Effective Date: 16 February 2026
This Privacy Policy explains what data we collect, why we collect it, how we process and store it, and what rights you have regarding your data when you use Hackboard, a keyboard customization application for macOS. Terms used in this Privacy Policy (such as "Company", "Software", and "Configurations") have the meanings defined in our Terms of Service, Section 2.
The data controller responsible for processing your data is:
Farbe Software UG (haftungsbeschränkt)
Brauhausstr. 16
13086 Berlin, Germany
Managing Director (Geschäftsführer): Arndt Haßel-Kurz
Commercial Register: Amtsgericht Charlottenburg, HRB 277917
Email: contact@farbe-software.com
(Information provided in accordance with § 5 DDG.)
For the terms governing your use of Hackboard, see our Terms of Service.
Data Protection Officer. The Company has not appointed a Data Protection Officer, as it does not meet the applicable thresholds under Art. 37 GDPR or § 38 BDSG (fewer than 20 persons regularly engaged in automated data processing).
Hackboard can collect crash reports and error logs to help us identify and fix bugs, improve software quality, and ensure stability. Crash reporting is optional and disabled by default. You can enable or disable it at any time in the Hackboard settings.
The following data is collected when a crash or error occurs:
Crash reports do not intentionally collect personal data such as your name, email address, or the content of your keyboard configurations. However, crash data may incidentally contain technical identifiers or configuration fragments in stack traces. We process any such data in accordance with this Privacy Policy.
Crash reports are collected only in release builds. Debug and development builds do not transmit any data.
Crash reporting is entirely voluntary and has no effect on your use of Hackboard. The Software is fully functional without crash reporting enabled.
You may voluntarily submit feedback through the feedback dialog within Hackboard. No feedback data is ever collected without your affirmative action — you must open the dialog, write a message, and explicitly click "Send."
When you submit feedback, the following data is collected:
karabiner.json — your Karabiner Elements configuration filehb_keymaps.json — your Hackboard keymaps configuration fileNote on configuration files. Your keyboard configurations belong to you (see Terms of Service, Section 8.2). Depending on your setup, configuration files may contain shell commands, file paths, or other data that could be personally identifiable. We recommend reviewing your configuration files before attaching them. Configuration files are only attached when you explicitly opt in via the checkbox.
Submitting feedback is entirely voluntary and has no effect on your use of Hackboard.
Hackboard uses Sparkle, an open-source update framework, to check for new versions. Automatic update checks are optional. On second launch, Hackboard asks whether you want to check for updates automatically. You can change this choice at any time in the Hackboard settings. You can also check for updates manually via the "Check for Updates" menu item.
When an update check occurs (whether automatic or manual), the following data is transmitted:
This data is sent to GitHub Pages (farbe-software.github.io), where the update feed is hosted. No data is stored by us as part of this process — any server logs are controlled by GitHub (see Section 4.2).
Hackboard does not collect:
Note on keyboard input processing. Hackboard's keyboard remapping component processes all keyboard input locally on your device in real time. This processing is entirely ephemeral — no keystroke data is stored, logged, or transmitted. This local processing is necessary for the core keyboard remapping functionality and does not trigger data protection obligations, as no personal data leaves your device.
We do not sell or share your personal data with third parties for advertising or marketing purposes. We will not discriminate against you or restrict your access to Hackboard for exercising any privacy right.
Legal basis: Art. 6(1)(a) GDPR — Consent.
Crash reporting is optional and disabled by default. When you enable crash reporting in the Hackboard settings, you consent to the processing described in Section 2.1. You may withdraw your consent at any time by disabling crash reporting in the settings (see Section 7 below). Withdrawal does not affect the lawfulness of processing carried out before withdrawal.
Legal basis: Art. 6(1)(a) GDPR — Consent.
Your feedback is submitted through a clear affirmative action. The consent is granular: the contact email address is optional, and the attachment of configuration files requires a separate opt-in checkbox. You may withdraw your consent at any time by contacting us to request deletion of your feedback data (see Section 7).
Legal basis: Art. 6(1)(a) GDPR — Consent.
Automatic update checks are enabled only if you opt in via Sparkle's permission prompt. You may disable automatic checks at any time in the Hackboard settings. Manual update checks are initiated by your deliberate action. You may withdraw your consent to automatic update checks at any time by disabling them in the settings.
Providing personal data to Hackboard is not a statutory or contractual requirement. All data collection (crash reports, feedback, update checks) is voluntary. There are no consequences for choosing not to provide data — the Software is fully functional without any data collection enabled.
