Privacy Policy

Last updated: 11 February 2026

Pally Technologies, Inc.

Pally is built with one core principle: your personal messages and relationship data never leave your Mac.

We design our systems so your communications, insights, and on-device AI remain entirely under your control.

This Privacy Policy explains what we collect, how we use it, and the rights you have under the EU General Data Protection Regulation (“GDPR”), UK GDPR, and the California Consumer Privacy Act as amended by the CPRA (“CCPA/CPRA”).

If you have any questions, contact us at privacy@pally.com.

1. What Pally Is

Pally is an on-device macOS application that unifies your messages and enriches your contacts.

The vast majority of data is processed locally. Your messages, relationship analytics, notes, tags, circles, communication history, and all on-device AI operations stay on your Mac and are never transmitted to us.

The app does connect to a minimal backend for:

Authentication (via WorkOS)
Automatic contact enrichment
Product analytics (privacy-hardened; via PostHog)
Billing and subscriptions (via Stripe)
Transactional emails (via Loops)
Infrastructure hosting (via AWS)

We do not collect or process message content on our servers.

2. Categories of Data We Process

Below is a precise list of what remains local and what may be transmitted.

2.1 Data That Never Leaves Your Device

These categories are processed only on your Mac and never sent to Pally, AWS, WorkOS, Stripe, PostHog, Loops, or any third party:

Message content (iMessage, WhatsApp, future integrations)
Message metadata (timestamps, participants, attachments)
Contact information stored locally beyond enrichment fields
Relationship graphs and analytics
Notes, tags, circles, reminders
Communication frequency, streaks, summaries
Local machine-learning embeddings
Any on-device LLM processing
Drafts, attachments, media, or files

This is “Local Data.” Pally does not access, upload, store, inspect, analyze, share, or sell Local Data.

2.2 Data That May Leave Your Device

(a) Contact Enrichment Data (Automatic)

To provide additional context and publicly available information about your contacts, Pally transmits a limited set of fields:

Contact name
Email address
Phone number
Company or job title (if stored locally)

These fields are used solely for returning publicly available or business-profile information.

We do not transmit any message content, notes, relationship insights, communication metrics, or other personal data as part of enrichment.

Enrichment responses may be cached for performance.

We do not sell or share enriched data beyond service providers.

(b) Authentication Data (WorkOS)

When you create an account or sign in, we may process:

Email address
Login timestamps
Authentication tokens
Basic account identifiers

WorkOS does not receive messages, contacts beyond the email you sign in with, or any Local Data.

(c) Billing and Payment Data (Stripe)

When you subscribe or manage your plan, Stripe may process:

Email address
Payment method information (collected directly by Stripe)
Billing postal code or tax information (if required)
Subscription plan details
Purchase and renewal history

Stripe does not receive messages or contacts.

(d) Analytics Data (PostHog)

We use PostHog to understand high-level usage of the application, with strict privacy settings:

Pseudonymous usage events
App version
macOS version
Device type (Mac model)
General performance metrics
Feature interactions (e.g., “opened settings”)

We explicitly prevent PostHog from receiving:

Message content
Contact content
Names or emails from your address book
Keystrokes
Any Local Data

IP masking is enabled, and random identifiers are used.

Analytics can be disabled at any time.

(e) Email Communication Data (Loops)

Loops sends transactional and service emails, such as onboarding, billing notices, and updates.

We may provide Loops with:

Your email address
Your name (if provided)
Subscription status
Time-based or usage-based triggers (e.g., “your trial is ending”)

Loops does not receive any message content, contact book data, or Local Data.

You may unsubscribe from non-essential emails at any time.

(f) Customer Support

When you contact us, we may receive:

Your email address
Any information you choose to include in your message
Diagnostic logs only if you explicitly choose to send them

We never collect diagnostic logs automatically.

(g) Infrastructure Hosting (AWS)

AWS hosts our backend.

AWS processes:

Authentication requests
Enrichment requests
Minimal account metadata
Application logs (non-content)

AWS does not store or process message content.

All data is encrypted in transit and at rest.

3. How We Use Your Data (Purposes & Legal Bases)

Under GDPR, we rely on:

(a) Contract (Article 6(1)(b))

To provide the Pally application and its features, including:

Authentication
Automatic contact enrichment
Subscription and account management

(b) Legitimate Interests (Article 6(1)(f))

To:

Improve app performance
Monitor infrastructure stability
Prevent fraud or misuse
Understand general app usage patterns

We conduct legitimate interest balancing tests where required.

(c) Consent (Article 6(1)(a))

For:

Optional analytics
Optional crash logs
Optional additional communication preferences

(d) Legal Obligations (Article 6(1)(c))

To comply with tax, accounting, regulatory, and consumer-protection laws.

4. Your Rights

Depending on your location, you have the following rights:

4.1 GDPR (EU/UK)

Right of access (Art. 15)
Right to rectification (Art. 16)
Right to erasure (“right to be forgotten”, Art. 17)
Right to restriction (Art. 18)
Right to portability (Art. 20)
Right to object to processing (Art. 21)
Right to withdraw consent at any time
Right not to be subject to automated decision-making (Art. 22)

4.2 CCPA/CPRA (California)

California residents have:

Right to know what categories of personal information we collect
Right to access specific pieces of information
Right to deletion
Right to correct inaccurate information
Right to opt out of sale or sharing (we do not sell or share data for advertising)
Right to limit use of sensitive personal information
Right to non-discrimination

Requests can be made any time at privacy@pally.com.

We may take reasonable steps to verify your identity.

5. Data Retention

We retain data only as long as necessary:

Local Data remains on your device until you delete it. We never store it.
Account and authentication data: kept while you maintain an account.
Contact enrichment data: stored only transiently or briefly cached for performance.
Payment and billing data: retained as required by tax and accounting rules.
Analytics data: retained per PostHog’s configuration (typically 12–36 months).
Support communications: retained only as long as needed to resolve your issue.

6. International Data Transfers

If you are located in the EU or UK, your data may be transferred to the United States.

We rely on legally recognized safeguards:

Standard Contractual Clauses (SCCs)
Data Processing Agreements (DPAs) with all service providers
Technical, contractual, and organizational safeguards

7. Security Measures

We implement industry best practices:

On-device data isolation
macOS secure storage features
TLS encryption for all network communication
AES-256 encryption for backend storage
Strict access controls and logging
Minimization of personal data in all systems
Regular security reviews and audits

However, no system is entirely secure.

We design Pally to minimize risk by keeping the most sensitive data off the cloud entirely.

8. Service Providers

We use carefully selected service providers bound by strict data-processing agreements:

`Provider`	`Purpose`	`Key Data Processed`	`Region`
`WorkOS`	Authentication	Email, login metadata	US
`Stripe`	Billing	Email, payment data, subscription info	Global / US
`Loops`	Transactional emails	Email, name, usage triggers	US
`PostHog`	Analytics	Pseudonymous usage events	EU/US (region selectable)
`AWS`	Hosting	Enrichment + account metadata	US/EU (as configured)
`Apple`	macOS platform services	None from us beyond OS interactions	Local