Privacy Policy

Last updated: April 29, 2026

This Privacy Policy describes how SpotBar ("we", "us", or "our") collects, uses, and protects your information when you use our desktop application and website at spotbar.app.

The SpotBar Application

SpotBar is a desktop application for macOS (Windows coming soon) that displays live precious-metal spot prices in your menu bar.

Your holdings stay on your computer. All vault data — the metals you own, weights, currencies, cost basis — is stored locally on your machine. We have no access to your holdings, and they are never transmitted to our servers.

The app fetches current spot prices from our caching proxy at api.spotbar.app. The proxy logs aggregate request counts for abuse prevention but does not associate requests with individual users — there is no account, no token, and no per-user identifier in those requests.

The app also sends two anonymous signals you can disable in Settings → Privacy:

• One launch event per app start for usage statistics. Properties include app version, platform, OS version, tier (Free or Pro), and country (derived from IP geolocation; the IP itself is not stored). No user identifier.
• Crash reports sent only when the app crashes. Includes a stack trace and platform info. Strings that look like prices, currency codes, or vault values are stripped before sending.

Both can be turned off completely.

License Activation

License keys validate locally via a checksum baked into the format. There is no server check, no device limit, and no periodic re-validation. SpotBar keeps working forever even if you go offline permanently.

Information We Collect on the Website

While the app's behavior is described above, our website (spotbar.app) collects limited information separately.

Contact Form

When you submit our contact form or the Windows-notify form on the download page, we collect your name (where applicable), email address, and message. This is processed through Netlify Forms and is used solely to respond to your inquiry. We do not add you to a mailing list or use this information for marketing purposes.

Purchase Transactions

Purchases are processed through Stripe, our third-party payment processor. When you make a purchase, Stripe collects your payment information directly. We do not have access to your full payment card information. We receive only what is needed to fulfill your order, such as your name and email address.

Stripe's handling of your payment data is governed by their own privacy policy, which you can review at stripe.com/privacy.

Website Analytics

We use Plausible Analytics, a privacy-focused analytics tool, to understand aggregate website traffic. Plausible does not use cookies, does not collect personal data, and does not track individual visitors across sites. All data is aggregated and anonymous. You can learn more at plausible.io/data-policy.

How We Use Your Information

The limited information we collect on the website is used to:

• Respond to your contact form inquiries
• Process and fulfill your purchase
• Notify you when the Windows version ships, if you submitted that form
• Understand aggregate website traffic patterns

Third-Party Services

We use the following third-party services on our website:

• Netlify — website hosting and contact form processing
• Stripe — payment processing
• Plausible Analytics — privacy-focused, cookie-free website analytics
• MetalpriceAPI — upstream pricing data (only our proxy talks to them; no end-user data)

Each of these services has its own privacy policy governing how they handle data. We do not sell, rent, or share your personal information with any other third parties.

Data Retention

Contact form submissions are retained only as long as necessary to respond to your inquiry. Purchase records are retained as required for business and legal purposes. You may request deletion of your personal data at any time by contacting us.

Data Security

We take reasonable measures to protect the information collected through our website. However, no method of electronic transmission or storage is 100% secure, and we cannot guarantee absolute security.

Children's Privacy

Our services are not directed to children under the age of 13. We do not knowingly collect personal information from children. If you believe we have inadvertently collected such information, please contact us so we can promptly delete it.

Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated revision date. Your continued use of our website or app after any changes constitutes acceptance of the updated policy.

Contact

If you have any questions about this Privacy Policy or your data, please contact us through our contact page.