Privacy Policy
Last updated: July 10, 2026
1The short version
Wrangler is local-first by design. Your code, your agent transcripts, your board, your notes — everything the desktop app works with lives on your machine. We run no telemetry and no analytics inside the app. The only data that ever reaches us is what's strictly needed to sell and validate licenses: an account email and payment records.
2Who we are
Wrangler is operated by [LEGAL ENTITY NAME], [JURISDICTION](“we”, “us”). Contact: [SUPPORT EMAIL].
3What the desktop app does with data
Stays on your device: your repositories and code, agent session transcripts, the feature board, local tasks, knowledge entries, memory clips, preferences, and diagnostics. We cannot see any of it.
Service tokens:credentials you connect (GitHub, Linear, Jira, Slack, Coralogix, LaunchDarkly) are stored in your operating system's keychain and sent only to that service's own hosts through an allowlisted proxy inside the app. They are never transmitted to us.
Third-party services you connect: when the app talks to GitHub, Linear, etc., those requests are governed by those services' own privacy policies — the app acts as your client, with your credentials.
Crash logs: the app writes crash information to a local file only. There is no automatic crash reporting. If we ever add it, it will be opt-in, clearly labelled, scrubbed of paths and project names, and reflected here first.
Update checks:once per launch the app fetches a version manifest from GitHub Releases. This is a plain HTTPS request to GitHub and sends no personal data; it is governed by GitHub's privacy policy.
4Account data (only if you create an account)
Buying a license requires an account. For that we store: your email address and authentication data (via Supabase, hosted in the EU, region eu-west-1), your license keys and their status, and your subscription state. Payments are processed by Stripe — we never see or store card numbers; Stripe shares with us only what is needed to issue and manage your license (customer id, subscription status).
The free tier requires no account and sends us nothing.
5This website
The site is static. It currently uses no analytics and sets no tracking cookies. If we add privacy-respecting, cookieless analytics (e.g. aggregate page counts), this section will say so explicitly.
6Sharing, selling, retention
We do not sell personal data, full stop. We share it only with the processors named above (Supabase for auth/database, Stripe for payments, Resend for transactional email if/when enabled) and only to provide the service. Account data is retained while your account exists; payment records are retained as required by tax law.
7Your rights
You can request a copy or deletion of your account data at any time by emailing [SUPPORT EMAIL] from your account address. Deleting your account revokes active licenses tied to it. Depending on where you live (e.g. GDPR, CCPA), you may have additional statutory rights — we honor them regardless of where you live.
8Changes
We'll update this page when practices change, bump the date at the top, and — for material changes affecting account holders — notify you by email before they take effect.