Privacy Policy

Summary

Sparkpane is built around the principle that your SSH keys, host configuration, and session contents belong to you and never need to flow through a third party. SSH connections happen directly from your iOS device to your remote hosts.

What stays on your device

• SSH private keys — stored in the iOS Keychain. Never written to UserDefaults, never synced via iCloud unless you explicitly enable iCloud Keychain.
• Voice input audio— processed by Apple's on-device Speech framework. Audio is not transmitted to Sparkpane.

What we store on Sparkpane servers

• Account email and Supabase user id — needed to authenticate you across devices.
• Host metadata — hostname, port, username, display name, read-only flag, fingerprint pin. SSH private keys never leave your device.
• Session metadata — last-seen timestamps, project names, handoff notes, and pinned-pane preferences, so your settings sync between devices.
• Subscription status — synced from Stripe via secure webhook. We never see your full card number.

What we do not collect

• The contents of your tmux panes, Claude Code prompts, or AI responses.
• Your source code, command history, or shell environment.
• Telemetry tied to your identity. We use Apple-provided crash and analytics signals only when you opt in via iOS settings; they are aggregated and anonymized by Apple.

Sub-processors

• Supabase — managed Postgres + authentication. Stores account data and host metadata.
• Stripe — subscription billing. Handles all payment data; we receive only subscription status.
• Cloudflare — CDN and DNS for sparkpane.com.

Your rights

You can delete your Sparkpane account at any time from the account page; this purges your data from our database within 30 days. For questions email privacy@sparkpane.com.

Changes

When this policy changes we'll update the "Last updated" date at the top. Material changes will be surfaced in the app before they take effect.