Privacy Policy
Effective April 30, 2026
This Privacy Policy explains how SkwidInk ("we", "us", or "our") collects, uses, and protects information when you visit our website at skwidink.com (the "Website") and when you use the SkwidKit desktop application (the "Application"). It applies to both our self-serve product tiers (Taster and Core) and general website visitors.
SkwidInk's Enterprise engagements (Starter, Entree, and Banquet tiers) are governed by separate agreements that include dedicated data-handling provisions.
1. Our Approach to Data
SkwidKit is a local desktop application. Your business data — contacts, financials, competitors, content plans, and everything else you enter — is stored on your device in a local database. We do not host, access, or control that data. This privacy-first architecture means the vast majority of your information never leaves your computer.
The limited data we do process is described in detail below.
2. Website Data
Analytics
We use Plausible Analytics, a privacy-focused analytics service. Plausible does not use cookies, does not collect personal data, and does not track visitors across websites. All data is aggregated — we see page views and referral sources, not individual visitors. Plausible is fully compliant with GDPR, CCPA, and PECR.
Email Collection
If you submit your email address through our website (e.g., the waitlist form), that information is collected and processed by Tally, our form provider. Tally stores your submission on their servers under their privacy policy. We use submitted email addresses solely to send you updates about SkwidInk. You may request deletion of your data at any time by emailing us.
Cookies
The SkwidInk website does not set any cookies. Our analytics provider (Plausible) is cookieless, and our form provider (Tally) may set functional cookies only within its embedded form.
3. Application Data — What Stays Local
The following data is stored exclusively on your device and is never transmitted to SkwidInk:
| Data Category | Examples |
|---|---|
| Business records | Contacts, CRM pipeline, financial transactions, competitor profiles, audience personas |
| Content | Content calendar entries, scheduler drafts, triage items |
| Operations | Sales pipeline, affiliate records, inventory data |
| Exports | CSV, XLSX, and PDF files generated by the Application |
| Branding settings | Custom colors and uploaded logos (Core tier) |
| Ad platform tokens | OAuth access tokens for connected ad accounts, stored encrypted locally (Core tier) |
We do not have the ability to access, view, or recover locally stored data. You are responsible for maintaining your own backups.
4. Application Data — What We Process
A small set of data is transmitted to SkwidInk's servers for specific operational purposes:
| Data | Purpose | Retention |
|---|---|---|
| License key | Subscription validation on application launch | Duration of subscription |
| AI request content | Processed via our AI proxy to generate copy variations, analysis, and other AI-powered features | Transient — not stored after request completes |
| Usage metrics | AI generation counts and feature usage for billing and metering | Duration of subscription |
5. AI Services
AI features in SkwidKit are delivered through a SkwidInk-operated proxy service. When you use an AI feature (such as generating copy variations), the content of your request is sent to our proxy, which forwards it to our AI provider (currently Anthropic) for processing. The response is returned to your Application.
We do not store the content of AI requests or responses beyond the time needed to complete the request. We do not use your AI request content to train AI models. Our AI provider's data handling is governed by Anthropic's privacy policy.
We track the number of AI generations per billing cycle for metering purposes. This count does not include the content of your requests.
6. Payment Data
Subscriptions are processed by Stripe. When you subscribe, your payment information (card number, billing address) is collected and stored by Stripe. SkwidInk does not receive or store your full payment card details. We receive from Stripe: your name, email address, subscription status, and billing history for account management purposes.
Stripe's handling of your payment data is governed by Stripe's privacy policy.
7. Ad Platform Connections (Core Tier)
Core-tier subscribers may connect advertising platform accounts (Google Ads, Meta Ads, TikTok Ads) to retrieve performance data. When you connect an account, you authenticate directly with the advertising platform through OAuth. Access tokens are stored encrypted in your local Application database.
Advertising data requests are made directly from your device to the respective platforms. SkwidInk does not have ongoing access to your advertising platform credentials or data.
8. Third-Party Services
We use the following third-party services that may process limited data on our behalf:
| Service | Purpose | Data Processed |
|---|---|---|
| Stripe | Payment processing | Payment and billing information |
| Anthropic | AI processing | AI request content (transient) |
| Fly.io | AI proxy hosting | AI requests routed through infrastructure |
| Plausible | Website analytics | Aggregated, anonymous page views |
| Tally | Website forms | Email addresses submitted via forms |
| Vercel | Website hosting | Standard web server logs |
9. Data Security
We implement reasonable technical and organizational measures to protect the data we process. AI proxy communications are encrypted in transit via TLS. License key validation requests are encrypted in transit. OAuth tokens stored locally are encrypted at rest.
Because the majority of your data is stored locally on your device, the security of that data also depends on the security of your device and operating system.
10. Your Rights
Depending on your jurisdiction, you may have the right to access, correct, delete, or port your personal data. Because most of your data is stored locally, you already have direct access to it and can export or delete it at any time through the Application.
For data we do process (license information, usage metrics, email submissions), you may exercise your rights by contacting us at legal@skwidink.com.
California Residents (CCPA)
If you are a California resident, you have the right to know what personal information we collect, request its deletion, and opt out of its sale. We do not sell personal information. For requests, contact us at the email above.
European Residents (GDPR)
If you are located in the European Economic Area, our legal basis for processing personal data is: performance of a contract (subscription services), legitimate interest (usage metering, security), and consent (email collection via website forms). You may withdraw consent at any time.
11. Children's Privacy
SkwidInk's services are designed for businesses and are not directed at individuals under the age of 16. We do not knowingly collect personal information from children. If you believe we have inadvertently collected data from a child, please contact us and we will promptly delete it.
12. Data Retention
Locally stored data persists on your device until you delete it. Even after subscription cancellation, the Application enters read-only mode and your local data remains accessible.
Data we process server-side (license keys, usage metrics) is retained for the duration of your subscription plus a reasonable period for legal and accounting purposes (typically 12 months after cancellation). Email addresses collected via website forms are retained until you request deletion.
13. Changes to This Policy
We may update this Privacy Policy from time to time. If we make material changes, we will notify subscribers via email or in-app notification at least thirty (30) days before the changes take effect. The effective date at the top of this page indicates when the policy was last revised.
Questions about this Privacy Policy may be directed to legal@skwidink.com.