Privacy by design

What the public sees

Public mower pages show the handle you picked at sign-up, the make and model of your mower, its firmware version, and the entries you chose to publish. That's it. Your email, your real name, and the location of your garden are never rendered on a public page.

What stays on your device

Anything you don't explicitly save to a logbook entry stays on your device. We don't ship a background tracker, we don't ask for GPS permissions, and the app has no concept of "where your mower is right now".

What we store, and where

Your account (email + handle), your mowers, and your logbook entries live in a Postgres database hosted in the EU. Access is gated by row-level security: a query for your data, signed with your session, can only ever return your rows. Server-side admin access is reserved for maintenance and is logged.

Aggregate, anonymized stats

We may publish or share aggregate, anonymized statistics derived from the database: things like "median blade-change interval for model X", "share of mowers on firmware Y", or failure-rate trends per brand. These are group-level numbers, never individual rows, never tied to a handle, an account or an email. This may be free, or sold later to fund the project.

If you delete your account, your rows are removed and stop feeding future aggregates. Numbers already published can't be unpublished, but they don't identify you.

Your handle vs. your name

You pick a handle when you sign up. That handle is what appears next to your mowers and entries on the public side. You can keep your real name to yourself. The app never asks for it and never displays the email you signed in with.

Deleting your data

You can delete entries and mowers from inside the app. To wipe everything at once, go to Profile → Delete account. That button removes your sign-in, your profile, every mower, every firmware row, every logbook entry and every photo you uploaded. It runs immediately, in one database transaction.

No soft delete, no "deleted" flag, no archive table, no separate backup we hold onto. Once the request returns, the data is gone for good and we have no way to bring it back.

Cookies and browser storage

mowlog uses only strictly necessary browser storage (a single session token in localStorage) to keep you signed in. No analytics, advertising, tracking or profiling cookies are used, so no consent banner is shown. Full breakdown on the cookie policy.

Legal notice (GDPR)

This section sets out the minimum information required by Articles 13 and 14 of the EU General Data Protection Regulation.

Controller

The data controller for personal data processed through mowlog is the mowlog team. For any privacy request, write to privacy@mowlog.app.

Categories of personal data

• Account data: email address, public handle, hashed password or OAuth identifier.
• Beta allowlist: while Mowlog is in invitation-only beta we keep a list of email addresses authorized to register, together with an optional internal note and the date the entry was added.
• Content you create: mowers, firmware entries, lawns, logbook entries, photos, screenshots.
• Technical data strictly necessary to serve the app: IP address and user agent in short-lived server logs.

Purposes and legal bases

• Providing the service you signed up for (account, logbook, public pages), performance of a contract, Art. 6(1)(b).
• Keeping the service secure and operational (abuse prevention, short-lived server logs), legitimate interest, Art. 6(1)(f).
• Transactional email (sign-in, password reset, account changes), performance of a contract, Art. 6(1)(b).
• Aggregate, anonymized statistics derived from the database, processed only after irreversible aggregation, so the result is no longer personal data.

Recipients

We share personal data only with infrastructure providers acting as processors under a data processing agreement. The full list, with their roles and locations, is on the hosting & data residency page. We do not sell personal data. Aggregate, anonymized statistics derived from the database may be published or shared (see above), and the site may carry advertising or sponsorships in the future, neither of which involves sharing personal data. If that ever changes, this page is updated before the change takes effect.

International transfers

Primary storage is in the EU (AWS eu-west-3, Paris). See hosting & data residency for the full picture, including how edge compute is handled and the use of EU Standard Contractual Clauses.

Retention

Account and content data are kept for as long as your account is active. When you delete your account, all rows and uploaded files are removed immediately and irrevocably. Server access logs are kept for a short rolling window for security purposes and then discarded.

Your rights

You have the right to access, rectify, erase, restrict and port your personal data, and to object to processing based on legitimate interest. You can exercise the most important of these directly in the app: edit your profile and mowers, and use Profile → Delete account for full erasure. For anything else, email the address above. You also have the right to lodge a complaint with your national data protection supervisory authority.

Automated decision-making

mowlog does not carry out automated decision-making or profiling that produces legal or similarly significant effects on you.

Changes

If this policy changes in a way that affects how your data is processed, the page will be updated before the change takes effect.