NeverMiss Privacy Policy

NeverMiss is an open-source macOS menu bar app that shows reminders for your upcoming meetings. This policy describes what the app accesses, what leaves your device, and what it does not.

Summary

• NeverMiss has no backend server. We do not run any service that collects your data.
• Calendar data you view in the app stays on your device.
• The app makes outbound network requests to exactly three parties: Google (only if you connect a Google Calendar account), GitHub (to check for app updates), and Sparkle's update framework
• There are no analytics, no tracking, no advertising SDKs, and no third-party SDKs other than Sparkle (for updates).

What the app accesses on your device

macOS Calendar (EventKit)

If you connect the macOS Calendar app, NeverMiss requests read-only access through Apple's EventKit API. This data is read directly from macOS on your device and stays on your device.

Google (only if you connect a Google account)

• Data Accessed: NeverMiss accesses Google Calendar data through the https://www.googleapis.com/auth/calendar.readonly scope, including calendar names, event titles, event times, locations, descriptions, and meeting links when present. It also accesses the user's Google account email through https://www.googleapis.com/auth/userinfo.email to identify the connected account in the app. OAuth access and refresh tokens are also stored to maintain the authorized connection.

• Data Usage: NeverMiss uses Google user data only to provide its calendar reminder features. Calendar data is used locally on the device to display upcoming meetings, schedule reminders, and detect join links. The Google account email is used only to label the connected account in the app. OAuth tokens are used only to authenticate requests to Google and refresh authorization.

• Data Sharing: NeverMiss does not sell, share, or transmit Google user data to the developer or third parties. The app has no backend server for Google data processing. Google user data is only exchanged directly between the app and Google as required for authentication and read-only calendar access.

• Data Storage & Protection: OAuth tokens are stored securely in macOS Keychain. Google account details needed by the UI and synced calendar data are stored locally on the user's device. NeverMiss uses OAuth 2.0 with PKCE and requests only read-only Google Calendar access.

• Data Retention & Deletion: Google tokens and locally synced Google Calendar data are retained only as long as needed for the connected-account experience on the user's device. Users can delete their Google data from NeverMiss at any time by disconnecting their Google account in the app, which removes stored Google tokens and disconnects the account. Users may also revoke access from their Google account permissions page.

App updates (Sparkle + GitHub)

NeverMiss uses Sparkle to check for new versions. Sparkle's update check currently includes an anonymous system profile appended as query parameters. This profile reports:

• macOS version
• CPU type and number of CPUs
• Preferred language
• App version and bundle identifier

You can disable update checks entirely in Settings → General → "Automatically check for updates". When automatic checks are off, Sparkle only contacts the update server when you manually choose "Check for Updates…".

Data we do not collect

Because there is no NeverMiss backend, the developer does not receive, store, or have the ability to access:

• Your calendar events
• Your email address or Google account details
• Your IP address
• Device identifiers
• Usage analytics

Children

NeverMiss is a general-audience productivity app and is not directed at children under 13. It does not knowingly collect information from anyone.

Changes to this policy

If this policy changes, the updated version will be published in the NeverMiss repository with a new "Last updated" date.

Contact

NeverMiss is maintained by Kirtan Shah (maker.codes).

• Questions or concerns: open an issue on GitHub
• Email: kirtan@maker.codes

NeverMiss is open source under the AGPL-3.0 license. You can review the full source at https://github.com/kirtan-shah/NeverMiss to verify every claim in this policy.

Last updated: 2026-04-23