StoicOS

PRIVACY POLICY

Last updated: January 12, 2026

This Privacy Notice for ToModern e.U. ("we," "us," or "our"), describes how and why we might access, collect, store, use, and/or share ("process") your personal information when you use our services ("Services"), including when you:

  • Visit our website at https://stoicos.co or any website of ours that links to this Privacy Notice.
  • Download and use our mobile application (StoicOS), or any other application of ours that links to this Privacy Notice.
  • Engage with us in other related ways, including any marketing or events.

Questions or concerns? Reading this Privacy Notice will help you understand your privacy rights and choices. We are responsible for making decisions about how your personal information is processed. If you do not agree with our policies and practices, please do not use our Services. If you still have any questions or concerns, please contact us at support@stoicos.co.

SUMMARY OF KEY POINTS

  • What personal information do we process? We process information depending on how you interact with StoicOS, the choices you make, and the features you use.
  • Do we process sensitive info? No.
  • Do we collect info from third parties? No.
  • How do we process your info? To provide, improve, and administer our Services, communicate with you, for security/fraud prevention, and to comply with the law.
  • How do we keep your info safe? We use organizational and technical processes, though no transmission is 100% secure.
  • What are your rights? Depending on your location, you have specific rights regarding your personal data.
  • How to exercise rights? Contact us at support@stoicos.co.

TABLE OF CONTENTS

  1. WHAT INFORMATION DO WE COLLECT?
  2. HOW DO WE PROCESS YOUR INFORMATION?
  3. WHAT LEGAL BASES DO WE RELY ON?
  4. WHEN AND WITH WHOM DO WE SHARE YOUR INFORMATION?
  5. DO WE OFFER ARTIFICIAL INTELLIGENCE-BASED PRODUCTS?
  6. HOW DO WE HANDLE YOUR SOCIAL LOGINS?
  7. HOW LONG DO WE KEEP YOUR INFORMATION?
  8. HOW DO WE KEEP YOUR INFORMATION SAFE?
  9. DO WE COLLECT INFORMATION FROM MINORS?
  10. WHAT ARE YOUR PRIVACY RIGHTS?
  11. CONTROLS FOR DO-NOT-TRACK FEATURES
  12. DO UNITED STATES RESIDENTS HAVE SPECIFIC PRIVACY RIGHTS?
  13. DO OTHER REGIONS HAVE SPECIFIC PRIVACY RIGHTS?
  14. DO WE MAKE UPDATES TO THIS NOTICE?
  15. HOW CAN YOU CONTACT US ABOUT THIS NOTICE?
  16. HOW CAN YOU REVIEW, UPDATE, OR DELETE DATA?

1. WHAT INFORMATION DO WE COLLECT?

Personal information you disclose to us

In Short: We collect personal information that you provide to us.

We collect personal information that you voluntarily provide to us when you register on the Services, express an interest in obtaining information about us, or when you participate in activities on the Services.

  • Personal Information Provided by You: This may include passwords, email addresses, and billing addresses.
  • Payment Data: We collect data necessary to process your payment. All payment data is handled and stored by Paddle. You may find their privacy notice here: https://www.paddle.com/legal/privacy.
  • Social Media Login Data: If you choose to register using social media account details, we collect profile information from the provider.
  • Mobile Device Access: We may request access or permission to certain features from your mobile device, including your mobile device's contacts and storage. This access is used locally on your device to enable features such as direct contact searching. This data is processed locally and is never synced to, stored on, or read by our servers.
  • Mobile Device Data: We automatically collect device ID, model, manufacturer, OS version, and IP address.
  • Push Notifications: We may request to send you push notifications regarding your account. You can opt out in your device settings.
  • Analytics & Cookies (PostHog): On our website we use analytics cookies provided by our processor PostHog to understand how our site is used and to improve it. In the EU/EEA and other regions that require it, we only start PostHog and set analytics cookies after you have given your consent via our cookie banner. You can find more information about PostHog's own data practices in their privacy notice: https://posthog.com/privacy.
  • Analytics (Plausible): We also use Plausible Analytics on our public website to measure privacy-friendly traffic, page views, and conversion events. Plausible does not use cookies or collect personal data such as IP addresses for tracking. You can find more information about Plausible's own data practices in their data policy: https://plausible.io/data-policy.

Google API Our use of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

2. HOW DO WE PROCESS YOUR INFORMATION?

In Short: We process your information to provide, improve, and administer our Services, communicate with you, for security and fraud prevention, and to comply with law.

We process your personal information to facilitate account creation and authentication, deliver services, protect vital interests, prevent harm, and comply with applicable legal obligations.

3. WHAT LEGAL BASES DO WE RELY ON?

In Short: We only process your personal information when we believe it is necessary and we have a valid legal reason to do so under applicable law.

If you are located in the EU or UK, we may rely on consent, performance of a contract, legal obligations, and vital interests. If you are located in Canada, we may process your information based on express or implied consent, or in exceptional cases where applicable law permits processing without consent.

4. WHEN AND WITH WHOM DO WE SHARE YOUR INFORMATION?

In Short: We may share information in specific situations described in this section.

We may share or transfer your information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company.

