Focus Blinks - Privacy Notice

Last updated: September 5, 2025

This Privacy Notice for CrazinnCode Lab, LLC ("we," "us," or "our") describes how and why we might access, collect, store, use, and/or share ("process") your personal information when you use our services ("Services"), including when you:

Visit our website at cacodelab.com (“Site”).
Download and use our mobile application, Focus Blinks (“App”).
Engage with us in other related ways, including any support, sales, marketing, or events.

Our App helps you manage your productivity using the Pomodoro Technique by tracking metrics such as completed sessions and breaks. To help us understand usage and improve the App, these productivity metrics, along with technical and usage data, are processed by our third-party analytics service, Google Analytics for Firebase. We also use Firebase Crashlytics to collect crash reports. This notice explains what data is collected and how it is processed across all our Services.

Questions or concerns? This Privacy Notice explains your privacy rights and choices. If you disagree with our policies and practices, please do not use our Services. For any further questions or concerns, refer to the “CONTACT US” section at the end of this document.

INFORMATION WE COLLECT

Personal information you disclose to us

We collect personal information from three sources: information you provide to us directly, information that is collected automatically from your device, and permissions you grant us on your mobile device.

Information You Provide to Us Directly

We collect personal information that you voluntarily provide when you contact us for support, express an interest in our Services, or otherwise communicate with us. This information typically includes:

Contact Information: Your name, email address, and phone number.
Communications: The content of your messages to us.

Information We Collect Automatically

When you use our Services, we automatically collect certain technical information. This information does not reveal your specific identity (like your name) but is necessary for the operation and improvement of our Services.

On our Site: We automatically collect device and usage information when you visit, such as your IP address, browser type, and operating system. This information is primarily needed to maintain the security of our Site and for our internal analytics using Google Analytics.
On our App: We use third-party services from Google to automatically collect the following information:
- Productivity Metrics (via Firebase Analytics): We collect your Pomodoro metrics, including the number of sessions completed, breaks taken, pauses within a session, and session timings. This data is processed to help us understand usage patterns and improve the App.
- Usage and Performance Data (via Firebase Analytics): This includes anonymized data such as your device type, operating system version, country, session duration, and how you interact with the App's features (e.g., taps, screens viewed).
- Crash Data (via Firebase Crashlytics): If the App crashes, we automatically collect information about the crash, including the device state, device model, and operating system version. This is essential for us to diagnose and fix bugs.

Mobile Device Permissions

Push Notifications: We may request permission to send you push notifications related to your Pomodoro sessions (e.g., when a timer ends). You can opt out at any time by turning them off in your device's settings.

Other Permissions: We may request access to other device features, such as Reminders, to enable specific app functionality. You can change these permissions at any time in your device's settings.

DATA PROCESSING

We process your information for a variety of reasons, depending on how you interact with our Services. The purposes for which we process information include:

To Provide, Operate, and Maintain our Services: We process your Productivity Metrics within the App to deliver its core functionality, such as running the timers and displaying your stats. We also process technical data to operate and maintain our Site.
To Improve and Optimize our Services: We process Productivity Metrics and Usage and Performance Data collected via Firebase Analytics to understand how users interact with our App and Site. This helps us identify popular features, discover areas for improvement, and enhance the user experience.
To Maintain Stability and Fix Bugs: We process Crash Data collected via Firebase Crashlytics to identify, diagnose, and resolve technical issues and bugs within the App, ensuring it remains stable and reliable.
To Respond to User Inquiries and Provide Support: We may process information you send to us directly (e.g., via email) to respond to your questions and solve any potential issues you might have with the Services.
To Send You Marketing and Promotional Communications: We may process the personal information you send to us for our marketing purposes, but only if you have given us your consent to receive such communications (i.e., you have opted-in). You may provide this consent by, for example, signing up for our newsletter or checking a consent box on a form. You can opt-out of our marketing emails at any time by clicking the "unsubscribe" link in any email we send.
For Security and Fraud Prevention: We may process your information as part of our efforts to keep our Services, users, and business safe and secure.
To Comply with our Legal Obligations: We may process your information to comply with applicable laws, respond to valid legal requests, and exercise or defend our legal rights.

DATA SHARING

We do not sell your personal information. We only share your information with third parties in the limited circumstances described below.

