Privacy Policy

Last updated: May 22, 2026

What Patina is

Patina is a Mac app that helps you stay organized by connecting to your calendar, email, and messages. It gives you daily briefings, keeps notes on the people in your life, and tracks your goals.

Data we collect

Patina stores your data locally on your device. When you connect Google Calendar or Gmail, we request read-only access to your calendar events and email. This data is used solely to provide you with summaries and context inside the app.

How we use Google data

Patina accesses Google Calendar and Gmail with the following permissions:

• calendar.readonly — Read your calendar events to show your schedule
• gmail.readonly — Read your email to surface relevant messages in briefings
• email — Identify your Google account

Patina's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Data storage

Your files are stored locally on your Mac in a folder you choose. If you opt into GitHub sync, your data is pushed to a private repository only you control. Google OAuth tokens are held server-side encrypted at rest in Cloudflare Workers KV (AES-GCM) so both Mac and iPhone can read the same account. MCP service tokens (Notion, Linear, etc.) and your Patina sign-in token stay in the device Keychain.

Data sharing

We do not sell your personal data. Patina sends data to third-party services only to operate features you choose: connected account APIs such as Google, GitHub, Beeper, and MCP services; sync destinations you configure; and the AI provider selected in Settings or included with your plan.

AI requests may be routed to Anthropic for Claude or Claude Code, Google Gemini for Patina AI subscription and worker-backed features, OpenAI for OpenAI API key usage and lightweight title generation, or OpenRouter when you configure it. Those requests may include your message, attachments, conversation history, and relevant app context such as calendar events, emails, files, notes, or connected-account snippets needed to answer the request. Patina does not use your data to train its own models.

Data retention

All data stays on your device until you delete it. Disconnecting a service immediately removes its stored credentials. Uninstalling Patina removes all app data.

Security

Server-held Google OAuth tokens are encrypted at rest with AES-GCM before being written to Cloudflare Workers KV; device-held tokens live in the macOS or iOS Keychain. All API communication uses HTTPS. The app uses hardened runtime and is notarized by Apple.

Contact

Questions about this policy? Email gabe@valdivia.works.