Where ReadyEddy reads your calendar — and where the data goes (it doesn’t).
TODO (Phase 2): finalize the privacy page once the v0.1 app behavior is locked. The short version below is the spine; expand each section with the engineering specifics (EventKit entitlement key, exact Sparkle URL, exact permission strings shown to the user) when those are settled in the app repo.
ReadyEddy uses Apple’s EventKit framework to read your calendar events. EventKit is the same API Calendar.app uses, so ReadyEddy sees the same events from the same sources you’ve added to your Mac (iCloud, Google, Exchange, Outlook, etc.) — no separate authentication, no separate sync.
What we read: event title, start time, end time, attached URL, location, notes, and a few flags (declined, all-day, focus-time) so ReadyEddy can decide whether to fetch you. What we transmit: nothing. The data is used in-memory on your Mac to render the takeover, then discarded.
requestFullAccessToEvents. You can revoke at any time from System Settings → Privacy & Security.ReadyEddy checks for updates by fetching a small XML file from readyeddy.app once a day. The request includes your app version and macOS version (standard browser User-Agent stuff) and nothing else. Updates themselves are EdDSA-signed; the app verifies the signature before applying them. You can turn auto-update checks off in Preferences.
If we add a feature that changes any of the above, we’ll update this page and call it out in the in-app release notes.
Questions about privacy or security? Email hello@bearandeddy.com.