Get Orchid

Privacy Policy

Effective Date: June 25, 2026. This policy outlines how data is handled on our marketing website and details our local-first engineering model.

1. Local-First Engineering Guarantee

Orchid is designed from first principles to be local-first software. The core interception proxy container (orchid-proxy) runs entirely on your own infrastructure.

Zero Telemetry: The Orchid proxy binary does not collect, store, or transmit your prompts, tool responses, session data, or database files to any external server. All diagnostic tracing data remains inside your local SQLite database file.

2. Tracking Technologies

Our marketing website (orchidtrace.xyz) does not use any third-party advertising pixels, session replay scripts, or tracking cookies. We do not place cookies or analytics trackers on your device when you browse this site.

Because we have zero active tracking scripts, your browsing behavior is completely private, and we do not collect or transmit analytics metadata to third-party providers. Limiting optional tracking at the browser level (e.g., via Do Not Track headers or script blockers) is fully supported and will not affect your ability to download or run the Orchid software.

3. Information You Provide Voluntarily

When you contact us using our contact form, we collect your name, email address, and any details you supply in your message. This data is used solely to respond to your inquiry and resolve technical issues. We do not sell, rent, or distribute your contact information to third parties.

4. Dispute Resolution Integration

Any dispute, claim, or controversy arising out of or relating to this Privacy Policy, including data collection, handling, or processing, shall be resolved in accordance with the dispute resolution and binding arbitration procedures set forth in our Terms of Service.

5. Substantiation of Data-Handling Claims

If you believe your data has been handled in violation of this Policy, you must provide us with the following details as part of your pre-dispute notice:

  1. A detailed written explanation specifying the nature of the alleged violation;
  2. The date(s) and approximate timestamps of website access;
  3. The specific URLs visited, device type, browser type, and IP address (if known) used; and
  4. A description of the actual harm alleged to have been suffered.