Formestry

Cli.nt Privacy Policy

Last Updated: February 2026

Introduction

Cli.nt (“the App”) is a mobile companion app that connects to a desktop server application running on your own computer. This privacy policy explains how the App handles your data.

Data Collection

Device Identifier

The App collects a device identifier (iOS identifierForVendor) for the sole purpose of authenticating your device with your desktop server. This identifier:

  • Is unique to your device and this app
  • Is not shared with any third party
  • Is used only for session authentication
  • Resets if you uninstall and reinstall the app

User-Generated Content

The App transmits prompts, messages, and images you provide to your own desktop server for processing by AI providers. This content:

  • Is transmitted directly to your desktop server over your local network or Tailscale VPN
  • Is not sent to, stored on, or processed by any servers operated by us
  • Is stored locally on your device as conversation history
  • Can be deleted at any time by clearing your sessions

Data Storage

All data is stored locally on your devices:

  • iOS Device: Conversation history, connection settings, and preferences are stored on-device. Passwords are stored in the iOS Keychain (encrypted storage).
  • Desktop Server: Session history and configuration are stored locally on your computer.
  • Execution Logs: The desktop server can optionally log tool execution metadata (see below).
  • No Cloud Storage: The App does not use cloud storage, cloud databases, or remote servers of any kind. No data is synced to iCloud or any other cloud service by the App.

Execution Logging

The desktop server includes an optional execution logging feature for traceability. When enabled:

What IS logged:

  • Tool names (Bash, Write, Edit, etc.)
  • Commands and file paths
  • Timestamps and approval status
  • Exit codes

What is NOT logged:

  • File contents
  • Environment variables
  • API keys, passwords, or secrets (automatically redacted)
  • Prompt or response text

Storage and Retention:

  • Logs are stored locally at ~/.satellite/execution_log.json
  • Retention is configurable: 7 days, 30 days, or disabled
  • Logs can be exported or cleared at any time via Settings
  • Logs are never uploaded or shared

Data Sharing

We do not share your data with any third party.

The App communicates exclusively with your own desktop server. Your desktop server may forward prompts to AI providers (such as Anthropic or OpenAI) using your own API keys. The data handling practices of these AI providers are governed by their respective privacy policies:

We have no control over and assume no responsibility for the privacy practices of these third-party AI providers.

Network Communication

The App communicates only with your desktop server via:

  • Local Network: Direct connection over your WiFi network
  • Tailscale VPN: Encrypted connection using WireGuard protocol

No data is sent to external servers operated by us. The App does not contain analytics, crash reporting, advertising SDKs, or any other third-party tracking tools.

Data Security

The App implements the following security measures:

  • Password Authentication: Server connections require a password, which is hashed using bcrypt
  • Token-Based Sessions: Authenticated sessions use signed JWT tokens
  • Encrypted Transport: Tailscale connections are encrypted end-to-end using WireGuard
  • Biometric Lock: Optional Face ID / Touch ID protection
  • Keychain Storage: Sensitive credentials are stored in the iOS Keychain

Children's Privacy

The App is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided personal information through the App, please contact us so we can take appropriate action.

Your Rights

Since all data is stored locally on your devices, you have full control over your data at all times:

  • Access: All your data is on your device and accessible to you
  • Deletion: Uninstalling the App removes all locally stored data
  • Portability: Session data is stored on your devices and can be managed by you

Changes to This Policy

We may update this privacy policy from time to time. Any changes will be reflected in the “Last Updated” date at the top of this document.

Contact

If you have questions or concerns about this privacy policy, please contact us at privacy@formestry.com.

This privacy policy applies to the Cli.nt iOS application.