LocalhostonLocalhoston
Sign in

Privacy Policy

Last updated: March 9, 2026

Overview

Localhoston is a macOS desktop application developed by fromzeroagain OÜ (registry code 17447933, Estonia). The app runs entirely on your machine. This policy explains what data we collect when you use the app and our website. For any privacy-related inquiries, contact us at hello@localhoston.com.

Legal Basis for Processing

Under the EU General Data Protection Regulation (GDPR), we process your personal data on the following legal bases:

  • Account and payment data — performance of a contract (Art. 6(1)(b)), necessary to provide the service you signed up for
  • Payment records — legal obligation (Art. 6(1)(c)), required for tax and accounting compliance
  • Error monitoring — legitimate interest (Art. 6(1)(f)), to maintain service stability and fix bugs
  • Web analytics — legitimate interest (Art. 6(1)(f)), to understand usage patterns and improve the service (cookie-free analytics via DataFast)
  • Deploy and Share features — performance of a contract (Art. 6(1)(b)), activated only when you explicitly use these features

Account Data

When you create an account, we store your email address and the authentication provider you used (GitHub or Google). On the desktop app, authentication tokens are stored securely in your macOS Keychain and are never sent to our servers.

Payment Data

Payments are processed by Stripe. We do not store your credit card details. We store your Stripe customer ID, license type, and subscription status to manage your access to the app.

Error Monitoring

We use Sentry to monitor errors and crashes in both the website and the desktop app. This includes error stack traces, device and operating system information, and application logs. On the website, 10% of user sessions are recorded as replays to help us debug issues, and 100% of sessions where an error occurs are recorded. Crash reports from the desktop app include native minidump data.

Vercel Integration (Optional)

If you use the deploy feature, Localhoston creates a GitHub repository and pushes your project source code (excluding .env files), then deploys it to Vercel via their API. Your GitHub and Vercel access tokens are stored in your macOS Keychain and are never sent to our servers.

Share Feature (Optional)

The Share feature creates a Cloudflare tunnel to make your local development server accessible via a public URL. Network traffic is proxied through Cloudflare. When you stop sharing, the tunnel and DNS record are deleted.

Third-Party Services

We use the following third-party services to operate Localhoston:

  • Supabase — authentication and database (US)
  • Stripe — payment processing (US)
  • Sentry — error monitoring (US)
  • Cloudflare — networking and file storage (US)
  • GitHub — deployment (US)
  • Vercel — deployment (US)
  • DataFast — web analytics (EU)

International Data Transfers

Most of our third-party service providers are based in the United States. When your data is transferred outside the EU/EEA, it is protected by appropriate safeguards, including EU Standard Contractual Clauses (SCCs) adopted by the European Commission, or equivalent mechanisms provided by each service provider in accordance with GDPR Article 46.

Data Retention

We retain different types of data for different periods:

  • Account data — retained while your account is active. Upon deletion, all associated data is permanently removed immediately.
  • Payment records — managed by Stripe and retained as required by law (up to 7 years for tax and accounting purposes).
  • Error reports — retained for 90 days.
  • Session replays — retained for 30 days.
  • Analytics data — managed by DataFast, no personal data is collected (cookie-free).

Your Rights

Under the GDPR, you have the following rights regarding your personal data:

  • Access (Art. 15) — request a copy of your personal data
  • Rectification (Art. 16) — request correction of inaccurate data
  • Erasure (Art. 17) — request deletion of your data (also available via account settings)
  • Restriction (Art. 18) — request that we limit how we process your data
  • Data portability (Art. 20) — receive your data in a structured, machine-readable format
  • Object (Art. 21) — object to processing based on legitimate interest

To exercise any of these rights, contact us at hello@localhoston.com. You also have the right to lodge a complaint with the Estonian Data Protection Inspectorate (Andmekaitse Inspektsioon) at www.aki.ee, or with the supervisory authority in your EU member state of residence.

Contact

If you have questions about this policy, please reach out at hello@localhoston.com.