This Privacy Policy explains how PublishPort ("we", "us", "our") collects, uses, and protects your information when you use the Service. The Service is local-first by design and deliberately keeps the data the cloud can access to a minimum.
1. Information We Collect
- Account information: the email address you provide at registration, and a securely hashed form of your password.
- Authentication credentials: the session, device, and MCP tokens we issue, stored only as hashes.
- Usage counters: relay usage metrics used for billing and quota enforcement (such as the number of command invocations and bytes uploaded per month).
- Limited operational logs: minimal technical logs needed to keep the relay stable and to troubleshoot (such as connection times and error messages).
2. Information We Deliberately Do Not Collect or Store
- The relay does not store the contents of your files. File bytes passing through the relay are streamed straight through — forwarded to your device as they arrive and immediately discarded, with no buffering of the complete file and nothing written to disk.
- Commands run on your own machine, and their results are not retained by the relay.Your platform sessions and published content always remain on your own computer and cannot be read by our servers.
- We do not collect or sell the content of your platform accounts or your personal social data.
3. How We Use Information
- To provide, maintain, and secure the Service;
- To authenticate you and protect account security;
- To meter usage in order to enforce plan limits and billing;
- To contact you when necessary about service changes or security matters.
4. Third-Party Services
- Payments (Dodo Payments): Paid plans are processed by Dodo Payments acting as Merchant of Record. Your payment information is collected and processed by Dodo Payments under its own privacy policy; we do not receive your full payment-card details.
- Upstream open-source tools: The open-source command-line tools the Service invokes run on your own machine; their interactions with each platform occur directly between your computer and that platform.
5. Cookies and Local Storage
The desktop application uses local storage to keep your session token so that you stay signed in across restarts. Our website may use necessary local storage to maintain basic functionality.
6. Security
We store tokens only as hashes, hash passwords using a salted, industry-standard algorithm, and transmit data over HTTPS/TLS. However, no system is perfectly secure, and you are responsible for safeguarding your account and access keys (see our Terms of Service).
7. Data Retention and Your Rights
We retain your account and usage information only for as long as needed to provide the Service. You may delete your account at any time; after deletion, we will remove or anonymize information associated with you within a reasonable period, except where retention is required by law. To access, correct, or delete your information, contact us.
8. Children
The Service is intended for adults. We do not knowingly collect personal information from minors.
9. Changes to This Policy
We may update this Policy from time to time. Updates will be posted on this page with a revised "Last updated" date.
10. Contact
If you have any questions about this Policy or your data, contact us at support@publishport.app.