Tayu tayu

Privacy Policy

Tayu is operated by Nono — the trading name of sole proprietor Makoto Nonoyama (野々山諒), based in Japan (“we”, “us”). This policy explains what personal data we collect, why, how long we keep it, and the rights you have.

Last updated: 3 June 2026.

1. Who is the data controller

The data controller for this website (tayutau.app) and the Tayu desktop app is Nono (Makoto Nonoyama), a sole proprietor based in Japan. You can reach us at support@tayutau.app for any privacy-related question.

2. What data we collect on the website

When you visit tayutau.app we collect the following through our analytics provider (PostHog, see section 7):

  • Pages viewed and the pages you arrived from (URLs are stripped of query parameters and identifiers before being stored).
  • Lightweight product-analytics events for actions and page interactions — including clicking the macOS download button (recorded as acquisition:download_cta_click) and a server-side download counter (acquisition:download_requested). We capture interaction events automatically, but we do not record the values you type into form fields. We also use session replay to understand how pages are used: it reconstructs anonymous page interactions (clicks, scrolling, navigation) from the page structure — it is not a video of your screen — and all form input is masked in your browser before anything is sent. Pages that can display your access code are excluded from recording. We also automatically report JavaScript errors (the error message and a technical stack trace, containing no personal data) so we can fix broken pages such as the download or checkout flow.
  • Browser type, operating system, screen size, and approximate geographic region inferred from your IP address. We do not store the raw IP address in PostHog.
  • A randomly generated session ID stored in a first-party cookie or local storage, used to group events from the same visit. By default this is anonymous; we never link it to your name or email unless you contact us directly.
  • When you open the Pricing section from inside the Tayu desktop app, your anonymous install identifier (a random device ID, never an email or Paddle customer ID) is passed once in the URL so we can record a acquisition:pricing_open_from_app event tied to the upgrade funnel. The identifier is immediately stripped from the address bar via history.replaceState after the event is sent, so it does not stay in your browser history or get shared via copy-paste.

We honour the Do Not Track and Global Privacy Control browser signals: when either is set, the website skips analytics for your visit.

3. What data we collect when you buy a paid plan

Purchases are processed by Paddle.com Market Limited, who acts as the Merchant of Record (MoR) on our behalf. Paddle collects and processes the data needed to complete the transaction: your name, email address, billing address, country, payment method details, and the IP address used to make the purchase. Paddle is the controller of that data; their privacy policy is at paddle.com/legal/privacy.

After payment, Paddle sends us a webhook with your email address and an opaque customer ID so we can grant access to paid features. We store this in our own database to issue entitlements; see section 4.

When the purchase originated from inside the Tayu desktop app, our server also records a corresponding purchase_completed event in PostHog, associated with the anonymous install identifier so we can measure the in-app upgrade funnel. Purchases made directly on the website (no install identifier) are recorded separately as purchase_completed_unattributed. We do not send your email address, Paddle customer ID, transaction ID, or any other payment detail to PostHog.

4. What the Tayu desktop app does with your data

The Tayu desktop app is designed to run locally. Your wallpaper library, playlists, and schedules stay on your device — we do not store a server-side copy of your library.

For two specific purposes the app communicates with our services:

  • Entitlement check (api.tayutau.app) — the app sends a per-install device identifier and your access code (issued after purchase) so we can confirm your paid plan is active. We log these requests for abuse prevention and keep them for up to 90 days.
  • Anonymous product analytics (PostHog, see section 7) — the app sends a small set of anonymous usage events, such as which features are used and whether a wallpaper is running, along with basic details like the app version, operating system, simple performance timing, and the type of any error. When you add a YouTube video, the app also records the video’s public YouTube ID and the content categories assigned to it (such as “ocean” or “lofi”), so we can understand which kinds of videos people use and improve the catalog. To classify a video, the app sends its public ID, title, and channel name to our server for one-time categorisation; analytics receives only the video ID and the resulting categories. To understand how the app’s interface is used, the app also collects anonymised session replays of its own settings window: the text you enter and personal content (YouTube videos you add, playlist names, access codes) are masked or removed on your device before anything is sent, so replays show how the interface is used rather than what your library contains. All of this is tied to a random per-install identifier, never to your name, email, or Paddle customer ID, and it never includes your wallpaper files, file paths, or anything outside the Tayu window.

