Privacy Policy

Last updated: March 25, 2026

1. Introduction

Welcome to Desktopr ("we," "our," or "us"). This Privacy Policy explains how Desktopr collects, uses, stores, and protects the personal data and information of users ("you" or "your") who access and use our website located at https://desktopr.app, our web Dashboard at https://dashboard.desktopr.app, our Companion application available at https://companion.desktopr.app, and our desktop application (collectively, the "Services").

By accessing or using our Services, you acknowledge that you have read, understood, and agree to the practices described in this Privacy Policy. If you do not agree, please discontinue use of our Services.

2. Who We Are

Desktopr is a software platform that allows developers and creators to transform web applications into cross-platform desktop applications for macOS, Windows, and Linux, leveraging the Tauri/Rust framework.

For any privacy-related inquiries, you may contact us at:

Email: contact@desktopr.appWebsite: https://desktopr.app

3. Data We Collect

3.1 Account and Registration Data

When you create an account or sign in via the Dashboard, we may collect:

Name and/or username
Email address
Password (stored in hashed form, never in plain text)
Account creation date and last login timestamp

3.2 Project and Application Configuration Data

When you create and configure a desktop application project through our Services, we collect and store:

The URL(s) of your web application(s)
Application metadata: name, version, description, target platforms
Build configuration settings (e.g., icons, colors, window parameters, signing preferences)
Records of builds you have executed (timestamps, target platform, output format)

3.3 Build Artifacts and Distribution Data

Desktopr compiles your application on cloud infrastructure. As part of this process, we may temporarily or permanently store:

Compiled binary files (.dmg, .exe, .AppImage, .rpm, .deb) associated with your account
Build logs and compilation metadata
Distribution configurations if you use our managed distribution service

You retain full ownership of the compiled binaries and their build files, as stated in our documentation.

3.4 Code Signing Credentials

If you choose to sign your application for macOS or Windows distribution, you may provide:

macOS: Apple Developer ID certificates or associated signing tokens
Windows: Code signing certificates issued by a Certificate Authority (CA)

We treat signing credentials with the highest degree of confidentiality. These are used exclusively for the purpose of signing your compiled application and are not shared with third parties.

3.5 Technical and Usage Data

When you use our Services (website, Dashboard, desktop app, Companion app), we may automatically collect:

IP address
Browser type and version
Operating system type and version
Pages visited, time spent, and navigation patterns
Referring URLs
Error logs and crash reports from the desktop or Companion application
Feature usage patterns (e.g., which Bridge API modules are used)

3.6 Companion Application Data

When using the Desktopr Companion application to test native features:

The URL you enter for testing purposes
Interactions with Bridge modules during test sessions
Diagnostic logs generated during testing

3.7 Bridge API and Native Feature Interactions

The Desktopr SDK (desktopr Node module) enables your web app to communicate with the native OS layer. The following modules may interact with local system resources:

| Module | Data or System Resource Accessed | ||| | app | Application-level metadata and behaviors | | notifications | System notification permissions and content | | clipboard | System clipboard read/write operations | | files | File dialogs and file operations initiated by the user | | fs | Isolated, sandboxed file system dedicated to the app | | window | Window state (size, focus, visibility) | | events | Custom and system events | | globalShortcut | Global keyboard shortcut registrations | | menu | Application native menu structure | | network | Network connectivity state and outgoing requests | | autostart | System login/startup behavior of the app | | badge | App badge count (macOS only) | | plugins | Local task execution in sandboxed WASI runtime | | diagnostics | Diagnostic logs for troubleshooting |

Important: The fs (File System) module provides access only to a sandboxed, isolated environment dedicated to the Desktopr app. It does not provide access to the general file system of the host machine. All system calls pass through Rust-level validation before execution.

WASM Plugins run inside a secure, isolated Tauri + Wasmtime + WASI runtime sandbox without network access and with configurable memory and timeout limits. No data from the host system is accessible to plugins.

Wroker and WASM Plugins (deprecated) run inside a secure, isolated Web Worker sandbox without network access and with configurable memory and timeout limits. No data from the host system is accessible to plugins.

4. How We Use Your Data

We use the data collected for the following purposes:

Providing and operating the Services: Account management, build execution, distribution, and application signing.
Storing and delivering build artifacts: Hosting your compiled desktop applications on our cloud infrastructure so you can download and distribute them.
Testing and development support: Enabling you to test native features through the Companion app.
Security and integrity: Verifying the authenticity of signing credentials, protecting against unauthorized access, and monitoring for abuse.
Communication: Sending service-related emails (e.g., build completion notifications, account alerts, policy updates). We do not send marketing emails without your explicit consent.
Analytics and improvement: Understanding how our Services are used to improve functionality, fix bugs, and optimize performance.
Legal compliance: Meeting our legal obligations under applicable data protection laws.

If you are located in the European Economic Area (EEA), the United Kingdom, or Switzerland, we process your personal data under the following legal bases:

Contract performance (Art. 6(1)(b) GDPR): Processing necessary to provide the Services you have subscribed to (account management, builds, distribution).
Legitimate interests (Art. 6(1)(f) GDPR): Improving our Services, ensuring platform security, and preventing fraud.
Legal obligation (Art. 6(1)(c) GDPR): Complying with applicable laws and regulations.
Consent (Art. 6(1)(a) GDPR): For any optional data processing such as marketing communications, where we will request your explicit consent.

6. Data Retention

We retain your data for the following periods:

| Data Type | Retention Period | ||| | Account information | Duration of account, plus 30 days after deletion request | | Project configurations | Duration of account | | Compiled build artifacts | As long as stored by the user or until manual deletion | | Build logs | 90 days from build date | | Usage and technical logs | 90 days | | Code signing credentials | Deleted immediately after use, unless stored at your explicit request | | Companion testing session data | Session duration only; not persisted |

You may request deletion of your data at any time by contacting us (see Section 12).

We do not sell your personal data to third parties. We may share data with:

7.1 Infrastructure and Cloud Providers

Desktopr uses cloud infrastructure to compile and store your application builds. Your configuration and build data may be processed on third-party cloud servers. These providers are contractually bound to handle data securely and in accordance with applicable law.

7.2 Code Signing Authorities

When signing your application:

For macOS, your build is submitted to Apple for notarization as required by Apple's policies.
For Windows, signing may involve a Certificate Authority (CA) to validate your signing certificate.

In these cases, minimal required data (the application binary) is transmitted to the respective authority solely for signing/notarization purposes.

7.3 Legal Requirements

We may disclose data if required to do so by law, court order, or governmental authority, or to protect the rights, property, or safety of Desktopr, our users, or others.

8. Data Security

We implement appropriate technical and organizational measures to protect your data against unauthorized access, loss, or alteration, including:

Encrypted storage of account credentials (passwords are hashed and never stored in plain text)
HTTPS encryption for all communications between your browser/app and our servers
Sandboxed execution environments for WASM plugins and build processes
Rust-level validation for all Bridge API calls before system interaction
Restricted access to code signing credentials, used exclusively for their stated purpose
Isolated file system access — the fs module cannot access the host machine's global file system

While we apply industry-standard safeguards, no method of transmission over the internet or electronic storage is completely secure.

9. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

Right of access: Request a copy of the personal data we hold about you.
Right to rectification: Request correction of inaccurate or incomplete data.
Right to erasure ("right to be forgotten"): Request deletion of your personal data, subject to legal retention obligations.
Right to restriction of processing: Request that we limit how we use your data.
Right to data portability: Receive your data in a structured, commonly used, machine-readable format.
Right to object: Object to processing based on legitimate interests.
Right to withdraw consent: Where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing.

To exercise any of these rights, contact us at: [INSERT CONTACT EMAIL]

We will respond to valid requests within 30 days as required by applicable law.

10. Cookies and Tracking Technologies

Our website and Dashboard may use cookies and similar technologies for:

Session management: Keeping you logged in to your account.
Preferences: Remembering your settings and appearance preferences (e.g., dark/light mode).
Analytics: Understanding how users navigate the site to improve the user experience.

You may control cookie settings via your browser. Disabling certain cookies may affect the functionality of our Services.

We do not use advertising cookies or sell your browsing data to advertisers.

11. Children's Privacy

Our Services are not directed to individuals under the age of 16 (or the applicable minimum age in your jurisdiction). We do not knowingly collect personal data from minors. If we become aware that we have inadvertently collected such data, we will delete it promptly. If you believe a minor has provided us with personal data, please contact us immediately.

12. International Data Transfers

If you are located outside the country where our servers are hosted, your data may be transferred internationally. In such cases, we apply appropriate safeguards (e.g., Standard Contractual Clauses as required by GDPR) to ensure your data is protected in accordance with this Privacy Policy.

13. Third-Party Links and Services

Our Services may contain links to third-party websites (e.g., GitHub, Apple Developer, Certificate Authorities). This Privacy Policy does not apply to those third-party sites, and we are not responsible for their privacy practices. We encourage you to review the privacy policies of any third-party services you interact with.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. When we make material changes, we will:

Update the "Last updated" date at the top of this page
Notify registered users via email or a prominent notice on our website

Continued use of our Services after changes are posted constitutes your acceptance of the updated Privacy Policy.

15. Contact Us

For any questions, concerns, or requests regarding this Privacy Policy or the handling of your personal data, please contact us at:

Desktopr

Email: contact@desktopr.app

Website: https://desktopr.app

Privacy Policy ​

1. Introduction ​

2. Who We Are ​

3. Data We Collect ​

3.1 Account and Registration Data ​

3.2 Project and Application Configuration Data ​

3.3 Build Artifacts and Distribution Data ​

3.4 Code Signing Credentials ​

3.5 Technical and Usage Data ​

3.6 Companion Application Data ​

3.7 Bridge API and Native Feature Interactions ​

4. How We Use Your Data ​

5. Legal Bases for Processing (GDPR) ​

6. Data Retention ​

7. Data Sharing and Third Parties ​

7.1 Infrastructure and Cloud Providers ​

7.2 Code Signing Authorities ​

7.3 Legal Requirements ​

8. Data Security ​

9. Your Rights ​

10. Cookies and Tracking Technologies ​

11. Children's Privacy ​

12. International Data Transfers ​

13. Third-Party Links and Services ​

14. Changes to This Privacy Policy ​

15. Contact Us ​