Privacy Policy

Emberbright ("Company", "we", "us") operates the Günther application ("Application"). This Privacy Policy explains how we handle your information.

1. Information We Collect

Information Stored Locally

The Application stores the following data locally on your device only:

• SSH connection details: Hostnames, ports, and usernames for saved connections
• SSH credentials: Passwords and private keys, stored using platform-secure encrypted storage (iOS Keychain with first-unlock-this-device accessibility)
• SSH host key fingerprints: For verifying server identity
• Application preferences: Theme settings, dashboard layout, idle timeout, model selection, and other configuration
• Chat message cache: The last 50 messages per session are cached locally for offline display (maximum 30 cached sessions). This data never leaves your device.
• Session state: Recent session identifiers and names for resuming previous conversations
• Project shortcuts: Saved working directories with names for quick access

Information Synced via iCloud (Optional)

When iCloud sync is enabled, the following data may be synced across your Apple devices via iCloud:

• Connection metadata (hostnames, ports, usernames)
• Project shortcuts and settings
• Dashboard layout preferences

The following are never synced to iCloud:

• Passwords
• SSH private keys
• Host key fingerprints

iCloud data is subject to Apple's iCloud Terms of Service and Privacy Policy. You can disable iCloud sync at any time in the Application's Settings.

Information We Do NOT Collect

• We do not collect, transmit, or store any personal data on our servers
• We do not have analytics, tracking, or telemetry
• We do not transmit your SSH session content, terminal output, or chat messages anywhere — all communication is directly between your device and your server
• We do not sell or share any user data

2. Third-Party Services

Claude Code (Server-Side)

The Application is designed for use with Claude Code, which runs on your remote server. When you use Claude Code through Günther, your server communicates with Anthropic's API — this happens entirely on your server and does not pass through the Application or Emberbright. The Application does not proxy, intercept, or store these communications. Your use of Claude Code is governed by your own agreement with Anthropic.

SSH Connections

All SSH connections are established directly between your device and the remote server. The Company has no visibility into your SSH sessions.

Apple iCloud

When iCloud sync is enabled, non-sensitive connection metadata is synced via Apple's iCloud Key-Value Store. This data is subject to Apple's privacy terms.

Bug Reports (Optional)

The Application includes an optional bug report feature. If you choose to submit a bug report, it may include:

• App version and OS version
• Device platform (e.g., iOS)
• Your description of the issue

If you choose to include diagnostic logs, they are automatically scrubbed of sensitive information before sharing. The sanitizer removes message content, file paths, IP addresses, hostnames, and usernames — replacing them with placeholders (e.g., [N chars], ***). Only technical metadata like timestamps, event types, and numeric metrics are retained.

Bug reports can be submitted in two ways:

1. Submit to GitHub — Only when you explicitly choose this option, your report is transmitted to GitHub (a third-party service operated by GitHub, Inc.) and stored in a private repository managed by Emberbright. The report contents (description, app version, OS version, device platform) are visible only to the development team. No GitHub account is required — the Application submits on your behalf using a project service account. You are shown exactly what will be submitted and must confirm before sending. No data is ever sent to GitHub automatically. Your report data is subject to GitHub's Privacy Statement.
2. Share Report — Your report is shared via the iOS share sheet. You choose where to send it (email, messaging app, etc.).

In both cases, bug reports are only sent when you explicitly choose to submit them. The Company does not automatically collect bug reports.

3. Data Security

• SSH passwords and private keys are stored using iOS Keychain with first-unlock-this-device accessibility
• SSH connections use industry-standard encryption protocols
• Host key verification (trust-on-first-use) protects against man-in-the-middle attacks
• Sensitive credentials are never included in iCloud sync

4. Data Retention

All data is stored locally on your device. You can delete your data at any time by:

• Removing individual saved connections and SSH keys in the app settings
• Disabling iCloud sync to stop cross-device syncing
• Uninstalling the Application

5. Children's Privacy

The Application is not intended for use by children under 13. We do not knowingly collect information from children.

6. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be reflected in the "Last updated" date above.

7. Contact

For questions about this Privacy Policy, contact us at contact@emberbright.studio.