Privacy Policy
Last updated: 17 April 2026 · Governing law: England & Wales
1. Who we are
This Privacy Policy explains how LocalLM ("LocalLM", "we", "us", or "our") collects and processes personal data in connection with the LocalLM mobile application for iOS and Android (the "App") and the website at locallm.app (the "Site").
For the purposes of the UK General Data Protection Regulation ("UK GDPR") and the Data Protection Act 2018, the data controller is:
- Controller: Appricode Software Consultancy Ltd (company number 10677948), a company registered in England & Wales, with its registered office at Demsa Accounts, 565 Green Lanes, Haringey, London, England, N8 0RL (the "Controller")
- Contact: privacy@locallm.app
This Policy is written to comply with the UK General Data Protection Regulation, the Data Protection Act 2018 and the Privacy and Electronic Communications Regulations ("PECR"). It is governed by the laws of England & Wales, and the courts of England & Wales have exclusive jurisdiction over any dispute relating to it, save for any mandatory rights you have under UK data protection law (including the right to complain to the Information Commissioner's Office — see section 12).
2. Summary — our privacy-first design
LocalLM is designed so that as little personal data as possible ever leaves your device. In particular, the App does not:
- Collect, transmit or store your prompts, conversations or model outputs on any server operated by us;
- Track you with analytics, telemetry, advertising identifiers or profiling cookies;
- Sync your data to any cloud service operated by us;
- Access your contacts, photos, camera, microphone or precise location;
- Sell, rent or share your personal data with data brokers or advertising networks.
3. Personal data we process
3.1 Data stored only on your device
The following data is stored locally on your device under your sole control. We do not have access to it, we are not a processor of it, and you alone are responsible for its security (including your device passcode, biometrics and any backups you create).
| Data | Purpose | Storage |
|---|---|---|
| Conversation history | Display your chat history within the App | Local device storage |
| Endpoint configurations | Connect to LLM servers (URLs, ports) you configure | Local device storage |
| API keys / credentials you enter | Authenticate with third-party LLM providers you choose | Hardware-backed secure storage (iOS Keychain / Android Keystore) |
| App preferences | Your settings (theme, default parameters) | Local device storage |
| Inference parameters | Model settings (temperature, top_p, etc.) | Local device storage |
3.2 Data processed by our Site and waitlist
If you join our waitlist on the Site, we process:
| Data | Purpose | Lawful basis (UK GDPR Art. 6) | Retention |
|---|---|---|---|
| Email address | Notify you when the App launches on your chosen platform | Consent (Art. 6(1)(a)) | Until you unsubscribe or request deletion |
| Platform preference (iOS/Android) | Send platform-specific launch notifications | Consent (Art. 6(1)(a)) | Until you unsubscribe or request deletion |
| Hashed IP address | Rate limiting, abuse & spam prevention, security of the service | Legitimate interests (Art. 6(1)(f)) — protecting our service from abuse | Automatically deleted after 1 hour |
| Server & request logs (IP, user agent, timestamps) | Security, debugging, fraud prevention | Legitimate interests (Art. 6(1)(f)) | Up to 30 days |
| Correspondence you send us | Respond to your enquiry and keep a record | Legitimate interests (Art. 6(1)(f)); consent for any marketing | Up to 24 months |
3.3 Data processed by your device's operating system
If you have opted in through Apple or Google, anonymised crash and diagnostic data may be shared with us through App Store Connect or Google Play Console. You can disable this at any time in your device's operating system settings. We rely on legitimate interests (Art. 6(1)(f)) to review such anonymised diagnostics in order to improve App stability.
3.4 Special category data
We do not intentionally collect any special category personal data (such as health, religious beliefs or sexual orientation). You are asked not to enter such data into the App; if you do so, it remains on your device, outside our control, and you do so at your own risk.
4. Lawful bases for processing
Under the UK GDPR we only process personal data where we have a lawful basis. The bases we rely on are:
- Consent (Art. 6(1)(a)) — for waitlist email notifications and any direct marketing. You can withdraw consent at any time.
- Legitimate interests (Art. 6(1)(f)) — for security, abuse prevention, maintaining logs, responding to enquiries and improving the App. We have balanced our interests against your rights and freedoms and consider this processing to be minimal and non-intrusive. You may object at any time (see section 7).
- Legal obligation (Art. 6(1)(c)) — where we must retain or disclose data to comply with UK law, a court order or a request from a competent authority.
5. How we use your personal data
We use the limited personal data we hold only for the following purposes:
- To send you waitlist notifications about the App launch on your chosen platform;
- To prevent abuse, spam and automated signups and to keep the Site secure;
- To respond to your questions, requests and legal claims;
- To comply with our legal and regulatory obligations.
We do not use your personal data for automated decision-making that produces legal or similarly significant effects, or for profiling.
6. Third parties and international transfers
6.1 LLM servers and providers you choose
The App is a client that connects to LLM servers that you configure. That may include local servers on your own network, self-hosted models, or third-party APIs (for example Anthropic, OpenAI, or similar providers). When you use a third-party provider, your prompts, outputs and associated metadata are sent directly from your device to that provider. We have no visibility of, or control over, that traffic. Any processing by those providers is governed by their own terms and privacy policies, and you are solely responsible for reviewing and complying with them, including in respect of any personal data you choose to submit. We are not a processor of that data on your behalf.
6.2 Our processors
We use the following categories of processors to deliver the Site and waitlist. Each is bound by appropriate written terms and only processes personal data on our documented instructions:
- Cloudflare, Inc. — hosting of the Site (Pages), the waitlist API (Workers) and the waitlist database (D1); bot protection via Cloudflare Turnstile. See the Cloudflare Privacy Policy.
