Privacy Policy

1. Who We Are

Noeth ("we", "us", "our") operates the website at noeth.dev and the Noeth desktop application. This policy explains what personal data we collect, why we collect it, and how it is handled. If you have questions, contact us at info@noeth.dev.

2. The Short Version

The desktop app collects nothing on our end — your API keys and screen content never leave your device or go through our servers. The website collects your email address only if you subscribe to our newsletter or make a purchase. We use anonymous analytics to understand how the site is used. We do not sell your data.

3. Data We Collect on the Website

Analytics

We use PostHog to collect anonymous usage data — page views, navigation patterns, session duration, and browser/device type. This data is not linked to any identity and is used solely to understand how visitors use the site so we can improve it. See our Cookie Policy for details on the cookies PostHog sets.

Newsletter

If you subscribe to our newsletter we collect your email address and the timestamp of your subscription. This is stored in our database (Supabase) and used only to send you product updates. We do not share newsletter emails with third parties. You can unsubscribe at any time by contacting us at info@noeth.dev.

Purchases & Licence Issuance

When you purchase Noeth, payment is processed entirely by Stripe. We do not see or store your card details. Stripe shares your email address with us after a successful payment so we can issue your licence key.

We store the following in our database in connection with your purchase:

• Your email address
• Your Stripe checkout session ID (a reference — not payment data)
• Your licence key
• The product version purchased
• Number of device activations used and the allowed limit
• Whether your licence is currently valid

Your licence key and a copy of this information are also sent to you by email via Resend, our transactional email provider.

4. Data the Desktop App Does Not Collect

The Noeth desktop application processes everything locally on your device. Specifically:

• API keys — stored locally on your device only, never transmitted to our servers
• Screen content — captured locally and sent directly from your device to your chosen AI provider (Anthropic, OpenAI, Google, or Ollama) via your own API key; it does not pass through Noeth's servers
• AI responses — received directly from the AI provider and displayed in the app; not logged or stored by us
• Audio — Noeth does not record audio

We have no visibility into what questions you ask, what code you work on, or what interview content you process through the app.

5. Third-Party Services

We use the following third-party services, each with their own privacy policies:

• PostHog — anonymous website analytics. Privacy Policy
• Stripe — payment processing. Privacy Policy
• Supabase — database hosting for newsletter subscribers and licence records. Privacy Policy
• Resend — transactional email delivery (licence key emails). Privacy Policy

We do not sell, rent, or share your personal data with any other third parties for marketing or advertising purposes.

6. How We Use Your Data

• To deliver and activate your licence after purchase
• To send you transactional emails (licence key delivery)
• To send product updates if you subscribed to the newsletter
• To understand how the website is used so we can improve it (analytics)
• To prevent fraud and validate licence usage

We do not use your data for advertising, profiling, or any purpose beyond what is listed above.

7. Data Retention

Newsletter emails are retained until you unsubscribe or request deletion.

Licence records (email, licence key, session ID, usage data) are retained for as long as your licence is active and for a reasonable period thereafter for fraud prevention and support purposes.

Analytics data is retained according to PostHog's standard retention policy and is anonymous.

8. Your Rights

Depending on your location you may have rights regarding your personal data, including the right to access, correct, or request deletion of data we hold about you. To exercise any of these rights, contact us at info@noeth.dev and we will respond promptly.

9. Security

We take reasonable technical and organisational measures to protect your data. Our database is hosted on Supabase with access controls in place. Payment data is handled exclusively by Stripe and never passes through our systems. That said, no system is perfectly secure and we cannot guarantee absolute security.

10. Children

Noeth is not directed at children under 16. We do not knowingly collect personal data from anyone under 16. If you believe a child has provided us with personal data, contact us and we will delete it.

11. Changes to This Policy

We may update this policy from time to time. When we do we will revise the date at the top. Significant changes will be communicated where reasonably possible.

12. Contact

For any privacy-related questions or requests, reach us at info@noeth.dev.