Service Providers: We share information with third-party vendors and service providers that perform services for us or on our behalf. Our primary service provider is Google, which provides Firebase Analytics and Firebase Crashlytics. We share your Productivity Metrics, Usage and Performance Data, and Crash Data with Google so they can provide us with analytics and crash reporting services that help us improve and maintain our App.
Business Transfers: We may share or transfer your information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company.
Legal Requirements: We may disclose your information where we are legally required to do so in order to comply with applicable law, governmental requests, a judicial proceeding, court order, or legal process.

COOKIES AND OTHER TRACKING TECHNOLOGIES

We may use cookies and similar tracking technologies to collect and store your information.

On our Site

Our Site uses first-party and third-party cookies for several purposes. We use cookies and similar technologies to help us analyze how users interact with the Site, maintain security, and improve our Services. Our primary analytics provider for the Site is Google Analytics.

On our App

Our App does not use traditional browser cookies. Instead, it uses mobile device identifiers (such as Apple's Identifier for Advertisers (IDFA) or Android's Advertising ID) which function in a similar way. We use these identifiers in conjunction with our analytics and crash reporting services, Google Analytics for Firebase and Firebase Crashlytics, to collect the usage and crash data described in the “Information We Collect” section.

Your Choices

You can manage these tracking technologies through your device and browser settings.

Browser Cookies: Most web browsers are set to accept cookies by default. You can usually choose to set your browser to remove or reject cookies, though this could affect certain features of our Site.
Mobile Device Identifiers: You can typically limit the use of or reset the advertising identifier on your mobile device through its privacy settings.

For more information on Google's privacy practices, please visit the Google Privacy & Terms page. To opt out of being tracked by Google Analytics across all websites, visit tools.google.com/dlpage/gaoptout.

DATA RETENTION PERIOD

We will only keep your personal information for as long as it is necessary for the purposes set out in this Privacy Notice, unless a longer retention period is required or permitted by law (such as for tax, accounting, or other legal requirements).

Analytics and Crash Data

The analytics and crash data collected from our App and Site are processed and stored by our service provider, Google. This data is subject to Google's data retention policies. By default, Google Analytics retains aggregated and user-level data for up to 14 months. This data is used for analyzing trends over time. For more information, you can review Google's Data Retention policies.

Information You Provide to Us

Personal information that you provide to us directly, such as through email or a contact form, will be kept for as long as necessary to fulfill the purpose for which it was collected (e.g., to respond to your inquiry) or for our legitimate business interests, unless a longer period is required by law.

When we have no ongoing legitimate business need to process your personal information, we will either delete or anonymize such information. If this is not possible (for example, because your personal information has been stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible.

DATA SECURITY

We have implemented appropriate and reasonable technical and organizational security measures designed to protect the security of any personal information we process.

Our Systems: For data we process directly (such as on our Site or through email), we employ industry-standard security measures.
Our Service Providers: The analytics and crash data collected by our App and Site are transmitted to and stored by our service provider, Google. We rely on the robust technical and organizational security measures provided by Google to protect this information. You can learn more about Google's security practices at Google Cloud Security.
Your Device: You are responsible for securing the device you use to access our Services.

However, despite our safeguards and efforts, no electronic transmission over the Internet or information storage technology can be guaranteed to be 100% secure. We cannot promise or guarantee that hackers, cybercriminals, or other unauthorized third parties will not be able to defeat our security and improperly collect, access, steal, or modify your information. Although we will do our best to protect your personal information, the transmission of personal information to and from our Services is at your own risk. You should only access the Services within a secure environment.

YOUR PRIVACY RIGHTS

Depending on your location, you may have certain rights regarding your personal information under applicable data protection laws. This section outlines your rights and explains how you can exercise them.

Access, Correct, or Delete Your Information: You may have the right to request access to, correct inaccuracies in, or request the deletion of the personal information we collect and process.
Withdraw Your Consent: Where we rely on your consent to process your information, you have the right to withdraw it at any time. Withdrawing your consent will not affect the lawfulness of any processing we conducted prior to your withdrawal.
Opt-Out of Marketing Communications: You can unsubscribe from our marketing communications at any time by clicking the "unsubscribe" link in the emails we send or by contacting us. Please note that we may still send you non-promotional messages, such as those related to support requests.
Control Tracking Technologies: As detailed in the “COOKIES AND OTHER TRACKING TECHNOLOGIES”section above, you can typically manage cookies through your browser settings and mobile device identifiers through your device's privacy settings.

