Offsend
CLIGitHub ActionDesktopBrowser ExtensionCheckRadarGitHub
Legal

Privacy Policy

Last updated: June 23, 2026

Offsend is a macOS utility, a command-line tool (CLI), and a Chrome browser extension that help you avoid accidentally sending sensitive data to third-party AI services and other apps. This policy explains what information we process, what stays on your device, and how using Offsend affects your privacy.

1. Summary

The Offsend Mac app, the Offsend command-line tool (CLI), and the Offsend Chrome extension are designed to help you find and handle sensitive information locally—on your Mac, in your terminal, or inside your browser—before it reaches third-party AI tools, chat apps, and similar services. Detection, scanning, and masking run on your device; we do not operate a service that reads, stores, or analyzes your content for our own purposes. Network activity is limited to things like checking for updates, completing a purchase, and (for the Mac app and Chrome extension) sending anonymous usage analytics and diagnostic telemetry—not to inspecting what you copy, paste, type, scan, or commit. The CLI does not send usage analytics or telemetry at all (see Section 5). Where analytics and telemetry do run, they never include your clipboard, page, file, or scanned content.

This website and its browser demo follow the same principle: the demo runs entirely in your browser and does not send your input to our servers.

2. Who this policy applies to

This policy covers:

  • the Offsend macOS application;
  • the Offsend command-line tool (CLI), including its git hooks and CI usage;
  • the Offsend Chrome browser extension;
  • this website (offsend.io and related pages);
  • checkout and post-purchase flows that may redirect you back to the app or extension.

When you paste masked text into third-party apps—ChatGPT, Claude, Slack, email clients, and similar tools—or send content to AI tools that read your files, those services handle your data under their own policies. Offsend does not control how they store, train on, or share content you submit to them.

3. Information we do not collect

Offsend is built so that, under normal use:

  • we do not receive your clipboard contents, scanned files, source code, git diffs, prompts, documents, or pasted text;
  • we do not build profiles of what you mask, copy, paste, scan, or commit;
  • we do not sell personal information.

Placeholder-to-original mappings created during Safe Paste are stored locally—on your Mac (encrypted) when you use the app, or in your browser's local extension storage when you use the Chrome extension—and are subject to retention limits you can configure. We cannot access those mappings remotely.

4. Information processed on your device

When you use Offsend, it may temporarily process, on your Mac, in your terminal, or in your browser:

  • text on your clipboard when you trigger Safe Paste or related features;
  • text you type or paste into input fields on a web page (Chrome extension), or files in folders you choose to include in directory scans (Mac app);
  • files, folders, and staged git changes you choose to scan, and the project paths and ignore rules read during a scan (CLI);
  • detection results and placeholder labels generated by local rules;
  • short-lived mapping data if you enable restore functionality;
  • preferences, custom regex rules, config files, and permission state.

All of the above stays on your device unless you explicitly copy it elsewhere or a feature you enable causes outbound network traffic (for example, opening a link in your browser).

Command-line tool (CLI)

The Offsend CLI runs entirely on your Mac and in your terminal, git hooks, and CI jobs. It reads the files, folders, staged git changes, ignore rules, and .offsend.ymlconfiguration you point it at, performs detection locally, and writes results to your terminal or to files you specify (for example, generated AI ignore files or pre-commit hooks). It does not upload your file contents, source code, git diffs, or scan results to us or to any third party, and it does not send usage analytics or telemetry. The only network activity it may perform is an optional version check or download through your package manager (for example, Homebrew), which is governed by that provider's policy and does not include content you scan.

Chrome extension permissions

The Chrome extension requests only the permissions it needs to work, and uses them solely on your device:

  • clipboard access—to read text you choose to Safe Paste and to write masked text back;
  • access to the active tab / page content (scripting and host access)—to detect sensitive text in fields you interact with and replace it with placeholders;
  • local storage—to keep your preferences, custom rules, and short-lived mappings in the browser.

The extension does not read pages in the background, does not track your browsing history, and does not transmit page or clipboard content to us or to third parties. It may send anonymous usage analytics and diagnostic telemetry that does not include that content—see "Analytics and telemetry" in Section 5.

5. Information we may collect

Website and demo

Like most websites, our hosting provider may automatically log standard technical data—such as IP address, browser type, request time, and pages viewed—for security and reliability. We do not use the browser demo to collect the sample text you type or paste there.

App, CLI, and extension updates and distribution

If you download Offsend from GitHub, the Chrome Web Store, a package manager such as Homebrew, or another release channel, that provider may collect download, install, and update metadata according to its own policy (for example, Google's policies for the Chrome Web Store, or Homebrew's analytics for the CLI). Optional update checks, where enabled, may contact a release endpoint to compare version numbers; those requests do not include content you process in the app, CLI, or extension.

Payments

If you purchase a paid plan, payment processing is handled by Freemius, our Merchant of Record. We may receive your email address, purchase status, and billing-related identifiers needed to fulfill the transaction. We do not receive your full payment card number. Payment data is handled under the processor's terms and privacy policy.

Analytics and telemetry

The Mac app and the Chrome extension may send anonymous usage analytics and diagnostic telemetry to help us understand which features are used and to find and fix bugs. This may include events such as feature usage and counts, error and crash diagnostics, performance metrics, app/extension version, and coarse environment details (such as operating system or browser type).

