Privacy Policy

We don't collect
your data.
Full stop.

At PencilCard, we don't have a privacy policy because we have to. We have one because we believe it's the only honest way to build software.

The Core Promise

We do not collect, store, or transmit your personal data. All core PencilCard features run locally on your device. If you enable optional services (e.g., encrypted backup, account login, analytics, or subscription handling via Firebase/Stripe), those services will store data only in encrypted local storage or transmit minimal, user-consented identifiers to the respective provider. No other data is collected or shared. We don't track your behavior, we don't build profiles, and we don't sell your data — because we don't even have it.

What we collect

Nothing. PencilCard collects no personal data, usage data, or telemetry of any kind.

We do not collect:

  • Your name, email address, or any identifying information
  • IP addresses or device identifiers
  • Usage patterns, clicks, or session data
  • Contents of your clipboard, bookmarks, or files
  • Crash reports or error logs

Local processing

All core PencilCard extension features are local-first and process data on your machine by default. Clipboard history and bookmark data (Pinodock), and file system scan data (PinoDrive) stay in local extension storage or in-memory unless you explicitly enable an optional integration.

Some optional features may call third-party services directly from your browser (for example weather, translation, public feeds, or user-enabled connected plugins). These optional flows are disclosed in each app-specific privacy policy and can be disabled at any time.

Browser permissions

Our extensions request only the permissions needed to provide each feature. Core permissions power local functionality; optional host permissions are used only when you enable the related integration.

  • Pinodock — accesses bookmarks, open tabs, downloads, and local clipboard history for launcher/productivity features; optional host permissions are granted per integration and can be revoked from Chrome site permissions.
  • PinoDrive — accesses local file system data for scanning and can optionally connect to a local agent; optional connected-plugin permissions are disabled by default and user-controlled.

Third parties

PencilCard does not share, sell, or transfer any user data to third parties — because we have no user data to share.

Our extensions do not include advertising networks or tracking pixels. Optional integrations contact their respective services directly from your browser only when enabled by you. We use Google Fonts for typography on this website, which is subject to Google's own privacy policy.

Children

PencilCard does not knowingly collect information from children under 13. Since we collect no information from anyone, this policy applies equally to all users regardless of age.

Changes to this policy

If we make material changes to this privacy policy, we will update this page and note the effective date of change. Our core commitment — that we do not collect user data — will not change.

Last updated: May 2026

Per-application policies

Each application has its own detailed privacy policy covering the specific data it accesses locally:

Pinodock

Bookmarks, tabs, history, and clipboard data — all local. Zero external transmission.

Read Pinodock Policy →

PinoDrive

File system access for disk analysis — in-memory only, cleared on close.

Read PinoDrive Policy →

Contact

If you have questions about this privacy policy or our data practices, please reach out. We're a small team and we respond to everything.

Email: privacy@pencilcard.com