provider and our servers see nothing.

Third parties

  • FocusDragon AI — the multimodal classifier behind AI Focus. Built on top of third-party model providers (with automatic failover between providers when one is unavailable). API inputs are NOT used to train the underlying models; inputs are retained up to 30 days for abuse and safety monitoring, then permanently deleted. The specific providers may rotate as we improve the classifier — the load-bearing privacy guarantee is the no-training, short-retention contract.
  • Our authentication, error-monitoring, analytics, payment, and hosting partners — all operate on EU-hosted infrastructure. They handle account auth and sync, crash reports (stack traces only; no screen content, no page text, no PII), opt-in anonymous aggregate product analytics (off by default), payments and the billing portal (all card data), and the website/API hosting layer.

Hard-coded text-capture exclusions

On these site categories, the browser extension never sends page text alongside the screenshot — only the URL and tab title flow:

  • Banking, payments, and brokerage sites.
  • Email providers.
  • Identity, authentication, and password manager sites.
  • Healthcare sites.
  • Incognito and private browsing tabs (all browsers).

The exclusion list is baked into the extension — you can't accidentally turn it off.

GDPR: data export and deletion

  • Export: Settings → Account → Export Data. Generates a JSON bundle of everything we hold for your account.
  • Deletion: Settings → Account → Delete Account. Permanently removes your account row, subscription metadata, synced configurations, and usage counters. Payment records are retained as long as legally required for tax/accounting.
  • Questions or formal requests: hi@focusdragon.app.
Full Privacy Policy: focusdragon.app/privacy.
Still stuck? Contact support