Privacy Policy

Last Updated: February 2026

This Privacy Policy explains how Contextify ("we", "us", "our") collects, uses, and protects your information when you use the Contextify application and optional Contextify Cloud service (together, the "Service").

1. How Contextify Works

Contextify operates in two modes:

  • Local mode (default): All data stays on your device. No account required. No data is transmitted anywhere. This is how the Free tier works.
  • Cloud mode (optional, paid): If you subscribe to a paid plan and enable cloud sync, conversation data is transmitted to Contextify Cloud servers so you can search across devices.

Cloud sync is always user-initiated. We never upload your data without your explicit action.

2. Data We Collect

2.1 Account Data

When you create a Contextify Cloud account, we collect:

  • Email address
  • Name (optional)
  • Organization name (Team and Enterprise plans)

2.2 Payment Data

Payments are processed by Stripe. We do not store credit card numbers, bank account details, or other payment credentials on our servers. We receive from Stripe:

  • Subscription status (active, cancelled, past due)
  • Billing period and plan type
  • Last four digits of the payment method (for display in your account)

2.3 Conversation Data

When you enable cloud sync, the following data is uploaded:

  • AI conversation transcripts (messages between you and Claude Code or Codex CLI)
  • LLM-generated summaries of conversation entries
  • Project names and associated metadata
  • Session timestamps and durations

This data is uploaded only when you initiate a sync. The local application never contacts our servers unless you have configured cloud sync.

2.4 Usage Data

For cloud subscribers, we collect limited operational data:

  • Sync frequency and timestamps
  • Search queries executed against cloud data
  • Aggregate statistics (number of conversations, storage used)

We do not collect usage analytics from the local-only application.

2.5 Device Data

When connecting to Contextify Cloud, the application transmits:

  • A device identifier (generated locally, not your hardware serial number)
  • Operating system version
  • Application version

This data helps us provide support and ensure compatibility.

3. How We Use Your Data

We use your data to:

  • Provide the Service: Store and index your conversations for cross-device search
  • Process payments: Manage subscriptions and billing through Stripe
  • Send service notifications: Account confirmations, billing alerts, security notices, and material changes to the Service
  • Improve the Service: Understand aggregate usage patterns to prioritize features and fix issues
  • Provide support: Respond to your questions and troubleshoot issues

We commit to the following:

  • We never sell your data to third parties.
  • We never use your conversation data to train AI models.
  • We never share your data with advertisers.
  • We never read your conversation content except when required to provide technical support you have requested, or when legally compelled.

4. Data Storage and Security

4.1 Local Data

Local data is stored in ~/Library/Application Support/Contextify/ (or a custom location you configure). Security relies on macOS file system permissions and, for App Store builds, macOS application sandboxing.

4.2 Cloud Data

Cloud data is stored with the following protections:

  • Tenant isolation: Each account's data is stored in a separate PostgreSQL schema. No data is shared or co-mingled between accounts.
  • Encryption in transit: All communication between the application and our servers uses TLS 1.2 or higher.
  • Access controls: API key authentication for all cloud operations. Keys can be revoked at any time.
  • Infrastructure: Cloud servers are hosted on reputable infrastructure providers with industry-standard physical and network security.

4.3 Enterprise Self-Hosted

Enterprise customers may deploy Contextify Cloud on their own infrastructure. In this case, we do not have access to your data. Your organization's security policies apply.

5. Data Retention

  • Active accounts: Your cloud data is retained for as long as your subscription is active.
  • Cancelled accounts: After cancellation, your data is retained for a reasonable period to allow you to resubscribe or export your data, then permanently deleted.
  • Backups: Database backups are retained for disaster recovery purposes and destroyed when no longer needed.
  • Account records: Basic account records (email, subscription history) may be retained for up to 12 months after deletion for legal and accounting purposes.
  • Local data: Local data is never affected by subscription changes. It remains on your device under your control indefinitely.

6. Your Rights

You have the following rights regarding your data:

  • Export: Download your account metadata at any time through the application or API. We are working on expanding export to include full conversation data.
  • Delete: Request deletion of your account and all associated cloud data.
  • Opt out of cloud: Disable cloud sync at any time. The local application always works without cloud features. Local-only mode collects no data whatsoever.
  • Access: View all data we hold about you through your account dashboard.
  • Correction: Update your account information at any time through your account settings.
  • Portability: Export your data for use with other tools. Export format options are being expanded.

7. Third-Party Services

We use the following third-party services:

  • Stripe: Payment processing. Stripe receives your payment information directly. See Stripe's privacy policy for details on how they handle your data.
  • Sentry: Error monitoring. Sentry receives error reports and diagnostic data when server errors occur. No conversation content is included in error reports.

We do not use analytics, advertising, or tracking services. If this changes, we will update this policy and notify you.

8. Cookies and Tracking

The Contextify application does not use cookies or web tracking. Our website (contextify.sh) does not use analytics cookies or third-party tracking scripts.

9. Children's Privacy

Contextify is not directed to children under 18. We do not knowingly collect data from minors. If we learn that we have collected data from a child under 18, we will delete it promptly.

10. International Data Transfers

If you are located outside the United States, your data may be transferred to and processed in the United States where our servers are located. By using Contextify Cloud, you consent to this transfer. We take appropriate safeguards to protect your data in accordance with this policy.

11. GDPR (European Users)

If you are in the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation:

  • Legal basis: We process your data based on (a) your consent when enabling cloud sync, (b) contractual necessity to provide the Service, and (c) our legitimate interest in improving the Service.
  • Right to object: You may object to processing based on legitimate interest by contacting us.
  • Right to lodge a complaint: You may file a complaint with your local data protection authority.
  • Data Protection Officer: Contact us at privacy@contextify.sh for GDPR-related inquiries.

12. CCPA (California Users)

If you are a California resident, you have the following rights under the California Consumer Privacy Act:

  • Right to know: You may request details about the personal information we collect and how we use it.
  • Right to delete: You may request deletion of your personal information.
  • Right to opt out: We do not sell personal information. There is nothing to opt out of.
  • Non-discrimination: We do not discriminate against you for exercising your CCPA rights.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes at least 30 days before they take effect, via the email address associated with your account. Changes are also posted on this page with an updated date.

For users without accounts (local-only mode), changes are effective when posted to this page.

14. Contact

If you have questions about this Privacy Policy or your data, please contact us: