Tokenly — Privacy Policy
1. Overview
Data controller: Maciej Siemiński — the developer of Tokenly. Contact: mail@macsiem.dev.
For the Android version distributed through Google Play, the data controller is LICENCEPRO POLSKA Sp. z o.o., ul. Huculska 6, 00-730 Warsaw, Poland. The contact address for both variants is mail@macsiem.dev.
Tokenly is a usage dashboard for AI subscriptions, available as a desktop app (macOS, Windows) and as companion apps for iOS and Android. It shows how much of your AI plan limits (for example Claude or ChatGPT) you have used. Tokenly is built local-first: your credentials and usage data stay on your devices.
2. Provider Credentials
To read your usage, Tokenly needs access credentials (such as session tokens or API keys) for the AI services you choose to connect. These credentials:
- are provided by you and stored only on your device, in the operating system's secure storage (macOS Keychain, iOS Keychain, or the platform credential store on Windows);
- are used exclusively to query the given provider's usage endpoints directly from your device;
- are never transmitted to us — we do not operate any server that receives, stores, or proxies your credentials or usage data.
3. Usage Data
Usage statistics fetched from your AI providers (plan type, limits, consumption, reset times) are processed and cached locally on your device. We have no access to them.
4. Device-to-Device Sync
If you pair the iOS app with your desktop app, usage data is synchronized directly between your devices with end-to-end encryption. Pairing keys are stored in the system keychain. We cannot read the synchronized content.
5. Crash Diagnostics
Tokenly can use Sentry for crash reporting when a build is configured with a Sentry DSN. Crash diagnostics may include app version, OS version, device model, stack traces, and navigation breadcrumbs. Credentials, tokens, and usage values are not attached to crash reports.
6. Subscriptions and Payments
Optional Tokenly Premium is offered as an in-app subscription. On iOS, payment, billing details, and subscription management are handled entirely by Apple through your Apple Account; we do not receive your payment data. See the Terms of Use.
7. Advertising
The desktop apps (macOS and Windows) never show ads.
On iPhone, iPad and Android, the free tier is supported by a single banner ad served by Google AdMob. The 7-day Premium trial and Tokenly Premium are ad-free. Ads are never shown on the Settings, privacy, legal, paywall, onboarding or pairing screens.
Where ads are shown, Google AdMob may process your device's advertising identifier and coarse ad-request data in order to serve and measure them. On iOS you are asked for App Tracking Transparency permission first; in the EEA and the UK you are shown a Google-certified consent form. If you decline, ads still appear but are non-personalised.
Tokenly never sends your provider credentials, usage figures, spend or any AI content to the ad network. See Google's policy at policies.google.com/technologies/partner-sites.
8. Legal Bases (GDPR)
- Performance of the service (Art. 6(1)(b) GDPR) — local processing of the credentials and usage data required to show your dashboards.
- Legitimate interest (Art. 6(1)(f) GDPR) — crash diagnostics via Sentry to keep the app stable.
9. Data Retention
- Credentials and cached usage data remain on your device until you disconnect a provider, delete app data, or uninstall the app.
- Sentry crash reports are retained for 90 days (Sentry default), then deleted automatically.
10. Your Rights, and how to delete your data
There is no Tokenly account, so there is nothing to close. Almost everything Tokenly knows about you lives on your own devices, and you delete it yourself:
- Usage data, provider credentials, pairing keys, history: disconnect the provider in the app, unpair the device, or simply uninstall Tokenly. All of it is removed with the app — we never had a copy.
- Crash diagnostics (Sentry): we cannot look you up, because crash reports carry no user identifier. If you want them erased anyway, email mail@macsiem.dev from the address you contact us on and we will have them deleted.
- Advertising identifier (free tier of the mobile apps): reset or delete it in your device settings — Android: Settings → Google → Ads; iOS: Settings → Privacy & Security → Tracking.
To request deletion of anything else, or to exercise any other right, write to mail@macsiem.dev. We answer within 30 days.
Under the GDPR you have the right to access, rectify, erase, restrict, or object to the processing of your personal data, and the right to data portability.
You also have the right to lodge a complaint with a supervisory authority. In Poland this is the President of the Personal Data Protection Office (UODO), ul. Stawki 2, 00-193 Warszawa, uodo.gov.pl.
11. Children
Tokenly is not directed at children and we do not knowingly collect personal data from children.
12. International Transfers
Your credentials and usage data do not leave your devices through any MacSiem server. When your device queries an AI provider, that traffic goes directly to the provider under its own privacy policy. Crash data processed by Sentry may be transferred outside the European Economic Area under GDPR safeguards such as Standard Contractual Clauses or an adequacy decision.
13. What We Do Not Collect
- We do not collect your name, email address, or account credentials.
- We do not receive, store, or proxy your AI usage data.
- We do not collect location data.
- We never show ads on macOS or Windows, and never to Premium or trial users. The free tier of the mobile apps is ad-supported — see section 7.
- We do not use the advertising identifier for anything other than serving and measuring those ads, and we never link it to your provider data.
- We do not sell personal information.
14. Changes and Contact
We may update this policy when the app or legal requirements change; the current version is always available at the canonical URL below. For privacy questions, contact mail@macsiem.dev.