Privacy Policy

Skyline is a secure vault for letting agent tools request access to your saved passwords, API keys, and related account data. This policy explains how Skyline Computer handles data for the Skyline app, hosted service, website, and related tools.

Skyline is designed so normal secret values are encrypted before they are stored in Skyline's cloud service. The cloud service is not intended to store normal password or API-token plaintext, or the private key material needed to decrypt those normal secrets.

Vault data: encrypted secret packages, item type, account or service labels, usernames, service names, login URLs, and other metadata needed to identify the right item.

Setup and device data: vault identifiers, device identifiers, requester or computer names, setup sessions, import sessions, approval requests, decisions, and audit history.

Account and service data: entitlement status, subscription or billing status from Apple where applicable, support messages, waitlist signups, and email addresses if you give them to us.

Security and abuse data: logs, rate-limit records, hashed IP or install identifiers, diagnostic events, and similar data used to protect the service.

Beta and crash data: if you use TestFlight or send feedback, Apple may provide us crash reports, screenshots, comments, app version, device, and operating-system information.

Passwords, API tokens, and similar secret values are treated differently from metadata. Skyline's hosted service should receive encrypted secret packages, not normal secret plaintext.

Metadata such as service names, login URLs, usernames, labels, request summaries, and approval history can still be sensitive. We use it only to operate, secure, debug, and support Skyline.

We use data to create and run your vault, route approval requests, sync encrypted packages, show audit history, import selected records, manage devices and requesters, prevent abuse, provide support, and manage hosted access or billing.

When automatic policy review is enabled, Skyline may send non-secret request context, safe metadata, instructions, and recent request history to a model provider such as OpenAI so the policy system can help allow or deny routine requests. We do not intentionally send raw password or API-token values for this review.

We do not sell your personal data.

We do not use Skyline data for ads.

We do not track you across other companies' apps or websites for advertising.

We do not intentionally put normal secret plaintext in analytics, logs, crash reports, support exports, or AI policy-review prompts.

We share data with service providers only as needed to run Skyline. These may include Apple for TestFlight, App Store, StoreKit, and push notifications; hosting, database, DNS, and security providers; model providers for automatic policy review; and support or email tools if you contact us.

We require providers that handle user data for Skyline to protect it consistently with this policy and to use it only for the service they provide to us.

Skyline uses encryption, device-bound keys, local authentication, access controls, audit history, and log-redaction practices to protect user data.

No security system can make a compromised approved device safe. If a secret is revealed, copied, filled into a website, or delivered to an approved local helper, plaintext may exist temporarily on that device or in that destination.

We keep data while needed to provide Skyline, protect the service, comply with law, resolve disputes, prevent abuse, and maintain business records.

If you delete your cloud vault from a paired Skyline app, Skyline is designed to remove hosted vault access and hosted vault data associated with that vault. Some limited records may remain for a time in backups, logs, security records, billing records, or legal records.

You can choose what to import, which requests to approve, whether to allow notifications, and whether to send TestFlight feedback.

You can request help, correction, export, or deletion by contacting us. Some data may be retained where needed for security, legal, billing, backup, or abuse-prevention reasons.

Skyline is not intended for children, and we do not knowingly collect personal data from children.

We may update this policy as Skyline changes. If changes are material, we will update the date below and provide notice where appropriate.