Data Use & Privacy Overview

Last updated: March 10, 2026



SaneMode is designed to be local-first and privacy-minimized. Most of what SaneMode creates—such as Receipts, Proof Bundles, and Vault/Ledger records—stays on your device and under your control.


If you have questions, email legal@sanemode.com or support@sanemode.com. For the full legal policy, see our Privacy Policy.


The Short Version


By default, SaneMode keeps creative work on your device and records only the limited, content-minimized signals needed to support proof for a specific export.


  • We do not upload your DAW session/project contents or playable audio. During bounce, SaneMode may compute a one-way audio fingerprint locally for proof, but it does not upload or store playable audio by default.

  • We do not record your screen, messages, or keystrokes.

  • We do not run “always-on” behavioral tracking inside the app.

  • We do not sell personal information and we do not “share” it for cross-context advertising.

  • We do not use your Receipts, Proof Bundles, or support submissions to train generative models.


SaneMode’s core job is to record privacy-minimized integrity signals around an export and to be honest about coverage strength. If something isn’t observable, the output says Gap/Unknown rather than guessing.


What SaneMode Records (in a Receipt / Proof Bundle)


Receipts are designed to stay concise and content-minimized. Depending on your environment and what was observable, they may include:


  • Export audio fingerprint (hash/digest) — a one-way fingerprint computed from the rendered audio stream during bounce to support proof-of-path and tamper detection. It is not playable audio and cannot be used to reconstruct or listen to your audio

  • Time details (kept coarse by default)

  • Minimal DAW / host confirmation details (often omitted from shared receipts by default unless you choose to include them)

  • Coverage strength and Gap/Unknown disclosures

  • Limited environment details (e.g., OS/DAW versions) needed for verification and honesty about what was observed


They are not meant to document how you made the music. They reflect only what was observable around a specific export.


What SaneMode Does Not Record


SaneMode is designed not to capture the substantive content of your work or your personal activity. By default, it does not record:


  • Playable audio (your render audio, stems, tracks, clips)

  • DAW session/project contents (arrangements, MIDI notes, project data)

  • Track names

  • Plug-in settings / parameter values

  • Screen contents

  • Messages or keystrokes


If a workflow ever required something outside these boundaries, it would need explicit, in-product disclosure and an updated policy.


When Data Can Leave Your Device


Most information stays local. Data may leave your device only in a few limited situations:


1. You Export or Share a Receipt / Proof Bundle


  • Sharing is your choice. Once you share something, the recipient’s policies apply.


2. You Contact Support and Choose to Send Materials


  • Support is opt-in. Send only what you’re comfortable sharing. We recommend reviewing/redacting before sending.


3. You Use a Network Feature (When Offered)

Examples may include:


  • License / Seat validation

  • Remote issuance of shareable receipts, where offered


When a network feature is used, the design goal is to transmit only the minimum non-content metadata required for that function. We still do not transmit your DAW session contents or audio contents by default.


Website & Billing Data (Separate from the App)


When you visit sanemode.com, we may collect standard web logs (e.g., IP address, browser type, pages viewed) for security and basic troubleshooting.


If you buy a license, billing is handled by our payment processor. We receive limited billing metadata needed for support (e.g., payment status, invoice ID). We do not store full card numbers.


Analytics, Tracking, and “Training”


In the Pilot:


  • We do not run behavioral analytics or cross-app tracking in the Pilot unless we clearly disclose it.

  • We do not use your Receipts, Proof Bundles, or support submissions to train generative models.

  • We do not sell personal information or share it for cross-context behavioral advertising.


If we ever add optional telemetry for reliability (e.g., crash counts), it will be disclosed clearly and reflected in the Privacy Policy.


Retention (In Plain English)


  • Local artifacts (Vault/Ledger, Receipts, Proof Bundles) remain on your device unless you delete them.

  • Website logs and support communications are retained only as long as needed for security, support, reliability, and legal compliance — then deleted, reduced, or de-identified where feasible.

  • Billing records are retained as required for accounting and tax compliance.


For detailed retention rules, see the Privacy Policy.


Your Choices


You control:


  • Whether to issue a Receipt for an export

  • Whether to export/share a Receipt/Proof Bundle

  • Whether to send anything to support

  • Whether to enable any optional network features (where offered)

  • Whether to grant/revoke OS permissions needed for specific workflows (where applicable)


Where the Full Rules Live


This page is a plain-language overview. The legal details live in:


  • Privacy Policy (data handling and processing)

  • Terms of Service (Service rules, outputs, limitations, acceptable use)

  • End User License Agreement (licensing)

  • Security (security principles and disclosure posture)


If there’s any conflict about privacy/data handling, the Privacy Policy controls.


Contact


Terrahaven, LLC

1209 Mountain Road Pl NE Ste R

Albuquerque, New Mexico 87110

United States


Legal: legal@sanemode.com

Support: support@sanemode.com

Billing: billing@sanemode.com