Privacy Policy

Effective June 1, 2026

keybridge is a macOS 14+ menu-bar utility, distributed through the Mac App Store, that lets you save highlighted text — typically API keys, tokens, or passwords — directly into your Apple Keychain. This policy explains what keybridge does and does not do with your information. It is written by Zachary Amith, an individual developer who builds and maintains keybridge.

keybridge collects no personal data. It has no servers, no analytics, no telemetry, no advertising, and no third-party SDKs, and it makes no network requests by default. The one exception is the optional "Show website logos" feature, off by default: when you turn it on, keybridge fetches website icons from DuckDuckGo using only the domain it derives from the service name you type — never your secrets or any personal data. Your secrets are written only to your Apple Keychain on your device. The developer has no ability to access anything you save.

1. Our approach

keybridge is designed to do its job without ever sending your data anywhere. It runs entirely on your Mac. There is no account to create, no sign-in, and no cloud service operated by the developer. keybridge has no servers and makes no network requests by default; the only network activity is the optional "Show website logos" feature described in Section 2, which is off until you enable it and which never transmits your secrets. There is nothing for the developer to collect, log, or sell.

2. Information we collect

None. keybridge does not collect, transmit, or store any personal data on the developer's behalf. Specifically, keybridge does not include analytics, crash reporting, telemetry, advertising identifiers, or third-party software development kits, and it makes no network requests by default.

The only information keybridge handles is the content you explicitly choose to save: the secret text you send to it and the service name or account label you type. As described below, that content goes only into your local Apple Keychain — never to the developer.

keybridge includes one optional feature that makes a network request: "Show website logos." It is off by default, so until you turn it on the app makes no network connections at all. When you enable it, keybridge derives a domain from the service name you type (for example, "api.openai.com" becomes "openai.com"; names that aren't domains, like "OpenAI," derive nothing) and fetches a website icon from DuckDuckGo. Only that derived domain is sent — never your secrets, account labels, or any other personal data — and the icons are cached locally on your Mac.

3. How your secrets are stored

When you save a secret, keybridge writes it to your local Apple Keychain using Apple's Security framework. The secret itself, along with the service name or account label you type, is stored as a Keychain item scoped to keybridge's own private app access group. keybridge only reads and writes these Keychain items; it never copies them elsewhere or transmits them off your device.

Keybridge captures text in two ways, both initiated by you:

In both cases, nothing is saved to the Keychain until you confirm.

4. Permissions and device access

keybridge registers a macOS System Service and uses global keyboard shortcuts (via Carbon's RegisterEventHotKey) to let you trigger it from anywhere. It does not request Accessibility, camera, microphone, location, contacts, or photo access. keybridge does not read other apps' content, except for the specific text you explicitly send to it through the Services menu or the clipboard capture you initiate.

5. Third parties

keybridge does not share your personal data with third parties. The app contains no third-party analytics, advertising, or tracking SDKs.

The optional "Show website logos" feature is the single instance in which keybridge contacts an outside service. When you enable it, the app requests website icons from DuckDuckGo (icons.duckduckgo.com), sending only the domain derived from the service name you type — never your secrets or any personal data. DuckDuckGo's handling of those requests is governed by DuckDuckGo's Privacy Policy. This feature is off by default; if you leave it off, keybridge makes no such requests.

Separately, when you download keybridge from the Mac App Store, Apple may collect information in accordance with Apple's own policies. That activity is between you and Apple and is outside the developer's control.

6. Children's privacy

keybridge is a developer-oriented utility and is not directed at children under 13. The developer does not knowingly collect personal information from children — and, as noted throughout this policy, does not collect personal information from anyone.

7. Your control over your data

Your secrets live in your Apple Keychain, under your control. You can review and remove keybridge's saved items at any time through keybridge's built-in command palette (⌘⇧K).

Please note that uninstalling keybridge does not automatically erase the Keychain items it created. If you want to remove your saved secrets, delete them from the command palette before uninstalling.

8. Changes to this policy

If this policy changes, the updated version will be posted on this page with a new effective date. Material changes will be reflected here; please check back periodically.

9. Contact

If you have questions about this policy or about privacy in keybridge, contact the developer, Zachary Amith, at zacharyamith@outlook.com.