The app contains no third-party advertising or marketing SDKs.

5. When you contact support

If you email support@tayutau.app, we receive your email address and the content of your message. We use it only to respond to your request and keep the thread for up to 2 years for follow-up support, after which it is deleted.

6. When you sign up for Tayu updates

After you click the macOS download button, we show a small dialog that offers an optional newsletter. If you submit your email, we store it with our email service Resend (Resend.com, Inc., US-based) for the sole purpose of sending occasional updates about new scenes and product news. You can unsubscribe at any time using the link included in every email. Submitting no email means we collect nothing — the download itself works without it.

7. Third-party services we use

  • Paddle — payment processing, tax handling, and subscription management. Paddle is the Merchant of Record. (privacy policy)
  • PostHog — product and website analytics, hosted in the United States. We use it on an anonymous basis to record page views, basic interaction events, and masked session replays (form input and personal content are masked on your device before being sent). We do not link analytics to your name or email. (privacy policy)
  • Cloudflare — website hosting (Cloudflare Workers) and DNS. Cloudflare may receive your IP address as part of routing requests; we do not retain access logs beyond Cloudflare’s standard retention. (privacy policy)

We do not embed YouTube, Google Analytics, advertising trackers, Facebook Pixel, or any social media buttons on tayutau.app.

8. Cookies and local storage

tayutau.app uses a small number of first-party storage entries:

  • An anonymous analytics session ID (PostHog) used to group events from one visit. We do not set it when your browser sends a Do Not Track or Global Privacy Control signal.
  • Short-lived storage used by the Paddle checkout overlay during a purchase, which is necessary to complete that transaction.

We do not use cookies for advertising, retargeting, or cross-site tracking.

9. International data transfers

If you visit tayutau.app from outside Japan, your data is necessarily transferred to and processed in other countries. PostHog stores analytics events on servers in the United States, and Resend (our email provider) processes newsletter sign-ups in the United States. Paddle processes payment data globally in line with their own infrastructure. We rely on the privacy frameworks each provider has put in place (including Standard Contractual Clauses where applicable to EU/UK residents) to keep transfers compliant.

10. Your rights

Depending on where you live, you may have the following rights regarding your personal data:

  • Access — ask for a copy of the data we hold about you.
  • Rectification — ask us to correct inaccurate data.
  • Erasure — ask us to delete your data, subject to legal record-keeping obligations on the payment side (Paddle is required to retain transaction records for tax and anti-fraud purposes).
  • Portability — receive your data in a machine-readable format.
  • Objection / opt-out — opt out of analytics by enabling Do Not Track or by emailing us. Opting out does not affect your access to the website or app.
  • Complaint — lodge a complaint with your local data protection authority. EU/UK residents can find their authority via the EDPB; Japanese residents can contact the Personal Information Protection Commission (PPC).

To exercise any of these rights, email support@tayutau.app from the email address you used with us. We respond within 30 days. For payment-related data, we may need to forward your request to Paddle as the data controller for that information.

11. Children

Tayu is not directed at children under 13 (or under 16 in some jurisdictions). We do not knowingly collect personal data from children. If you believe a child has provided us data, contact us and we will delete it.

12. Security

We use TLS (HTTPS) for all traffic to tayutau.app and api.tayutau.app. Payment data is handled by Paddle on PCI-compliant infrastructure and never touches our servers in raw form. Our backend is hosted on Cloudflare with standard access controls.