To exercise any of these rights, please contact us using the information provided in the “CONTACT US” section. Specific rights for residents of certain US states are detailed in the “PRIVACY RIGHTS FOR U.S. RESIDENTS” section.

Controls for Do-Not-Track Features

Most web browsers and some mobile operating systems include a Do-Not-Track ("DNT") feature or setting you can activate to signal your privacy preference not to have data about your online browsing activities monitored and collected. No uniform technology standard for recognizing and implementing DNT signals has been finalized. As such, we do not currently respond to DNT browser signals or any other mechanism that automatically communicates your choice not to be tracked online.

PRIVACY RIGHTS FOR U.S. RESIDENTS

If you are a resident of California, Colorado, Connecticut, Delaware, Florida, Indiana, Iowa, Kentucky, Maryland, Minnesota, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Rhode Island, Tennessee, Texas, Utah, or Virginia, you may have the right to request access to and receive details about the personal information we maintain about you and how we have processed it, correct inaccuracies, get a copy of, or delete your personal information. You may also have the right to withdraw your consent to our processing of your personal information. These rights may be limited in some circumstances by applicable law. More information is provided below.

Categories of Personal Information We Collect

The table below outlines the categories of personal information we have collected over the past twelve (12) months. For a detailed list of the specific data we collect, please refer to the “INFORMATION WE COLLECT” section above.

Your Rights

You have rights under certain US state data protection laws. These rights are not absolute, and in certain cases, we may decline your request as permitted by law. These rights include:

Right to know whether or not we are processing your personal data.
Right to access your personal data.
Right to correct inaccuracies in your personal data.
Right to request the deletion of your personal data.
Right to obtain a copy of the personal data you previously shared with us.
Right to non-discrimination for exercising your rights.
Right to opt out of the processing of your personal data if it is used for targeted advertising or the sale of personal data. (Note: We do not sell your data or use it for targeted advertising).

How to Exercise Your Rights

To exercise these rights, please submit a data subject access request (DSAR) using the contact details provided in the “CONTACT US” section below.

Under certain U.S. state data protection laws, you can designate an authorized agent to make a request on your behalf. We may deny a request from an authorized agent that does not submit proof that they have been validly authorized to act on your behalf.

Request Verification

Upon receiving your request, we will need to verify your identity. We will only use personal information provided in your request to verify your identity or authority to make the request. If we cannot verify your identity from the information already maintained by us, we may request additional information for verification purposes.

Appeals

Under certain U.S. state data protection laws, if we decline to take action regarding your request, you may appeal our decision by emailing us at privacy@cacodelab.com. We will inform you of our decision in writing via email. If your appeal is denied, you may submit a complaint to your state attorney general.

California "Shine The Light" Law

California Civil Code Section 1798.83 ("Shine The Light" law) permits our users who are California residents to request and obtain from us, once a year and free of charge, information about categories of personal information (if any) we disclosed to third parties for their direct marketing purposes in the immediately preceding calendar year. We do not share your personal information with third parties for their own direct marketing purposes.

ACCESS, REVIEW, UPDATE, OR DELETE YOUR INFORMATION

Based on the applicable laws of your jurisdiction, you may have the right to request access to, correct, or delete the personal information we collect.

Information You Provide Directly This applies to personal information you have provided to us directly, such as your name and email address when contacting us for support. To request a review, update, or deletion of this data, please contact us using the information provided in the “CONTACT US” section below.
Analytics and Crash Data The analytics and crash data we collect is processed using your device's identifier and is not tied to your specific name or email address. As such, we cannot directly identify and delete specific analytics records upon request. However, you can control the collection of this data by resetting your device's advertising identifier or by limiting ad tracking through your mobile device's privacy settings.

CHANGES TO THIS NOTICE

We may update this Privacy Notice from time to time. The updated version will be indicated by an updated "Last Updated" date at the top of this Privacy Notice. If we make material changes to this Privacy Notice, we may notify you either by prominently posting a notice of such changes or by directly sending you a notification. We encourage you to review this Privacy Notice frequently to be informed of how we are protecting your information.

CONTACT US

If you have questions or comments about this notice, you may contact us via:

Email: privacy@cacodelab.com

Phone: +1 (424) 256-8484

Mail:

CrazinnCode Lab, LLC

612 W 92ND ST

LOS ANGELES, CA 90044

UNITED STATES