Privacy Policy

Last updated: 2026-04-26

Summary

DeepMeadows is a local-first desktop application. Your workspace pages, blocks, databases, and AI conversations are stored on your own machine by default and do not leave it unless you explicitly enable a cloud feature (sync, hosted AI provider, etc.). This policy describes what data we collect, when, and why.

1. What stays on your machine

  • All pages, blocks, databases, and tables in your workspace.
  • SQLite indexes, search indexes, and embeddings.
  • Local AI conversations when using a local model (e.g., Ollama).
  • Settings, keybindings, and workspace preferences.

2. What may leave your machine

  • AI provider requests. If you configure a cloud AI provider (Anthropic, OpenAI, or other), the conversation context you send is transmitted to that provider under their terms. We do not see these requests.
  • Sync. If you enable multi-machine sync, your encrypted workspace data is sent to the sync server (ours or your own self-hosted instance). You can disable sync at any time.
  • Crash reports. If you opt in, anonymized crash reports may be sent to help us debug. Off by default.

3. What we do not collect

  • The contents of your pages, blocks, or AI conversations.
  • Your file paths, file names, or workspace structure.
  • Any analytics about how you use the app, unless you opt in.

4. Account data (when you use sync)

If you create a DeepMeadows account to use hosted sync, we store: email address, encrypted password, and the encrypted workspace data you push to the server. We never decrypt your data. Account data is deleted on request — write to hello@deepmeadows.com.

5. Website server logs and cookies

This website does not use cookies or third-party analytics.

Like most web servers, our content delivery network (Amazon CloudFront) records standard access logs for each request to deepmeadows.com: IP address, timestamp, the URL requested, the page that referred you, and your browser's user-agent string. Logs are stored in our own AWS account, are not shared with third parties, and are automatically deleted after 90 days. We use them to count downloads, diagnose errors, and investigate abuse. This is server-side logging of the marketing website only — it does not apply to the desktop app, which is covered by sections 1–3 above.

6. Changes

If this policy changes, the date at the top will be updated and material changes will be highlighted.

7. Contact

Questions: hello@deepmeadows.com.