Privacy Policy

Deck runs as a local-first app. Clipboard data is stored on your Mac and is not uploaded to cloud services by default.

• Clipboard history is stored in a local SQLite database
• Images and files are stored in the local app sandbox
• Search indexes are generated and stored locally
• Settings are saved locally in UserDefaults

Deck protects sensitive entries with modern encryption:

• AES-GCM encryption for protected entries
• Encryption keys are stored in macOS Keychain
• On-demand protection for specific clipboard entries
• LAN sharing uses end-to-end encryption

Deck integrates with macOS biometric security:

• Optional Touch ID / Face ID unlock
• Sensitive content access requires re-authentication
• Biometric data is handled by macOS security modules, not by Deck

Deck skips sensitive content by default when possible:

• Recognizes password manager clipboard types
• Detects window titles containing sensitive keywords
• Supports manually marking apps as ignored
• Supports smart rules for automatic filtering

Network access is limited and feature-driven:

• LAN Sharing: P2P connections only within local network
• Link Previews: Fetches metadata for previews (optional and can be disabled)
• No telemetry, analytics, or crash report uploads
• No ad SDKs or third-party tracking

You can remove data anytime:

• Delete individual clipboard entries
• Clear all history
• Uninstalling removes local app data
• Export before deletion if you need backup

Deck is partially open source. You can:

• Audit published modules to verify privacy behavior
• Understand how data is processed and stored locally
• Submit security vulnerability reports
• Contribute improvements to open modules

Source code is hosted on GitHub under GPL-3.0 with Commons Clause license.