Privacy.

Last updated: May 2026

GridPath is a desktop app. Your workbooks stay on your machine. We collect the minimum we need to ship updates, debug crashes, and run the optional account features. The plain-English version is below; the legal version is in Terms.

What stays on your machine

The .xlsx file itself lives on your local disk in whatever folder you chose. We don't operate a GridPath cloud for your workbooks — there's no GridPath-side copy, no syncing, and no third-party server sits between you and the LLM provider.

What goes to the LLM provider you pick

When you send a prompt, your chosen LLM provider (Anthropic for Claude, OpenAI for ChatGPT/Codex) receives the following over their normal API:

• Your typed prompt and any earlier messages in the session.
• Workbook context — sheet names, used range dimensions, a sample of cells, and any cells the agent reads or writes during the run. The more the agent needs to see to do its job, the more cell content flows. Practically, this can range from a few hundred cells for a small edit to the bulk of a sheet for a large model.
• The agent's tool calls (e.g. "set_range at A1, 58 × 9").

That data is governed by your LLM provider's privacy terms (Anthropic, OpenAI) — the same terms you'd be subject to using Claude or ChatGPT directly. GridPath never reads or stores the prompts or LLM responses on our side.

What we collect

• Account info — when you sign in (Google, email), we store your email address and a Firebase user ID so you can recover access and we can talk to you.
• Crash reports & anonymous usage metrics — aggregate counts of feature use (sessions started, batches accepted) plus stack traces from crashes. No prompt text, no cell content, no file paths.
• Update checks — your app pings us periodically to find newer versions. We log timestamp + version + OS only.

What we don't collect

• Your workbook contents.
• Your prompts or the LLM's responses.
• Anything from other apps on your machine.
• Browsing history, screen captures, or keystrokes outside GridPath.

Third-party services

Authentication runs on Firebase Auth (Google). Crash reports flow through Sentry. Update delivery uses Tauri's bundled updater backed by our own static asset host. We don't ship a third-party analytics SDK that watches user behavior — every metric is explicit and opt-out is in Settings → Privacy.

Data deletion

To delete your account and any associated data, email privacy@gridpath.dev. We confirm in under 5 business days. Local app data on your machine lives under ~/Library/Application Support/com.gridpath.dev/ on macOS (or the Windows equivalent); delete that folder to wipe sessions, settings, and the SQLite history.

Children

GridPath is not directed at people under 13. We don't knowingly collect data from children. If a parent or guardian believes their child has provided us with personal information, email privacy@gridpath.dev and we'll remove it.

Changes

If we materially change this policy, we'll bump the "Last updated" date above and email signed-in users. Continued use of GridPath after the change means you accept the new terms.

Contact

Privacy questions: privacy@gridpath.dev. Security disclosures: security@gridpath.dev.