Privacy Policy

The short version: Quiddy is a local-first desktop application. Almost all of your data — conversations, memories, personas, vault documents — stays on your Mac and never leaves your device. The only data that ever reaches our servers is your account information if you sign in, and payment information if you subscribe to Pro.

1. Who We Are

Quiddy is operated by Quiddy LLC, a company incorporated in the State of California.

[INSERT: Registered address, EIN or business registration number, DBA if applicable]

If you have questions about this policy, contact us at privacy@quiddy.app.

2. The Data That Stays on Your Device

The following data is stored exclusively on your Mac in ~/Library/Application Support/Quiddy/ and is never transmitted to Quiddy's servers:

All conversation history and messages
Extracted memories and context blocks
Persona configurations (including SEEK/SPECS settings)
Knowledge Vault documents and attachments
API keys (stored in the macOS Keychain, not our database)
LLM usage metrics and logs
App settings and preferences

You can export or permanently delete all of this data at any time via Settings → Privacy & Data.

3. Data We Do Collect

3a. Account Information (if you sign in)

If you create a Quiddy account using Google Sign-In, we receive and store:

Your Google account ID, email address, display name, and profile picture URL
The date and time of account creation

We use this information solely to identify your account and provide Pro features. We do not sell, rent, or share this information with third parties for marketing purposes.

3b. Payment Information (Pro subscribers)

Payment processing is handled by Stripe, Inc. We do not store your credit card number, CVV, or full payment details. We receive and retain:

Your subscription status and plan tier
Billing history (amounts, dates)
Your billing country (for tax purposes)

Stripe's privacy practices are governed by the Stripe Privacy Policy.

3c. Bug Reports (if you submit one)

When you use the in-app "Report an Issue" feature, you may optionally include recent error logs. Reports are sent to support@quiddy.app and contain only what you choose to include. Conversation content is never included in reports unless you manually paste it.

3d. Crash Reports (opt-in)

If you opt in during setup, anonymous crash reports may be sent to help us diagnose bugs. These reports contain device type, macOS version, and a stack trace. They never contain conversation content, API keys, or personally identifiable information beyond a randomised device ID.

[CONFIRM: Which crash reporting service is used, e.g. Sentry. Link to their privacy policy.]

4. Your API Keys and LLM Calls

Quiddy is a bring-your-own-key (BYOK) application. When you configure an API key for Anthropic, Google, or OpenAI, that key is stored in the macOS Keychain and never transmitted to Quiddy's servers.

When you send a message, your Mac makes a direct HTTPS request to the LLM provider you have configured (e.g., api.anthropic.com). Quiddy does not see, log, or intercept this traffic. Your conversation data is governed by the privacy policy of the LLM provider you choose:

5. Data Retention

Local data (conversations, memories, etc.) persists on your device until you delete it. You can delete all local data at any time via Settings → Privacy & Data → Delete all my data.

Account information is retained for as long as your account is active. You may request deletion of your account and associated data by emailing privacy@quiddy.app.

[CONFIRM: How long crash reports and bug report emails are retained. Suggested: 90 days for crash reports, 1 year for bug report emails.]

6. Data Sharing and Disclosure

We do not sell your personal information. We may disclose information to:

Service providers: Stripe (payments), Google (authentication), and crash reporting services — only as necessary to provide the service.
Legal requirements: If required by law, court order, or to protect the rights or safety of our users.
Business transfers: In connection with a merger, acquisition, or sale of assets, with notice to users.

7. California Privacy Rights (CCPA / CPRA)

As a California LLC serving users including California residents, we comply with the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA).

California residents have the right to:

Know what personal information we collect, use, and disclose
Delete personal information we hold about them
Correct inaccurate personal information
Opt out of the sale or sharing of personal information (we do not sell personal information)
Non-discrimination for exercising their privacy rights
Limit the use of sensitive personal information

To exercise these rights, email privacy@quiddy.app. We will respond within 45 days as required by California law.

8. Children's Privacy

Quiddy is not directed at children under 13. We do not knowingly collect personal information from children under 13. If you believe we have inadvertently collected such information, contact us at privacy@quiddy.app and we will delete it promptly.

9. Security

API keys are stored in the macOS Keychain using industry-standard encryption. Account credentials are handled by Google's OAuth 2.0 system. We apply reasonable technical and organisational measures to protect any data we hold. However, no system is completely secure, and we cannot guarantee absolute security.

10. Changes to This Policy

We may update this policy from time to time. We will notify users of material changes by updating the effective date at the top of this page and, for significant changes, by sending an email to the address associated with your account. Continued use of Quiddy after changes are posted constitutes acceptance of the updated policy.

11. Contact

For privacy-related questions or to exercise your rights:

Email: privacy@quiddy.app
Mail: [INSERT: Quiddy LLC registered address, California]