To the extent that Hackboard or its components store information on or access information from your device, the following applies under § 25 TTDSG:
Hackboard does not use automated decision-making, including profiling, within the meaning of Art. 22 GDPR.
Crash reports, error logs, and user feedback are processed by:
Functional Software, Inc. (trading as "Sentry")
45 Fremont Street, 8th Floor
San Francisco, CA 94105, USA
Website: sentry.io
Sentry acts as a data processor on our behalf. A Data Processing Agreement (DPA) is in place, available at sentry.io/legal/dpa/.
Update checks are served from GitHub Pages, a hosting service operated by GitHub, Inc. (a subsidiary of Microsoft Corporation). When an update check occurs, your IP address and User-Agent string are transmitted to GitHub's servers as part of the HTTP request. We do not control or have access to any server logs GitHub may retain. GitHub's privacy practices are governed by the GitHub Privacy Statement.
All data processed through Sentry is stored in the EU (Germany) using Sentry's DE region (de.sentry.io). No data is transferred to the United States or any other country outside the EU/EEA (see Section 6).
Sentry-side measures:
Company-side measures:
sendDefaultPii = false)Crash reports, error logs, and user feedback are processed and stored in Germany (EU) using Sentry's DE region. No crash or feedback data is transferred to the United States or any other country outside the EU/EEA. Sentry's parent company (Functional Software, Inc.) is incorporated in the United States, but all Hackboard data remains in Sentry's EU infrastructure. Sentry's DPA includes Standard Contractual Clauses (SCCs) as a fallback safeguard.
Update checks are served from GitHub Pages. GitHub's infrastructure is global, and your IP address and User-Agent string may be processed on servers located outside the EU/EEA, including in the United States. The EU–US Data Privacy Framework provides an adequacy basis for these transfers. GitHub's privacy practices are described in the GitHub Privacy Statement.
If you are located outside the EU/EEA, your crash and feedback data is transferred to and stored in Germany, where it is protected under the GDPR.
You have the following rights regarding your personal data:
To exercise any of these rights, please contact us at contact@farbe-software.com. We will respond without undue delay and in any event within one month of receipt. If your request is complex or we receive a large number of requests, we may extend this period by up to two further months, in which case we will inform you of the extension and the reasons within the first month (Art. 12(3) GDPR).
Note on identification of data (Art. 11 GDPR). Crash report data is collected without personal identifiers — no IP addresses, no user IDs, and no account information. As a result, we may not be able to identify your specific data within our systems. We make best efforts to fulfil your requests, but where we cannot identify you as the data subject, we may be unable to fulfil access, rectification, erasure, restriction, or portability requests for that data, in accordance with Art. 11 GDPR. If you provide details about your device and the approximate time of a crash, we will search for matching records. If you submitted user feedback with your email address, we can identify and process requests relating to that data.
Right to withdraw consent for crash reporting. You may withdraw your consent to crash reporting at any time by disabling it in the Hackboard settings. Once disabled, no further crash data will be collected or transmitted. Withdrawal does not affect the lawfulness of data processed before withdrawal.
Supervisory authority. You have the right to lodge a complaint with the competent data protection authority:
Berliner Beauftragte für Datenschutz und Informationsfreiheit
Alt-Moabit 59–61
10555 Berlin, Germany
Website: www.datenschutz-berlin.de
If you are located in the United Kingdom, you may also lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.
Hackboard does not target children and does not knowingly collect personal data from children under 16 years of age. Under Art. 8 GDPR, the minimum age for consenting to data processing is 16 in Germany. Our Terms of Service (Section 3.3) separately require users under 18 to have parental consent for the contractual agreement itself, as required by § 107 BGB. The different thresholds reflect different legal requirements: 16 for data processing consent, 18 for contractual capacity.
If you are a parent or guardian and believe that your child has provided personal data to us, please contact us at contact@farbe-software.com and we will take steps to delete that data.
We may update this Privacy Policy from time to time. Updated versions will be posted in this repository with a revised effective date.
For changes that materially affect your rights, we will provide at least 14 days' advance notice before the changes take effect. Notice may be given through this repository, within the Software, or through other appropriate channels.
We encourage you to review this Privacy Policy periodically. The current version is always available in this repository as PRIVACY.md.
For questions about this Privacy Policy or to exercise your data protection rights, please contact:
Farbe Software UG (haftungsbeschränkt)
Brauhausstr. 16
13086 Berlin, Germany
Managing Director (Geschäftsführer): Arndt Haßel-Kurz
Commercial Register: Amtsgericht Charlottenburg, HRB 277917
Email: contact@farbe-software.com