13. Information we do not collect

For clarity, Tayu does not collect or process:

  • The contents of your wallpaper library, playlists, or schedules — these stay on your device. (For YouTube videos you add, we record the public video ID and its content categories; see section 4.)
  • Raw IP addresses stored in our analytics; PostHog receives a coarse region only and we do not retain the IP.
  • Precise location, contacts, calendar, microphone, camera, or screen-recording data.
  • The contents of the text you type into form fields — session replays mask all input on your device before sending.
  • Analytics activity linked to your name or email — your analytics profile stays anonymous.
  • Cross-site tracking, advertising IDs, retargeting pixels, or social-media beacons.
  • Credit-card numbers, CVVs, or bank-account details — these are handled solely by Paddle on PCI-compliant infrastructure.

14. Lawful basis for processing (EU/UK residents)

If GDPR or UK GDPR applies to you, we rely on the following lawful bases under Article 6:

  • Performance of a contract (Art. 6(1)(b)) — processing your purchase, granting entitlements to paid features, and providing customer support you have requested.
  • Legitimate interests (Art. 6(1)(f)) — running pseudonymous product analytics (PostHog) to understand which features are used, detecting abuse of our entitlement API, and securing our infrastructure. We balance this against your privacy by honouring opt-out signals, minimising what we collect, and keeping analytics unlinked from your identity.
  • Compliance with a legal obligation (Art. 6(1)(c)) — retaining transaction records for tax, accounting, and consumer-protection purposes (handled primarily by Paddle as the Merchant of Record).
  • Consent (Art. 6(1)(a)) — where required by local law, before sending optional product update emails. You can withdraw consent at any time without affecting prior processing.

15. Data retention

  • Analytics events: up to 12 months in PostHog.
  • Session replay recordings: up to 30 days in PostHog.
  • Entitlement API access logs (for abuse prevention): up to 90 days.
  • Entitlement records (purchase ↔ install): for the lifetime of the entitlement plus 2 years for tax record-keeping.
  • Support email threads: up to 2 years from last reply.
  • Transaction records held by Paddle: per Paddle’s own retention policy (typically 7 years for tax reasons).

16. Notice for California residents (CCPA/CPRA)

If you are a California resident, the California Consumer Privacy Act, as amended by the California Privacy Rights Act (collectively, “CCPA”), gives you specific rights regarding your personal information.

Categories of personal information we collect. In the past twelve (12) months we have collected the categories of personal information described in sections 2–4 of this policy: identifiers (such as a randomly generated analytics session ID and, for purchases, your name and email handled by Paddle), commerce information (transaction history, also handled by Paddle), internet or network activity (page views and click events), approximate geolocation (region inferred from IP), and inferences drawn from the above to improve the product.

Sources and purposes. We collect this information directly from you when you visit the website, install the app, or make a purchase. We use it to provide and improve Tayu, fulfil purchases, prevent abuse, and meet legal obligations.

Sale or sharing of personal information. We do not sell your personal information, and we do not share it for cross-context behavioural advertising. We have not done so in the past twelve (12) months and have no plans to do so. We treat the Global Privacy Control signal as a valid opt-out preference signal.

Your rights. Subject to verification of your identity, you may request to (a) know what personal information we hold about you, (b) delete that information (subject to legal record-keeping obligations on the payment side), and (c) correct inaccurate information. We do not collect sensitive personal information. You may exercise these rights by emailing support@tayutau.app with the subject “CCPA rights request”. We will not discriminate against you for exercising these rights. You may use an authorised agent to submit a request on your behalf; we will require reasonable proof of authorisation.

17. Changes to this policy

If we make material changes to this policy, we will update the “Last updated” date at the top of this page and, where appropriate, notify customers by email. Continued use of Tayu after the change means you accept the updated policy.

18. Contact

For any privacy question or to exercise the rights described above, write to Nono (Makoto Nonoyama) at support@tayutau.app.