We use TelemetryDeck as our analytics provider, acting as a data processor on our behalf. TelemetryDeck is privacy-focused: it does not use cookies, does not store IP addresses, and derives anonymous identifiers using a one-way salted hash so signals cannot be traced back to you. Its data is processed on servers in the EU. See the TelemetryDeck privacy policy for details.

This telemetry is designed to exclude your content: it does not include your clipboard text, page or input-field text, scanned files, source code, git diffs, detected values, or the placeholder-to-original mappings. You can turn analytics off at any time in the app or extension settings, and we honor that choice on the device where you set it.

The command-line tool (CLI) does not send usage analytics or diagnostic telemetry. It runs locally in your terminal, git hooks, and CI without reporting feature usage or events to us or to TelemetryDeck.

Support and contact

If you email us or open a support request, we receive whatever information you choose to include in that message.

6. How we use information

We use the limited information described above to:

  • provide, maintain, and improve Offsend;
  • understand feature usage and diagnose errors through anonymous analytics and telemetry;
  • deliver purchases and license status where applicable;
  • respond to support requests;
  • protect the service against abuse, fraud, and security incidents;
  • comply with legal obligations.

We do not use content you process in the app or extension for advertising or model training.

Chrome Web Store Limited Use

Offsend's use of information received from Google APIs and through the Chrome extension adheres to the Chrome Web Store User Data Policy, including its Limited Use requirements. The extension processes your content locally to provide its masking features and does not send that content to us. Any analytics or telemetry we collect is anonymous, excludes your content, and is used only to operate and improve Offsend; we do not sell your data, transfer it to third parties except to service providers acting on our behalf to provide or improve the feature in line with the policy, or use it for advertising or to train AI/ML models.

7. Legal bases (EEA/UK users)

Where applicable law requires a legal basis, we rely on: performance of a contract (providing the app or paid features you request); legitimate interests (operating and securing the website, app, and extension, and improving them through anonymous analytics); and consent where required (for example, non-essential analytics, cookies, or marketing).

8. Retention

Local mapping and other app-related data on your device is retained only according to your settings and is deleted when you clear it, when it expires, or when you uninstall the app, remove the extension, or uninstall the CLI and delete any config or hooks it created. Server-side records tied to payments or support are kept only as long as needed for billing, accounting, dispute resolution, and legal compliance.

9. Your choices and rights

Depending on where you live, you may have rights to access, correct, delete, or restrict certain personal information we hold about you (typically account, billing, or support data—not content you process in the app, which we do not possess).

You can limit what Offsend can access by revoking macOS permissions, quitting the app, or uninstalling it. For the Chrome extension, you can manage or revoke its site and permission access in Chrome's extension settings, disable it, or remove it—removing the extension also clears its local storage. For the CLI, you control exactly which files, folders, and changes it scans, and you can uninstall it through your package manager and remove any .offsend.yml config or git hooks it created; the CLI sends no analytics or telemetry to turn off. You can turn off analytics and telemetry, and adjust mapping retention and other network-related options, in the app or extension settings.

To exercise privacy rights or ask questions, contact us using the details in Section 14.

10. Security

We take reasonable measures to protect information we control. No method of transmission or storage is completely secure. Because sensitive processing happens on your Mac, you are responsible for keeping your device patched, using disk encryption where appropriate, and controlling who has physical access to your computer.

11. Children

Offsend is not directed at children under 13 (or the minimum age required in your jurisdiction). We do not knowingly collect personal information from children.

12. International transfers

If you contact us or use payment or hosting providers located outside your country, your information may be processed in jurisdictions with different data protection laws. Where required, we use appropriate safeguards for such transfers.

13. Changes to this policy

We may update this policy from time to time. When we do, we will revise the "Last updated" date at the top of this page. Material changes may also be noted in release notes or on the website. Continued use of Offsend after an update means you accept the revised policy.

14. Contact

Questions about this policy or our privacy practices: open an issue on GitHub or reach out through the contact method listed on our website.

15. Disclaimer and limitation of liability

Offsend is provided "as is" and "as available." Masking and detection use automated rules and heuristics. They cannot guarantee that every sensitive item will be found, correctly labeled, or safely replaced, or that no sensitive data will reach a destination app, cloud service, or third party.

You are solely responsible for reviewing masked output before sending it anywhere, verifying that placeholders meet your organization's policies, and deciding whether a paste is appropriate. Do not rely on Offsend as your only control for regulated, confidential, or high-risk data.

To the fullest extent permitted by law, Offsend and its contributors disclaim all warranties, express or implied, including merchantability, fitness for a particular purpose, and non-infringement. We are not liable for any indirect, incidental, special, consequential, or punitive damages, or for loss of profits, data, goodwill, or business opportunity arising from your use of—or inability to use—the app, CLI, extension, or website, even if we have been advised of the possibility of such damages.

Some jurisdictions do not allow certain disclaimers or limits on liability; in those cases, our liability is limited to the maximum extent allowed by applicable law. Where liability cannot be excluded, our total liability for any claim relating to the service will not exceed the greater of (a) the amount you paid us for Offsend in the twelve months before the claim, or (b) USD $50.

Back to home
© 2026 Offsend. Built with ❤️ by Lab13.
CheckRadarPrivacy policyTerms and ConditionsRefund PolicyContactGitHub