Privacy Policy

Last updated: March 27, 2026

1. Overview

Uprika is a desktop application for App Store Optimization (ASO). We are committed to protecting your privacy. This policy explains what data we collect, how we use it, and your rights.

The short version: Your data stays on your machine. We don't collect personal information, track your behavior, or sell any data.

2. Data Stored Locally

All application data is stored on your device and never transmitted to our servers:

  • Scan results, listings, and projects — stored in a local SQLite database
  • AI provider API keys — stored in your OS secure keychain (macOS Keychain, Windows Credential Manager, Linux Secret Service)
  • Store credentials (Google Play, App Store) — stored in your OS secure keychain
  • Screenshots and templates — stored in the local database
  • Settings and preferences — stored in a local JSON file
  • AI token usage logs — stored locally for your reference

3. Data We Process Server-Side

We use Supabase-hosted edge functions for license management and trial tracking only:

  • Machine fingerprint — a SHA256 hash of your system ID, used to track trial credit usage (10 scans, 8 listings). This is a one-way hash — we cannot identify your device from it.
  • License key — stored server-side to validate your Pro license activation status.
  • Subscription status — whether your update plan is active, managed via LemonSqueezy.

We do not collect or process:

  • Your name, email, or any personal identifiers
  • Your app ideas, keywords, or listing content
  • Your AI API keys or store credentials
  • Your scan results or analytics
  • Your IP address (beyond what's standard in HTTPS requests)

4. Third-Party Services

Uprika connects to third-party services only when you configure them:

  • AI providers (Ollama, OpenAI, Google Gemini, Replicate, etc.) — your prompts and responses go directly between your device and the provider. We never see them.
  • App stores (Google Play, Apple App Store) — when you use keyword scanning or store publishing, your device connects directly to the stores.
  • LemonSqueezy — processes payments for Pro licenses. Their privacy policy applies to payment data.
  • Supabase — hosts our license validation edge functions. Only processes machine fingerprints and license keys.

5. Cookies and Analytics

The Uprika desktop app does not use cookies or analytics. The landing website (uprika.com) does not use tracking cookies or third-party analytics.

6. Data Retention

  • Local data — stored until you delete it. Use Settings > Data Backup > Export/Import to manage your data.
  • Trial usage records — stored on our server indefinitely (machine fingerprint + credit counts only).
  • License records — stored as long as your license is active.

7. Your Rights

You can:

  • Export all your local data at any time (Settings > Data Backup)
  • Delete all local data by removing the app data directory
  • Request deletion of your server-side records by emailing hello@uprika.com
  • Deactivate your license to remove it from our records

8. Security

  • All server communication uses HTTPS with Ed25519 signed responses
  • Sensitive data (API keys, credentials) is stored in OS-level secure keychain
  • License cache uses SHA256 tamper detection
  • Machine fingerprints are one-way hashes — we cannot reverse them

9. Children's Privacy

Uprika is not directed at children under 13. We do not knowingly collect data from children.

10. Changes to This Policy

We may update this policy from time to time. Changes will be posted on this page with an updated date. Continued use of Uprika after changes constitutes acceptance.

11. Contact

Questions about this policy? Email us at hello@uprika.com.