Privacy

Account: your email address. That’s the only personal information we ask for. No password — we email you a one-time code instead.

Deployments: the source code you ask your AI agent to deploy. We store it in S3 to feed the build pipeline. We do not read it, scan it for content, or use it to train any model.

Agent activity: when your coding agent calls Offlocal, we log the action (deploy, status check, etc.), the deployment id, and a timestamp. No request body content beyond what the deploy API needs.

Operational data: standard server logs (IP address, HTTP method, path, response code) retained for ~30 days for debugging and abuse prevention.

• No analytics SDKs, no tracking cookies.
• No selling of any data, ever.
• No reading or scanning of your source code for content.
• No third-party advertising.

To run the service, your data flows through these providers:

• AWS — hosts your deployed containers, source bundles, and built images.
• Resend — sends one-time codes to your email address.
• A Postgres provider — stores your account row and deployment records.

We don’t share data with anyone else. We don’t have an analytics provider or ad partner.

You can delete your account at any time by emailing us. We’ll delete your row, your agent keys, your source bundles, and your built images within 30 days.

If you’re in the EU/UK (GDPR) or California (CCPA), you have the right to access, correct, or delete your data on request. Email us and we’ll handle it.

Offlocal sets one cookie: a session cookie that keeps you signed in. It’s httpOnly, SameSite=Lax/None, and never read by third-party scripts. No tracking cookies.

Questions or requests: privacy@offlocal.ai.