Privacy Policy
Last updated: 2026-07-04
This policy covers the Aikonic applications that exist today: Clarity and Control. Any future Aikonic application will be added here when it ships.
Clarity and Control read the hardware inside your machine and show it to you. That is the whole loop, and it runs locally. No account. No analytics. No telemetry. No remote logging. Nothing about your hardware readings, or how you use the app, ever leaves your computer. The one thing an app sends is a non-reversible token that activates its licence, described below — it carries no telemetry and no personal data.
This page has two parts: what the apps do with your data, and the one thing the website collects. Both are written to be checked against what the software actually does, not taken on faith.
The apps
What stays on your machine
Everything. Clarity and Control read CPU, GPU, memory, storage, network, and process telemetry through Windows APIs and a bundled LibreHardwareMonitor sidecar, and keep only what they need, locally:
- The most recent snapshot, cached so the dashboard paints instantly on the next launch instead of waiting for the first live reading.
- A rotated, size-capped error log for post-mortem, it never leaves your disk.
- Your preferences (theme, layout, alert rules, polling cadence), stored in the app's own local data.
All local reads, all local writes. None of it touches the network.
What the apps send
The apps send two things over the network, and both are narrow. There is no telemetry and no usage reporting behind either:
- When you press Check for updates in Settings, the app fetches a version number from GitHub: no identifiers, no payload, nothing from your snapshots. It is the only reason an app touches the network in normal use, and if you never press it, it never happens.
- Licence activation. Every Aikonic app — Clarity included — activates its licence: a token on first launch, then a short daily heartbeat. The token is a non-reversible install fingerprint, derived on your machine from stable hardware IDs that themselves never leave and cannot be recovered from it. The server keeps it only in a further-hashed form, uses it solely to validate your licence and count unique installs, and discards it after prolonged inactivity — no snapshot, no usage data, not tied to who you are.
What the apps never send
- No telemetry, not anonymised, not aggregated, not opt-in.
- No crash reports. The log stays on your disk; if you want to file a bug, an explicit Export builds a bundle that you choose to share. It carries your capability flags, the latest snapshot, and your preferences, never credentials, documents, browsing, or network traffic, and it stays on your machine until you send it.
- No usage analytics, no open counts, no session lengths, no feature-flag events.
- No behavioural identifiers, no machine name, no login, no advertising ID, no usage profile. The one identifier an app sends is the licence-activation token above, a non-reversible install fingerprint used only to validate your licence and count installs.
- No third-party SDKs, no ad networks, no fonts pulled from a CDN.
If this ever changes
Aikonic's network behaviour today is exactly the two items above. If a future release ever adds anything else that touches the network, this page changes first, in the same release as the code, and the in-app privacy card changes with it. A privacy claim is only worth what you can verify, so Aikonic keeps it verifiable. Found something that does not match? Treat it as a security issue: security@aikonic.app.
The website
The site collects one thing, and only if you offer it: an email address, so we can tell you when Aikonic ships.
What it stores
- Your email address.
- The date and time you submitted it.
That is the whole record. No name, no IP address, no fingerprint.
Why
To send you exactly one email: the launch announcement, with the download link. No newsletter, no drip sequence, no follow-ups.
Where it lives
In a Cloudflare D1 database, encrypted at rest. The site is served through Cloudflare Pages, and submissions are checked with Cloudflare Turnstile, a privacy-respecting alternative to CAPTCHA that sets no tracking cookies.
How long it is kept
Until the launch email has been sent, then deleted within 30 days. If Aikonic is cancelled before launch, the whole list is deleted within 30 days of that decision. It is never sold, rented, shared, or handed to a third party. The launch email comes from us directly.
Your rights
Email privacy@aikonic.app to see what is held about you, or to have it erased, at any time. Requests are honoured within 30 days, usually sooner. Under the GDPR and UK GDPR you have the rights of access, rectification, erasure, restriction, portability, and objection, all exercised through that address.
Cookies
The site sets none. Turnstile may set a short-lived cookie while it verifies a submission; it expires on its own and is not used for tracking.
Who is responsible
The launch-list data is controlled by Hancock Technologies, Switzerland. See the contact page for details.