Privacy
Last updated · 2026-05-07Privacy-first by design
Privacy is the foundation of AISpendr, not a feature bolted on later. This Privacy Policy explains how the operators of AISpendr ("we," "us," or "our" — see "Publisher" below) collect, use, and protect information when you use the desktop application and the website at aispendr.com.
The key principle: your AI usage data — quotas, credits, API responses — never leaves your device. We cannot see, access, or process it.
1. Information we collect
1.1 Information for license management
We collect the minimum information necessary to manage licenses and provide support:
- Email address (for license delivery and support)
- Name (optional, for personalization)
- License key and activation status
- Device identifiers (for license validation)
- Payment information (processed by Lemon Squeezy, not stored by us)
1.2 Information we do NOT collect
AISpendr is designed to protect your sensitive data. We do not collect:
- Your AI quota usage, credit balances, or API call data
- API keys or credentials for the providers you connect
- Detailed usage patterns or telemetry from the desktop app
- Tracking cookies or personally-identifiable analytics on the website
- Behavioural data about how you use the app
2. How AISpendr protects your privacy
2.1 Local-first architecture
- Direct API connections: the desktop app talks to providers (Anthropic, OpenAI, OpenRouter, Cloudflare, Claude Code) directly, with no AISpendr-operated server in between.
- Local data processing: all polling, parsing, and aggregation happens on your Mac.
- Native-secure credential storage: API keys are stored in macOS Keychain, never on our infrastructure.
- No cloud backend: there is no AISpendr cloud service that processes or stores your usage data.
3. How we use the information we do collect
The limited information we collect is used solely for:
- License validation and management
- Delivering software updates and release notes
- Providing customer support when you contact us
- Sending essential service announcements
- Processing payments through Lemon Squeezy
- Complying with legal obligations
4. Third-party services
We rely on a small number of third-party services to operate AISpendr:
| Service | Purpose | Data shared |
|---|---|---|
| Lemon Squeezy | Payment processing (Merchant of Record) | Email, payment details, purchase history |
| Cloudflare | Website hosting (Pages), DNS, and CDN for app downloads | Standard CDN access logs (IP, user-agent), expired on Cloudflare's schedule |
| Cloudflare Web Analytics | Privacy-friendly website analytics | Anonymous page-view counts. No cookies, no fingerprinting. |
5. Data storage and security
5.1 Infrastructure
- Website (aispendr.com): hosted on Cloudflare Pages.
- Your usage data: stored only on your Mac, never transmitted to us.
5.2 Security measures
- TLS for all network communications
- Secure license-key generation and validation via Lemon Squeezy
- Regular security updates and patches to the desktop app
- Access controls for internal license-management systems
- No storage or logging of your sensitive provider data on our side
6. Your rights and choices
6.1 Access and correction
You can request access to the personal information we have about you and ask for corrections by emailing privacy@aispendr.com.
6.2 Deletion
You can request deletion of your account and associated data. Some information may need to be retained for legal or billing reasons.
6.3 Data portability
Your usage data is already stored locally on your Mac in a format you control. License information can be exported on request.
6.4 Communication preferences
You can opt out of non-essential communications at any time. We will always send critical service announcements and license-related information.
7. International data transfers
The publisher of AISpendr is registered in [Publisher jurisdiction TBD]. Our infrastructure (Cloudflare, Lemon Squeezy) spans multiple regions. By using AISpendr, you consent to the transfer of your information to these locations. We rely on the safeguards each provider has in place for international transfers.
8. Legal compliance
8.1 GDPR (European users)
- Lawful basis: contract performance and legitimate interests
- Data minimisation: we collect only essential information
- Right to access, rectification, and erasure
- Data portability and objection rights
8.2 CCPA (California users)
- We do not sell personal information.
- Right to know what information we collect.
- Right to delete personal information.
- Right to non-discrimination for exercising privacy rights.
8.3 Other jurisdictions
We will comply with applicable data-protection regulations in your jurisdiction.
9. Children's privacy
aispendr is not intended for use by anyone under 18. We do not knowingly collect personal information from children. If you believe we have inadvertently received such information, contact us at privacy@aispendr.com.
10. Data retention
- Active accounts: retained while your license is active.
- Inactive accounts: basic information retained for 2 years for reactivation purposes.
- Legal requirements: some data may be retained longer if required by law.
- Your usage data: never stored by us; deleted whenever you uninstall the app.
11. Security incidents
If a security incident affects personal information, we will notify affected users within 72 hours, describe what was affected, outline our response, and recommend protective measures. Because we don't store your provider data or credentials, those cannot be compromised through us.
12. Changes to this policy
We may update this policy. The "Last updated" date at the top reflects the most recent change. For material changes, we'll make reasonable efforts to notify you. Continued use after changes indicates acceptance.
13. Publisher and contact
Publisher: [Publisher legal entity and address TBD — fill in before launch].
General support: support@aispendr.com
Privacy & legal: privacy@aispendr.com