Privacy Policy

Tirith is a local-first security tool. We collect the minimum data necessary to operate the paid service and process payments.

2a. Payment Information (via Paddle)

When you purchase a license, Paddle (our merchant of record) collects:

• Name and email address
• Payment method details (credit card, PayPal, etc.)
• Billing address
• Transaction records

We do not store your payment details. Paddle handles all payment processing as the merchant of record.

2b. License Information

We store:

• Email address associated with your purchase
• License tier and seat count
• License key metadata (key ID, issue date, expiry date)
• Organization name (Team/Enterprise plans)

2c. Remote Audit Logs (Team plan, opt-in)

If you enable remote audit log collection (Team plan feature), we receive:

• Redacted command summaries (DLP-redacted, truncated to 80 characters)
• Rule IDs that triggered
• Action taken (allow/warn/block)
• Timestamps
• Session identifiers (random UUIDs, not tied to user identity)

We never receive raw commands, file contents, or unredacted data. All data is redacted locally before transmission.

2d. Remote Policy Fetch (Team plan, opt-in)

If you use remote policy distribution, our server logs:

• IP address of the requesting machine (standard server logs, retained 30 days)
• Policy fetch timestamps
• API key used (hashed, not stored in plaintext)

2e. Website Analytics

Our website may use privacy-respecting analytics. We do not use third-party tracking cookies.

• Commands you run on your machine (unless you opt into remote audit with Team plan)
• File contents, source code, or repository data
• Browsing history or keystroke data
• Device fingerprints or advertising identifiers
• Data from the open-source Community tier (it never contacts our servers)

• Payment processing: Fulfill purchases and manage subscriptions (via Paddle)
• License delivery: Issue and manage license keys
• Remote features: Provide remote policy and audit services (Team plan, opt-in)
• Support: Respond to your support requests
• Legal compliance: Meet tax and regulatory obligations

We share data only with:

• Paddle: Payment processing (as merchant of record)
• Infrastructure providers: Hosting (server logs only, under DPA)
• Legal obligations: When required by law

We do not sell your data. We do not share data with advertisers.

You have the right to:

• Access: Request a copy of your personal data
• Correction: Request correction of inaccurate data
• Deletion: Request deletion of your data (subject to legal retention requirements)
• Portability: Receive your data in a machine-readable format
• Objection: Object to processing based on legitimate interests

To exercise these rights, contact: privacy@tirith.sh

We will respond within 30 days.

• License keys are signed with Ed25519 cryptographic signatures
• All server communication uses TLS 1.2+
• Audit data is DLP-redacted before transmission
• License key files are stored with restricted permissions (mode 0600)
• We follow security best practices for infrastructure and access control

If you are outside the United States, your data may be transferred to and processed in the United States where our servers are located.

Our Service is not directed to children under 16. We do not knowingly collect data from children.

We may update this policy from time to time. Material changes will be communicated via email. The “Last updated” date at the top reflects the most recent revision.

For privacy questions or to exercise your rights:

• Email: privacy@tirith.sh
• General inquiries: support@tirith.sh