Privacy Policy

Last updated: 5 May 2026

Summary: Local-First by Design

🔗 Your payment data stays on your machine

linkgate is a local-first CLI. Your policy rules, audit logs, and license keys are stored only on your computer. We do not run a server that processes your transactions.

💳 We never see card credentials

stripe linkgate does not process, store, or transmit card numbers, CVVs, PANs, or payment tokens. All wallet operations are handled directly by Stripe Link on your device.

📊 Minimal, voluntary telemetry only

We collect only feature-usage counts (not financial data) to enforce free-tier limits and understand which features matter. You can disable telemetry at any time.

1. What Data We Collect

1.1 Telemetry (Free tier only)

Feature usage counts (e.g., how many spend check vs spend create commands)
Daily counter state (to enforce the 1-spend-per-day free limit)
License tier (free or pro)
CLI version number

What we do NOT collect: merchant names, URLs, amounts, payment methods, card data, audit log contents, policy rules, or any financial transaction details.

1.2 Pro license activation

Email address used to purchase the license (via Stripe)
License key hash (not the full key)
Activation timestamp

1.3 Feedback emails

When you use linkgate feedback bug or linkgate feedback suggest
Your email address, the message content, and optional system diagnostics
Emails are sent via Resend (see Third Parties below)

2. Where Data Lives

On your machine:

~/.linkgate/guard.yaml — your spending policy
~/.linkgate/audit.jsonl — your audit log (merchant names, amounts, decisions, timestamps)
~/.linkgate/license.json — your activated license key
~/.linkgate/counter.json — free-tier usage counter

On our servers:

Stripe: payment and license purchase records (see Stripe's privacy policy)
Resend: feedback email content (see Resend's privacy policy)
Cloudflare: website analytics (if you visit linkgate.dev)

LinkGate does not maintain servers that process payment data, store audit logs, or handle card credentials.

3. How We Use Data

Telemetry: To enforce free-tier limits and understand product usage patterns
License keys: To verify Pro tier activation and prevent fraud
Feedback: To respond to bug reports and feature suggestions
We do NOT: sell, rent, or share your data with advertisers, data brokers, or third-party marketers

4. Third-Party Services

Stripe — payment processing and license key delivery. Subject to Stripe's Privacy Policy.
Resend — email delivery for feedback and support. Subject to Resend's Privacy Policy.
Cloudflare — DNS, email routing, and website hosting. Subject to Cloudflare's Privacy Policy.

5. Data Retention

Feedback emails: Retained for 2 years for support history, then deleted
License records: Retained for the duration of the license validity plus 1 year for accounting/tax purposes
Telemetry: Aggregated after 90 days; raw logs deleted after 1 year

6. Your Rights

Access: Request a copy of any personal data we hold about you
Correction: Update your email address or other details
Deletion: Request deletion of your data (excluding accounting records we are legally required to retain)
Opt-out: Disable telemetry with linkgate config set telemetry.enabled false

To exercise these rights, email [email protected].

7. International Transfers

LinkGate operates from Canada. Telemetry and feedback data may be processed through servers located in the United States (via Cloudflare and Resend). We rely on Standard Contractual Clauses for any data transfer outside Canada.

8. Children's Privacy

linkgate is not intended for use by individuals under 18 years of age. We do not knowingly collect personal information from children.

9. Changes to This Policy

We may update this Privacy Policy at any time. Material changes will be notified via the email address associated with your Pro license or via the CLI on first run after update. The current version is always available at https://linkgate.dev/privacy.

10. Contact

Privacy inquiries: [email protected]

LinkGate, Province of Ontario, Canada

← Back to linkgate