We believe privacy is a right, not a feature. Here is exactly what we do — and don't — do with your information.
Last updated: April 8, 2026 · Effective: April 8, 2026
All data stays on your iPhone
No analytics or tracking
No registration required
We never receive your data
Thinklet ("we," "our," or "the App") is an iOS application developed to let users connect to various AI language model providers using their own API credentials. This Privacy Policy explains how Thinklet handles your information.
By downloading or using Thinklet, you agree to the practices described in this Privacy Policy. If you do not agree, please do not use the App.
Thinklet is designed to operate entirely on your device. We do not operate any backend infrastructure that receives, stores, or processes your data.
The following data is stored locally on your device only by the App itself:
This data never leaves your device unless you explicitly export it yourself or it is backed up by iOS to your personal iCloud account (if you have enabled iCloud Backup), which is governed by Apple's privacy policy.
We explicitly do not collect, transmit, or store any of the following:
There is no account creation, no login, and no profile associated with your use of Thinklet.
API keys and authentication tokens are stored in the iOS Keychain — Apple's encrypted, sandboxed secure storage. They are protected by hardware-level encryption and are inaccessible to other apps.
Conversations and settings are stored in the App's private sandboxed container using iOS-provided storage mechanisms. This data is not accessible to other apps.
If you have enabled iCloud Backup on your device, iOS may include the App's local data (excluding Keychain items) in your personal iCloud backup. This backup is private to your Apple ID and governed by Apple's Privacy Policy. Thinklet itself never reads or writes to iCloud directly.
Thinklet acts as a client application. When you send a message, it is transmitted directly from your device to the AI provider you have configured (e.g., OpenAI, Anthropic, Mistral, Groq, Ollama, or a self-hosted endpoint). This transmission goes directly to the provider — not through any Thinklet server.
How each provider handles your data is governed by their own privacy policies. We encourage you to review the privacy policy of each provider you choose to use:
If you use a self-hosted or local model (e.g., via Ollama), your messages are sent only to your own infrastructure and are fully under your control.
If you configure MCP tool connections, requests to those external tools are made directly from your device to the MCP server endpoint you provide. Thinklet does not operate MCP servers. The privacy practices of any MCP-compatible service you connect to are determined by that service.
Thinklet is not directed at children under the age of 13 (or the applicable age of digital consent in your jurisdiction). We do not knowingly collect any personal information from children.
Since Thinklet collects no personal information from any user at all, there is no specific data collection that targets or applies to children. However, parents and guardians should supervise their children's use of AI services accessed through the App, as the content generated by AI providers is outside our control.
The security of your data is achieved through the following mechanisms:
We recommend keeping your device software up to date and using a strong device passcode to maintain the security of all data stored locally.
Because Thinklet does not collect or store any of your personal data on our servers, most traditional data rights (access, correction, deletion, portability) are exercised directly on your own device.
Since Thinklet does not collect personal data as defined under the General Data Protection Regulation (GDPR), we do not act as a data controller or data processor with respect to your personal information. Any personal data you include in messages to AI providers is subject to the GDPR obligations of those providers.
Thinklet does not sell personal information. We do not share personal information with third parties for cross-context behavioral advertising. Because we collect no personal information, all CCPA disclosures regarding categories of information, purposes of use, and right to opt-out are not applicable to Thinklet's own data practices.
We may update this Privacy Policy from time to time. When we make changes, we will update the "Last updated" date at the top of this page and, if the changes are material, notify you through an App update or an in-app notice.
We encourage you to review this Privacy Policy periodically. Your continued use of Thinklet after any changes constitutes your acceptance of the updated policy.
If you have any questions, concerns, or feedback about this Privacy Policy or your privacy when using Thinklet, please reach out to us. As this is an independently developed app, we aim to respond to all inquiries promptly.
You can contact us by submitting a support request through the App Store product page for Thinklet.