Short version: Stop That watches what you do only on your Mac — it never sends your activity, what you type, or what you browse anywhere. The only data that leaves your device is what is needed to sell you a license and to lock that license to one Mac: your email and a one-way fingerprint of your computer. That is all.
Who we are
Stop That is a macOS app operated by Daniel Keen, trading as Stop That, a sole trader based in the United Kingdom. We are the “data controller” for the limited personal data described below. In this policy, “we”, “us”, and “Stop That” mean that operator. Questions, or to exercise any of your rights, email hello@stopthat.app.
What the app does on your Mac
To interrupt doomscrolling, Stop That looks at a small amount of information locally, on your device, in real time:
- The bundle identifier of the app that is currently in front.
- For supported browsers you have approved, the URL of the active tab.
- The blocklist, allowlist, and settings you configure.
This information is used only to decide whether the current target is “bad” and to drive the bubble, voice prompts, and Teleport to Work. It is processed on your Mac and stored in your local app settings. None of it is ever sent to us or to any third party. There is no cloud sync, no analytics, and no remote logging of your activity.
What leaves your Mac
Two things, and only when you choose to buy and activate a license:
- Buying a license. Checkout happens with our payment processor (Stripe). When a payment completes, our server receives your email address and the order reference so it can issue and email your license key.
- Activating a license. Each license works on one Mac. When you activate, the app sends your license key together with a one-way (SHA-256) hash of your Mac’s hardware identifier to our server, which records that the key is now bound to that device. We never send or store the raw hardware identifier, and this fingerprint reveals nothing about you, your files, or your activity — it only lets us tell “same Mac” from “different Mac” so a single license isn’t shared across many machines.
On our server (hosted on Cloudflare) we keep a small activation record for each license: the device hash, the activation date, and the purchaser’s email. We do not log your IP address for tracking, and there is no usage telemetry.
Permissions we ask for
- Accessibility. Required to detect the frontmost app and to run Teleport to Work (activating the productive app you chose). macOS grants this only with your explicit approval, and you can revoke it any time in System Settings.
- Automation. Optional, requested per browser, so the app can read the active tab’s URL for site-based rules. If you decline, site rules for that browser simply do not run.
These permissions are used solely for the features described above and only on your device.
Our lawful bases (UK GDPR)
- Selling and delivering your license — performance of our contract with you. Without your email we cannot send or support your purchase.
- Binding a license to one device — our legitimate interest in preventing a single license from being shared across many Macs, which is core to how the product is sold.
- Support and refunds — performance of our contract and our legitimate interest in answering you and honouring the money-back guarantee.
Who we share data with
We do not sell or rent your data. We use a few trusted providers (“processors”) purely to run the service:
- Stripe — processes your payment. You enter your card details with Stripe, not us; we never receive or store your full card number.
- Cloudflare — hosts our website and stores the license and activation records described above.
- Resend — sends you your license-key email after purchase.
Each handles your data under its own privacy policy and only on our instructions.
International transfers
Some of these providers process data on servers outside the UK, including in the United States. Where that happens, the transfer is covered by UK-approved safeguards — such as the UK extension to the EU–US Data Privacy Framework or the ICO’s International Data Transfer Agreement / Addendum to the standard contractual clauses.
How long we keep it
We keep your activation and order records for as long as your lifetime license is active, so we can support you and let you re-activate on the same Mac, and as long as we need to meet legal and accounting obligations. We keep support emails only as long as needed to deal with your query, then delete them.
What we do not collect
- No account, login, or profile.
- No usage analytics or telemetry inside the app.
- No browsing history, keystrokes, screenshots, or screen recordings.
- No advertising identifiers, and we never sell or rent data.
Email and support
If you email us, for support or a refund, we keep that correspondence and your email address so we can reply and honour the money-back guarantee. We use it only for that purpose.
This website
The Stop That website does not set advertising or cross-site tracking cookies. If we add privacy-respecting analytics in the future, we will update this policy first.
Your rights
Your in-app activity data lives only on your own Mac, so you stay in control of it: clear your settings or uninstall the app to remove it. For the limited data we do hold (your activation record, order records, and support emails), under UK GDPR you can ask us to access, correct, delete, or restrict it, or object to our use of it — just email hello@stopthat.app. If you ever move to a new Mac and need your license released, contact us and we will reset the activation.
If you think we have mishandled your data, you can complain to the UK’s supervisory authority, the Information Commissioner’s Office (ICO), at ico.org.uk. We would appreciate the chance to put things right first.
Children
Stop That is not directed at children and is not intended for use by anyone under 16.
Changes
We may update this policy as the app evolves. When we do, we will change the “Last updated” date above. Material changes will be highlighted on this page.
Contact
Questions about privacy? Email hello@stopthat.app.