Privacy Policy

Scape, operated by Scape Labs, Inc., a Delaware corporation (“we”, “us”, “our”), is a native macOS app that runs on your machine. This policy explains what stays on your device, what leaves it and where it goes, and the third parties involved. Our default is local-first: the features that send data off your device are limited and described below.

Your code, terminal content, and AI coding sessions live on your Mac. Scape does not collect, transmit, or store your code, terminal output, or session content on our servers. Application data (notes, projects, tables, playbooks, preferences) is stored locally on your device.

To keep your notes, projects, and tables available across your Macs, Scape syncs them through your own iCloud account using Apple’s CloudKit (container iCloud.com.fliptables.scape). This data is stored in your iCloud, governed by Apple’s privacy policy — we never receive it.

iCloud sync is on by default and can be turned off in Settings. Secrets are never synced — playbook secrets and chat-room keys are stored in the macOS Keychain marked device-only, and Scape never enables iCloud Keychain sync for them. Playbooks themselves are not synced via iCloud.

Scape runs the AI coding agent you have installed (such as Anthropic’s Claude Code or OpenAI’s Codex) under your own account and subscription. Your prompts and code are sent to that provider by their tool, using your credentials — exactly as they would be if you ran the agent in a plain terminal. Scape does not proxy, intercept, or store this traffic.

Remote Control (driving a session from claude.ai/code or the Claude mobile app) is off by default and opt-in per project. When enabled, the connection is between your installed Claude Code and Anthropic; Scape only passes the flag that turns it on.

Encrypted Chat Rooms and Agent Rendezvous send messages through a relay server we operate. Messages are end-to-end encrypted on your device (ChaCha20-Poly1305, with keys derived from a shared room password that never leaves your device) — the relay only ever forwards ciphertext and can never read your messages. Message content is not stored and there is no message history.

Like any networked service, the relay necessarily sees connection metadata — your IP address, an opaque room identifier, and traffic timing — and records basic connection-lifecycle events (such as disconnects and errors) for operation. It does not log message content. You can point Scape at your own self-hosted relay if you prefer.

Playbooks can run HTTP requests and shell commands that you author. When a playbook step contacts an external endpoint, any data or secrets you reference in that step are sent to the destination you chose — Scape does not control or inspect where your own steps send data.

Secrets are stored in the macOS Keychain on your device, are never synced to iCloud, and are never transmitted by Scape itself. They leave your machine only when a step you wrote sends them to a recipient you specified.

License validation is handled by Keygen, a third-party licensing service. To validate and activate your license, Scape sends your license key, a hardware identifier derived from your device, and your Mac’s name to Keygen over an encrypted connection. No code, terminal content, or session data is included.

Payments are processed by Stripe. When you subscribe or purchase, your payment information is handled directly by Stripe under their privacy policy. We do not store credit card numbers or full payment details. Stripe may collect device and behavioral data for fraud prevention.

This website does not use analytics, advertising, or tracking services, and sets no tracking cookies.

• Your code, terminal content, or session transcripts
• The content of your encrypted chat messages
• Usage telemetry from the desktop application
• Your secrets or Keychain contents
• Personal files or browsing history
• Location data

• Apple iCloud (CloudKit) — optional sync of your notes, projects, and tables through your own iCloud account
• Anthropic / your AI agent provider — receives your prompts and code via your own Claude Code (or Codex) subscription
• Scape chat relay — forwards end-to-end encrypted chat and rendezvous traffic (ciphertext only)
• Keygen — license validation
• Stripe — payment processing

We may update this Privacy Policy from time to time. Material changes will be posted on this page with an updated revision date.

If you have questions about this Privacy Policy, please contact us at privacy@scape.work.