Privacy Policy
Last updated: January 2026
TL;DR: LLM Secrets collects no data. Your secrets never leave your device. We can't see them, and we don't want to.
1. Data Collection
LLM Secrets is designed with privacy as a core principle. We collect:
- No personal information - We don't ask for your name, email, or any identifiers
- No telemetry - We don't track how you use the software
- No analytics - We don't monitor your behavior
- No secrets - Your encrypted data never leaves your device
2. Local-Only Architecture
LLM Secrets operates entirely on your local machine:
- Encryption and decryption happen locally using Windows Hello and DPAPI
- Your master key is stored in a local KeePass database or protected by Windows DPAPI
- Encrypted .env files remain on your filesystem
- No cloud sync, no remote storage, no external servers
3. Website Analytics
The llmsecrets.com website may use basic analytics (page views) to understand traffic patterns. This data:
- Does not include personally identifiable information
- Is not linked to your use of the LLM Secrets software
- Is used only to improve the website
4. License Validation
If you purchase a Pro license for the desktop app:
- License keys are validated offline using cryptographic signatures
- No phone-home or online activation required
- Your license key is stored locally on your device
5. Third-Party Services
LLM Secrets may interact with third-party services based on your .env configuration (e.g., API endpoints you've defined). We have no visibility into these interactions - they occur directly between your machine and those services.
6. Open Source Transparency
LLM Secrets core encryption is open source under Apache 2.0. You can audit the source code to verify our privacy claims. We believe transparency is the foundation of trust.
7. Contact
If you have questions about this privacy policy, please contact us at privacy@llmsecrets.com.