- Apple Inc. and Google LLC — if you install the App, distribution and opt-in crash reporting via App Store Connect / Google Play Console.
- Email delivery provider — to send waitlist notifications (details available on request to privacy@locallm.app).
6.3 International transfers
Some of our processors are based outside the United Kingdom, including in the United States. Where personal data is transferred outside the UK, we rely on one of the transfer mechanisms recognised under the UK GDPR, such as the UK International Data Transfer Agreement, the UK Addendum to the EU Standard Contractual Clauses, or an adequacy regulation made by the Secretary of State. A copy of the relevant safeguards can be requested from privacy@locallm.app.
6.4 Legal disclosures
We may disclose personal data where we are required to do so by UK law, by a court order, or by a request from a law enforcement or regulatory authority acting within its powers, or where disclosure is necessary to establish, exercise or defend legal claims.
6.5 No sale of personal data
We do not sell, rent or trade your personal data, and we do not share it with third parties for their own marketing purposes.
7. Your rights under the UK GDPR
You have the following rights in relation to personal data we hold about you:
- Right of access — to request a copy of your personal data;
- Right to rectification — to have inaccurate or incomplete data corrected;
- Right to erasure ("right to be forgotten") — in the circumstances set out in Article 17 UK GDPR;
- Right to restrict processing — in the circumstances set out in Article 18;
- Right to data portability — to receive data you provided to us in a structured, commonly used, machine-readable format;
- Right to object — including to processing based on legitimate interests and to direct marketing;
- Right to withdraw consent — where we rely on consent, at any time, without affecting the lawfulness of processing carried out before withdrawal.
To exercise any of these rights, email privacy@locallm.app. We will respond within one month, as required by Article 12(3) UK GDPR. This period may be extended by up to two further months for complex or numerous requests; we will tell you if that applies. We may ask you for information to verify your identity before we action your request. Requests are free of charge, but we may charge a reasonable fee or refuse to act on requests which are manifestly unfounded or excessive.
8. Data security
We take appropriate technical and organisational measures to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure or access, including:
- API keys entered into the App are stored in hardware-backed secure storage (iOS Keychain / Android Keystore), encrypted at rest by the operating system;
- All network communication between the App and its configured endpoints uses the protocol you configure — we strongly recommend HTTPS;
- Waitlist data is stored on Cloudflare D1 with access restricted to authorised personnel;
- IP addresses used for rate limiting are hashed (one-way) and automatically purged;
- The App has no user accounts and we store no passwords.
No system is perfectly secure. While we take security seriously, you acknowledge that transmission of information over the internet is not completely secure and we cannot guarantee the security of data sent to us. You are responsible for keeping your device, its operating system, your local network and any third-party credentials you enter into the App secure.
9. Retention and deletion
We keep personal data only for as long as is necessary for the purposes set out in this Policy or as required by law. The retention periods applicable to waitlist data are set out in the table in section 3.2. Data stored on your device is retained for as long as you keep the App installed; you can delete it at any time by:
- Deleting individual conversations within the App;
- Clearing the App's data in your device settings; or
- Uninstalling the App, which removes all locally stored data.
10. Cookies and similar technologies
The Site uses only strictly necessary cookies and similar technologies required for the Site and waitlist form to function (including Cloudflare Turnstile for bot protection and Cloudflare's standard security cookies). Strictly necessary cookies do not require consent under PECR. We do not use advertising, analytics or cross-site tracking cookies.
11. Children
The App and Site are not directed at children under the age of 13, and we do not knowingly collect personal data from children. If you are a parent or guardian and believe that a child has provided us with personal data, please contact privacy@locallm.app and we will promptly delete it.
12. Complaints and supervisory authority
We hope you will always feel able to raise any concern directly with us at privacy@locallm.app so we can try to resolve it. You also have the right to lodge a complaint with the UK supervisory authority for data protection matters:
- Information Commissioner's Office (ICO)
- Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF
- Helpline: 0303 123 1113
- Website: ico.org.uk/make-a-complaint
13. Limitation of liability and your responsibilities
Nothing in this Policy excludes or limits any liability that cannot be excluded or limited under UK law (including liability for death or personal injury caused by negligence, fraud or fraudulent misrepresentation). Subject to that:
- You are solely responsible for the LLM endpoints, servers and third-party services you configure and connect the App to, for the security of your local network, and for the content of any prompts and data you submit to those services;
- We are not the controller or processor of data you send to third-party LLM providers or self-hosted servers of your choosing, and we accept no responsibility for the data-handling practices of those providers;
- The App is provided on an "as is" and "as available" basis and, to the maximum extent permitted by law, without warranties of any kind, whether express or implied;
- To the maximum extent permitted by law, we will not be liable for any indirect, special or consequential loss, loss of data, loss of profits, or loss of goodwill arising out of or in connection with your use of the App or the Site.
14. Changes to this Policy
We may update this Privacy Policy from time to time. When we make material changes we will update the "Last updated" date above and, where appropriate, notify waitlist subscribers by email. Your continued use of the App or the Site after the changes take effect constitutes acceptance of the updated Policy.
15. Contact
If you have any questions, concerns, or requests in relation to this Privacy Policy, or wish to exercise any of your rights, please contact:
- Email: privacy@locallm.app
- Postal address: Appricode Software Consultancy Ltd, Demsa Accounts, 565 Green Lanes, Haringey, London, England, N8 0RL