Legal

Privacy Policy

Last updated April 23, 2026

This policy explains what Klipt collects, why, where it lives, and how to ask for it to be deleted. Klipt is a macOS menu-bar screenshot tool maintained by Sidejar LLC ("we", "our"). Klipt runs locally on your Mac; data only leaves your machine when you explicitly upload a screenshot.

What stays on your Mac

  • Screenshots you capture. Every capture is saved to~/Library/Application Support/com.sidejar.screenshot/ until you delete it. Nothing leaves your Mac unless you click Upload.
  • App preferences. Things like your keyboard shortcuts, history settings, and "launch at login" preference live in the standard macOS preferences file for Klipt.
  • Your device token. A random per-install identifier Klipt uses to authenticate uploads. Stored in your macOS Keychain.

What gets uploaded when you share

When you upload a screenshot to get a klipt.sh link, we receive:

  • The PNG file you captured. Stored on our storage provider (Supabase, Inc., hosted in AWS's eu-north-1 region) with a random 8-character identifier. The file is served publicly at https://klipt.sh/<slug>.
  • Your device token, sent alongside the upload to identify your Klipt install. We don't save it server-side beyond the minimum we need to rate-limit abuse.
  • Your IP address — incidental to any internet request. Kept briefly in our server logs for abuse investigation and in a per-device row we use for rate limiting.

Who gets to see your uploaded screenshots

Anyone with the exact klipt.sh/<slug> URL can load the image. The slug is eight random base-62 characters (218 trillion combinations), so the link is unguessable, but it is a public URL — treat shared links the same way you'd treat any unlisted web page.

We do not sell, rent, or otherwise share your screenshot content with third parties. We do not scan uploaded screenshots for marketing analysis or AI training.

Analytics

The marketing site at klipt.sh and the viewer pages at klipt.sh/<slug> include Google Analytics 4 (property ID G-WH27X4YRNQ). GA4 collects anonymized pageview events: approximate geography, device type, referring URL, and click interactions with our CTAs. We do not link analytics data to uploaded screenshot content or to individual device tokens.

If you'd prefer not to be counted, block www.googletagmanager.com in your browser. The Mac app itself emits no analytics events.

Auto-updates

Klipt checks for new versions by polling https://klipt.sh/appcast.xml once a day. The poll includes your Klipt version and macOS version; nothing else. If you'd rather not auto-update, toggle it off in Settings → General.

Deleting your data

Local captures: delete them from Klipt's History view, or remove the files from the Application Support folder above. Both are permanent.

Uploaded screenshots: we don't yet have a self-serve delete UI. Email privacy@klipt.sh with the klipt.sh/<slug> URLs you want removed and we'll delete them within 7 days.

Device tokens: we drop tokens with no upload activity in the last 365 days. If you want yours revoked sooner, contact the email above.

Third-party processors

  • Vercel, Inc. hosts the klipt.sh website and Klipt's upload service. Standard server logs include IP and request metadata.
  • Supabase, Inc. hosts your uploaded screenshots and the device-token registry.
  • Google LLC provides GA4 analytics for the web only.
  • Apple Inc. distributes the notarized app binary via the Sparkle update flow.

Contact

Questions, deletion requests, or security reports: privacy@klipt.sh.

Changes to this policy

We'll post the updated version here with a new "Last updated" date and, if the change is material (e.g. a new data category we collect), note it in the Klipt update's release notes.