Privacy Policy

Last updated: February 2026

Overview

Claudaway is designed with privacy as a core principle. Your code, your prompts, and your terminal output are end-to-end encrypted and never pass through our servers.

What we don't collect

What we collect

Architecture

Claudaway uses a direct peer-to-peer connection via Cloudflare's quick tunnel service. The tunnel provides a public URL for your local server, but all data passing through it is encrypted with a shared secret that only your Mac and iPhone know. Cloudflare cannot decrypt the traffic.

Data storage

Third-party services

Data retention

We do not retain any user data on our servers because we have no servers storing user content. Purchase records are retained by Apple and RevenueCat per their respective policies. Crash reports are retained for up to 90 days via Apple's crash reporting service.

Children's privacy

Claudaway is not intended for children under 13. We do not knowingly collect personal information from children under 13. If you believe we have inadvertently collected such information, contact us and we will promptly delete it.

Your rights

You can delete all local data by removing the ~/.claudaway directory on your Mac and uninstalling the iOS app. There is no server-side data to delete (beyond what Apple and RevenueCat hold for purchase records).

For EU/EEA residents (GDPR)

You have the right to access, correct, delete, restrict processing of, and port your personal data. Since we store virtually no personal data, most of these rights are satisfied by default. For purchase-related data, contact Apple or RevenueCat directly. For any GDPR request, email privacy@claudaway.dev.

For California residents (CCPA)

We do not sell your personal information. We do not share personal information for cross-context behavioral advertising. You have the right to know what personal information we collect (see above — virtually none), request deletion, and opt out of any sale (there is none). Contact privacy@claudaway.dev for requests.

International transfers

Your encrypted tunnel data passes through Cloudflare's global network. Since the data is end-to-end encrypted with keys only your devices hold, the content cannot be accessed regardless of which jurisdiction the tunnel nodes are in.

Changes to this policy

We may update this policy. Material changes will be communicated via the app or website. Continued use after changes constitutes acceptance.

Contact

Questions about privacy? Email privacy@claudaway.dev.