Effective July 12, 2026 · Eudaimonia Software
The whole policy in one sentence: your prompts and answers are end-to-end encrypted between your computer and your devices, we operate no accounts and no analytics, and the only data our relay ever stores is a random pairing identifier and a push-notification token.
The relay is a small forwarding service (hosted on Cloudflare) whose only job is to move sealed messages between your computer and your devices, and to trigger push notifications. Per pairing, it stores exactly two things:
While a prompt is waiting for your answer, its encrypted form is held briefly in memory so a freshly opened app can catch up; it is discarded the moment the prompt resolves or expires.
Message contents — commands, file paths, directory names, questions, your answers, machine names — are encrypted on your computer with keys created during pairing and held only on your devices (in the iOS Keychain, hardware-backed). The pairing QR code travels over your screen and your camera, never over the network, so the relay has no opportunity to intercept the keys. What the relay forwards is ciphertext it cannot open; push notifications carry that same ciphertext, and your device decrypts it locally before anything appears on your lock screen.
Two infrastructure providers touch your (encrypted) data in transit: Cloudflare, which hosts the relay, and Apple, whose push-notification service delivers messages to your devices. Both see ciphertext and routing metadata only. If you prefer zero third parties, the relay is open source and self-hostable — the app accepts any relay URL at pairing time.
Unpair a desktop (or delete the app) and the keys are destroyed, which permanently orphans anything the relay holds — ciphertext without keys is noise. Re-pairing replaces the relay's stored identifier and token. To remove the desktop side, use the plugin's hook-removal option; it cleans its entries out of your Claude Code settings.
If this policy changes materially, the effective date above changes with it, and the app's release notes will say so. The policy's history is public in the project repository.
Questions about privacy: [email protected].