Privacy Policy

Last updated: February 14, 2026

1. Overview

vibe-remote is a peer-to-peer (P2P) remote control tool that lets you manage your computer from your iPhone. We are committed to protecting your privacy and collecting as little data as possible.

2. Data We Collect

We collect only the minimum data necessary to operate the service:

• Connector identifier — used for device pairing and connection routing
• Hashed password — stored using bcrypt, never in plain text
• IP address — temporarily used for rate limiting and abuse prevention

3. Data We Do NOT Collect

• We do not collect personal information (name, email, phone number)
• We do not collect location data
• We do not collect device identifiers for tracking purposes
• We do not use analytics, advertising, or tracking SDKs
• We do not sell, share, or transfer any user data to third parties

4. How Your Data Flows

vibe-remote uses a peer-to-peer architecture. Your commands and responses travel directly between your iPhone and your computer whenever possible. The cloud relay server only facilitates the initial connection handshake — it does not store, inspect, or log the content of your sessions.

• Chat messages, file contents, and command outputs are transmitted directly between your devices
• The relay server only sees connection metadata (which connector is connecting), not session content
• Session data is stored locally on your devices, not on our servers

5. Local Data Storage

On your iPhone, vibe-remote stores:

• Authentication tokens — in the iOS Keychain (encrypted, device-only)
• App preferences — in UserDefaults
• Session history — locally on your device

On your computer, the vibe-remote agent stores:

• Connector credentials — in a local data directory
• Session logs — locally on your machine

6. Subscriptions

Subscriptions are managed entirely by Apple through the App Store. We do not process or store any payment information. Subscription status is verified locally on your device via StoreKit.

7. Data Retention and Deletion

Connector data on the relay server is automatically cleaned up after extended inactivity. You can delete your local data at any time by uninstalling the app or removing the agent from your computer. There is no server-side data to request deletion of beyond the connector identifier.

8. Security

All network communication uses HTTPS/TLS encryption. Authentication credentials are hashed with bcrypt. On iOS, sensitive data is stored in the Keychain with device-only access protection.

9. Children

vibe-remote is not directed at children under 13. We do not knowingly collect data from children.

10. Changes to This Policy

We may update this policy from time to time. Changes will be posted on this page with an updated date. Continued use of the service after changes constitutes acceptance.

11. Contact

If you have questions about this privacy policy, please open an issue at:

github.com/ymzuiku/vibe-remote/issues