Trust is default

Privacy Policy

GhostPilot is designed to be invisible—not just on your screen, but in our analytics. We don't track you. Period.

Last Updated: October 14, 2026
Effective Date: October 14, 2026

1. Overview

At GhostPilot, our privacy philosophy is remarkably simple: we do not collect, store, or transmit your personal data. GhostPilot operates entirely on your local machine. Because we do not run servers to process your usage, there is no data for us to sell, share, or lose.

2. Local Data Storage

GhostPilot is a local-first application. This means:

  • Chat History: All conversation logs are stored locally on your device using a lightweight SQLite database. These logs never leave your hard drive unless you manually extract them.
  • Application Settings: Your hotkey preferences, UI settings, and chosen AI models are saved in a local configuration file.
  • Screen Captures: When you use the "Snap" feature, the screenshot is held in local memory just long enough to be appended to your prompt and sent to the chosen AI API. It is not saved to your disk or sent to any GhostPilot analytics server.

3. API Keys & Third-Party AI Models

GhostPilot relies on Google's Gemini models to function. When you use the software:

  • Bring Your Own Key (BYOK): If you input your own Google AI Studio API key, it is encrypted and saved locally. GhostPilot uses this key to communicate directly with Google's servers. GhostPilot's developers never see your key.
  • Data Transmission: Your prompts and "Snaps" (screenshots) are sent securely over HTTPS directly to the API provider (Google). Your data usage is subject to Google's API Privacy Policy.
  • No Man-in-the-Middle: We do not route your API calls through our own servers. Your connection is direct from your machine to the AI provider.