Trust & Transparency
Privacy Policy
seQRets does not collect, store, transmit, or sell your data. Period.
Last updated: April 24, 2026
Overview
In plain English: seQRets is a privacy-first product. We don't run servers. We don't have accounts. We don't track you. Your secrets never leave your device. This policy explains exactly what happens — and what doesn't — when you use seQRets.
This Privacy Policy applies to the seQRets marketing website at seqrets.app, the web application at app.seqrets.app, and the seQRets desktop application. Together, these are referred to as the "Services." By using any of our Services, you acknowledge that you have read and understood this policy.
What We Don't Collect
In plain English: We don't track you. At all. No analytics, no cookies, no fingerprinting. Nothing phones home.
seQRets does not employ analytics services, tracking pixels, browser fingerprinting, error reporting services, telemetry, or any form of behavioral monitoring. We do not collect IP addresses, device identifiers, usage patterns, or any personally identifiable information. There are no third-party scripts loaded for advertising, remarketing, or audience measurement on any of our Services.
Data Processing
Marketing Website (seqrets.app)
This website is a static site hosted on Cloudflare Pages. It does not set cookies, use local storage, or make any requests to seQRets-controlled servers. Cloudflare may collect standard access logs (IP address, user agent) as part of edge delivery — see Cloudflare's Privacy Policy for details.
Web App (app.seqrets.app)
All cryptographic operations run entirely in your browser. The web app stores only three items in local browser storage: your theme preference (light/dark), the AI disclaimer acknowledgment, and your Gemini API key (if you choose to provide one). None of this data leaves your device or is transmitted to any server. App traffic is served via Cloudflare's edge network fronting GitHub Pages as origin; Cloudflare may collect standard access logs, and GitHub Pages may collect its own server logs as the origin host.
Desktop App
The desktop application operates entirely offline. It does not phone home, check for telemetry, or transmit any data. Configuration and preferences are stored locally on your machine. Secrets are processed in memory using native Rust and zeroized after use.
Cookies
seQRets does not use cookies on any of its Services. The web app uses browser local storage for the limited preferences described above, which are never transmitted externally and can be cleared at any time through your browser settings.
External Network Requests
In plain English: The web app makes two optional network requests — a Bitcoin price check and AI assistant queries. Both are opt-in and go directly to the third-party provider. We never see, relay, or store this traffic.
- 1.Bitcoin ticker (Coinbase API): An unauthenticated, read-only request to retrieve the current Bitcoin price for display purposes. No user data is included in this request.
- 2.Bob AI Assistant (Google Gemini API): If you choose to use the AI assistant, your queries are sent directly from your browser to Google's Gemini API using your own API key. seQRets never sees, stores, or relays these messages. Google's Gemini API Terms of Service apply to this feature.
Both requests are optional and can be avoided entirely by using the app offline. The desktop app makes no external network requests whatsoever.
Third-Party Services
The following third-party services may be involved when you use seQRets. Each has its own privacy policy and terms:
| Service | Purpose | Data Shared |
|---|---|---|
| Cloudflare | Edge delivery for seqrets.app and app.seqrets.app | Standard access logs (IP, user agent) |
| GitHub Pages | Web app origin, Recover tool | Standard server logs (IP, user agent) |
| Coinbase API | Bitcoin price display | None (unauthenticated read-only request) |
| Google Gemini API | Bob AI Assistant (opt-in) | Your queries, sent directly with your API key |
Children's Privacy
seQRets is not directed at children under the age of 13. We do not knowingly collect personal information from children. Since we do not collect personal information from anyone, this concern is moot in practice — but we state it here for completeness.
Changes to This Policy
If we update this policy, the revised version will be posted at this URL with an updated "Last updated" date. Because seQRets does not collect email addresses or user accounts, we cannot notify you directly of changes. We encourage you to review this page periodically. Material changes — particularly any that involve new data collection — will also be noted in our GitHub repository.
Questions?
If you have questions about this Privacy Policy, contact us at hello@seqrets.app. For security concerns, reach out to security@seqrets.app.