5. DO WE OFFER ARTIFICIAL INTELLIGENCE-BASED PRODUCTS?

In Short: We offer products, features, or tools powered by artificial intelligence, machine learning, or similar technologies.

As part of our Services, we offer products, features, or tools powered by artificial intelligence, machine learning, or similar technologies. We provide the AI Products through third-party service providers, including Google Cloud AI. Your input, output, and personal information may be shared with and processed by these AI Service Providers to enable your use of our AI Products.

6. HOW DO WE HANDLE YOUR SOCIAL LOGINS?

In Short: If you choose to register or log in to our Services using a social media account, we may have access to certain information about you.

We will use the information we receive only for the purposes described in this Privacy Notice or otherwise made clear to you on the relevant Services.

7. HOW LONG DO WE KEEP YOUR INFORMATION?

In Short: We keep your information for as long as necessary to fulfill the purposes outlined in this Privacy Notice unless otherwise required by law.

When we have no ongoing legitimate business need to process your personal information, we will delete or anonymize such information, or securely store and isolate it until deletion is possible.

8. HOW DO WE KEEP YOUR INFORMATION SAFE?

In Short: We aim to protect your personal information through organizational and technical security measures.

No electronic transmission over the Internet or information storage technology can be guaranteed to be 100% secure. Transmission of personal information to and from our Services is at your own risk.

9. DO WE COLLECT INFORMATION FROM MINORS?

In Short: We do not knowingly collect data from or market to children under 18 years of age or the equivalent age as specified by law in your jurisdiction.

If we learn that personal information from users less than 18 years of age has been collected, we will deactivate the account and take reasonable measures to promptly delete such data.

10. WHAT ARE YOUR PRIVACY RIGHTS?

In Short: Depending on your location, you have rights that allow you greater access to and control over your personal information.

These may include rights to request access, rectification, erasure, processing restriction, portability, and objection to certain processing. You can make requests by contacting us at support@stoicos.co.

11. CONTROLS FOR DO-NOT-TRACK FEATURES

At this stage, no uniform technology standard for recognizing and implementing DNT signals has been finalized. We do not currently respond to DNT browser signals.

12. DO UNITED STATES RESIDENTS HAVE SPECIFIC PRIVACY RIGHTS?

In Short: If you are a resident of California, Colorado, Connecticut, Delaware, Florida, Indiana, Iowa, Kentucky, Maryland, Minnesota, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Rhode Island, Tennessee, Texas, Utah, or Virginia, you may have specific privacy rights.

CategoryExamplesCollected
A. IdentifiersContact details, online identifier, IP address, email address, and account nameYES
B. Personal information as defined in the California Customer Records statuteName, contact information, and financial informationYES
C. Protected classification characteristicsGender, age, race and ethnicity, marital status, and other demographic dataNO
D. Commercial informationTransaction information and purchase historyNO
E. Biometric informationFingerprints and voiceprintsNO
F. Internet or similar network activityBrowsing history, search history, and online behaviorNO
G. Geolocation dataDevice locationNO
H. Audio, electronic, sensory, or similar informationImages, audio, video, or call recordingsNO
I. Professional or employment-related informationBusiness contact details, work history, and qualificationsNO
J. Education InformationStudent records and directory informationNO
K. InferencesProfiles or summaries about preferences and characteristicsNO
L. Sensitive personal InformationNO

To exercise these rights, contact us at support@stoicos.co.

13. DO OTHER REGIONS HAVE SPECIFIC PRIVACY RIGHTS?

In Short: You may have additional rights based on the country you reside in.

Residents of Australia, New Zealand, and the Republic of South Africa may have additional rights to access, correct, or complain about processing of personal information.

14. DO WE MAKE UPDATES TO THIS NOTICE?

In Short: Yes, we will update this notice as necessary to stay compliant with relevant laws.

We may update this Privacy Notice from time to time. The updated version will be indicated by an updated "Revised" date at the top.

15. HOW CAN YOU CONTACT US ABOUT THIS NOTICE?

If you have questions or comments about this notice, you may email us at support@stoicos.co or contact us by post at:

ToModern e.U.
Seitenstettengasse 5/37
Vienna, Vienna 1010
Austria

16. HOW CAN YOU REVIEW, UPDATE, OR DELETE DATA?

To request to review, update, or delete your personal information, please send an email to support@stoicos.co.

SPECIAL DISCLOSURE: DEVICE MANAGEMENT & SYSTEM CONTROL

In Short: StoicOS requires "Device Owner" status to function as a system-level minimalist environment. This allows us to lock the device to our launcher and enforce your focus rules. This power is used exclusively for local device control, not for data collection.

  • Device Owner / Kiosk Mode: The app may enforce the launcher, apply application whitelisting, and prevent uninstallation or changes to critical focus settings.
  • VpnService (Mandatory Minimalist Filter): StoicOS uses a local VpnService to intercept DNS requests locally and block distracting domains.
  • No Remote Routing: Your internet traffic is not routed through our servers; the filtering happens entirely on your hardware.
  • Zero Logs: We do not see, log, or store the history of the apps you use or the websites you visit.

Data Integrity Guarantee: Despite having "Device Owner" privileges, StoicOS does not have any code designed to read your personal messages, emails, photos, or keystrokes. Our "Device Owner" status is used as a shield to keep distractions out, not as a window to look at your data.