Legal

Privacy Policy

Effective: May 3, 2026 Last updated: May 3, 2026

The short version: Clankit is a desktop application that runs on your own computer. We do not operate a cloud, do not collect your conversations, do not see your API keys, and do not run analytics inside the app. The only servers we operate handle Google sign-in and software updates — and they only see what's strictly required for those tasks.

1. Who we are

Clankit ("Clankit," "we," "us," "our") provides a local-first desktop AI workspace available at clankit.app. This Privacy Policy explains what data the Clankit desktop application and the Clankit website handle, why, and what choices you have. If anything here is unclear, email us at hello@clankit.app.

2. Scope of this policy

This policy covers:

The Clankit desktop application for Windows and macOS (Intel & Apple Silicon).
The Clankit website at clankit.app and its sub-domains (e.g. www.clankit.app, api.clankit.app, releases.clankit.app).
The Clankit desktop frontend source repository at github.com/XiamiYoung/ClanKit.

It does not cover third-party services you choose to connect from inside Clankit (LLM providers, MCP servers, IM bridges). Those services have their own terms and privacy policies, and you are responsible for reviewing them.

3. Data stored on your device

Clankit is a local-first application. The data below is created and stored exclusively on your computer, in a single application data folder. We have no copy of it.

Conversations. Chat messages, agent replies, tool call traces, image attachments, and voice transcripts — stored in a local SQLite database (chats.db).
Agents and skills. Persona definitions, system prompts, and skill configurations — stored in agents.db and the skills/ folder.
Memory. Per-agent durable memory blocks and their full-text + vector indexes — stored in memory/memory.db and memory/memory-vec/.
Knowledge base. Files you import for retrieval-augmented generation, plus their locally computed embeddings — stored in knowledge.json and the local vector store.
Tasks & plans. Scheduled or recurring agent tasks — stored in tasks.db.
Configuration. Provider endpoints, model preferences, language, UI settings — stored in config.json.
Credentials. API keys and SMTP passwords are encrypted at rest using your operating system's secure storage facility — DPAPI on Windows, Keychain on macOS. Plaintext keys are never written to disk.

The data folder lives at %APPDATA%/clankit/data/ on Windows or ~/Library/Application Support/clankit/data/ on macOS unless you override it. You can back up, copy, move, or delete this folder at any time. We never read it remotely; we have no way to.

4. Third-party LLM providers

To produce AI responses, Clankit forwards your prompts to whatever language-model provider you have configured (Anthropic, OpenAI, OpenRouter, DeepSeek, etc.). These calls go directly from your device to the provider's API endpoint. Clankit's servers are not in the path.

Each provider has its own data-handling terms. The provider may log your prompts and responses, train on your data (or not — most enterprise APIs do not by default), and apply content moderation. Review the provider's privacy policy and configure your account preferences before using them with Clankit.

Tools you enable (MCP servers, HTTP webhooks, search engines, IM bridges) likewise communicate directly from your device or from servers you control. Clankit does not proxy these calls.

Clankit offers an optional Sign in with Google flow for license activation, billing (when paid plans launch), and ensuring update channels. If you sign in, the following happens:

Your browser or the app obtains a Google ID token through Google's standard OAuth 2.0 / OpenID Connect flow.
The app sends that token to our auth endpoint at https://api.clankit.app/auth/google.
Our auth service verifies the token with Google and stores a minimal record in our user database: your Google account ID (a numeric identifier), email, name, and a profile picture URL provided by Google.
We issue a Clankit JSON Web Token (JWT) the desktop app uses to identify itself for entitlement checks.

We do not request access to your Gmail, Drive, Calendar, Contacts, or any other Google service. We do not see your Google password. You can revoke our access at any time at myaccount.google.com/permissions; doing so deletes the link to your Clankit account on your next attempt to sign in.

If you never sign in, Clankit still works — you just operate in unauthenticated mode and lose access to features that require a Clankit account.

6. Update checks

The desktop application checks releases.clankit.app periodically for new versions. The request includes your application version, OS, and architecture so we can serve the correct installer. We log these requests at the CDN edge to monitor uptime and abuse. Logs include IP address and User-Agent and are retained for up to 30 days, then deleted.

You can disable automatic update checks in Settings → Updates.

7. Telemetry & analytics

The Clankit desktop application contains no built-in telemetry, no analytics SDK, no crash reporter that phones home, and no usage tracking. We do not know which features you use, which agents you build, how long you run the app, or how often you open it.

The marketing website at clankit.app uses minimal, privacy-respecting page-view counting (server log aggregation, no cookies, no fingerprinting). We do not place advertising or social-network trackers on our pages.

8. Google API user data

Clankit's use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. Specifically:

We only request the minimum scopes needed to verify your identity (openid, profile, email).
We never sell, trade, or transfer Google user data to third parties for advertising or any unrelated purpose.
We never use Google user data to train AI models — neither ours nor anyone else's.
Humans at Clankit do not read your Google user data except (a) with your explicit consent, (b) for security investigations, (c) to comply with applicable law, or (d) when the data has been aggregated and anonymized.

9. Children's privacy

Clankit is not directed at children under 13, and we do not knowingly collect personal information from children. If you believe a child has provided us personal information, contact us at hello@clankit.app and we will delete it.

10. Your rights

Because almost all your data lives on your own device, exercising your rights is mostly self-serve:

Access & portability. Open the data folder; everything is in standard SQLite, JSON, and plain-file formats.
Deletion. Delete the data folder. Uninstalling the app and removing the folder eliminates all local data.
Account deletion. If you signed in with Google, email hello@clankit.app from the email address linked to your account and we will purge our copy of your account record within 30 days.
Regional rights (GDPR, CCPA, etc.). EU/UK and California residents have additional rights — access, correction, restriction, objection, opt-out of sale (we do not sell data). Email hello@clankit.app to exercise them.

11. Changes to this policy

If we update this policy, we will revise the "Last updated" date at the top and, for material changes, post an in-app notification. Your continued use of Clankit after the change takes effect means you accept the revised policy.

12. Contact

For privacy questions, requests, or anything else, email hello@clankit.app.