Legal
Privacy Policy
Effective date: 26 June 2026 · Loggy Co Pty Ltd (ABN 48 698 930 406 registered with ASIC)
Loggy is designed to collect as little personally identifiable information as possible. This policy explains clearly what we do and don't collect, and how your data is handled.
Who we are
Loggy is operated by Loggy Co, an Australian business registered with ASIC and based in Canberra, ACT. You can contact us at imogen@getloggy.com.
What we collect
When a Loggy is tapped, our database records:
- A unique log ID for that tap event
- A timestamp (date and time of the tap)
- The name of the Loggy, if you have chosen to add one
- Any notes you choose to add to a log entry (stored in encrypted form - readable only in your browser session, not at database level)
- Any tags you choose to attach to a log entry (stored in encrypted form - readable only in your browser session, not at database level)
We do not collect your name, email address, phone number, device identifier, IP address, or any other personally identifiable information. No account is required to use Loggy.
The name of your Loggy and any encrypted notes or tags added to log entries are entirely optional and entered at your own choice. Neither is required to use the service. It is best practice to name your Loggy using non-personally identifiable information. If you choose to input personal information into editable Loggy fields that is your choice and you do so knowing that anyone with URL access can view information stored at that Loggy.
What we don't collect
- Accounts, logins, or personal profiles
- Device identifiers or IP addresses
- Location data
- Cookies or tracking technologies
- Third-party analytics
PIN protection
You may choose to protect your Loggy with a 4-digit PIN. If you do:
- Your PIN is never stored by Loggy Co in any form. We have no ability to view or recover your PIN.
- When a device successfully enters your PIN, a session token is stored in that device's browser. This token allows the device to access your Loggy without re-entering the PIN for up to 12 months, or until the browser cache is cleared.
- A 3-word recovery phrase is generated when you set your PIN. This phrase is the only way to reset a forgotten PIN. Loggy Co cannot recover or reset your PIN on your behalf.
- Changing your PIN immediately revokes access for all previously unlocked devices.
Encrypted notes
Notes added to log entries are encrypted at the application level using AES encryption before being written to the database. This means:
- Notes are unreadable at the database level — neither Loggy Co staff nor our infrastructure provider can read the content of your notes.
- Notes are decrypted only at the point of display in your browser session. They are visible to anyone with access to your Loggy URL.
- In the event that encryption keys are rotated or changed, previously written notes may become unreadable. We will provide reasonable notice before any such change.
Tags
Tags are short, optional labels you can attach to log entries to add context. Tags are stored in encrypted form. They are visible to anyone with access to your Loggy URL but are not readable at the database level. If your Loggy is PIN protected, tag content is only accessible to those who know your PIN.
How your data is stored
Railway processes data on our behalf as our infrastructure provider. As the operator of Loggy, we remain responsible for your data.
We do not sell, share, or transfer your data to any third party for any purpose.
How long we keep your data
Log data is retained for as long as the associated Loggy URL is active. When a URL is retired:
- A 30-day grace period applies before permanent deletion
- After 30 days, all associated log data is permanently deleted
URLs that are generated but never activated are automatically retired after 12 months of inactivity, after which the same 30-day deletion process applies.
Your URL is your access
Each Loggy has a unique, randomly generated 15-character URL. This URL functions as the access mechanism for your log. Keep it private if you don't want others to view your log history. Anyone with the URL can view the log associated with it.
Children's privacy
Because Loggy doesn't require or request personal information from any user, there is no deliberate collection of children's data. However, users may choose to enter personally identifiable information — including children's names — in the name of a Loggy or in encrypted notes or tags. It is best practice to avoid doing so. Loggy Co is not responsible for personal information voluntarily entered by users.
Changes to this policy
If we make material changes to this policy, we will update the effective date at the top of this page. Continued use of Loggy after changes constitutes acceptance of the updated policy.
Contact
Questions about this policy? Contact us at imogen@getloggy.com.