Privacy Policy
Last updated: March 2026
Reach is designed so we don't need your data. Your code never leaves your Mac. This policy explains what we collect, why, and how we protect it—in plain language.
Reach Technologies Limited (company number 79960140) is the data controller for the purposes of this Privacy Policy.
1. Overview
Reach is a remote development tool that connects your iPhone to your Mac. Our architecture is intentionally simple: we do not store your source code, terminal output, file contents, or git history. The relay that enables remote connections forwards only encrypted bytes—it cannot read or log what passes through it.
We do use lightweight, anonymous analytics to understand how features are used and error reporting to keep the apps stable. Neither service receives your code, files, terminal output, or any content from your development environment.
We comply with Hong Kong's Personal Data (Privacy) Ordinance (PDPO) and the six Data Protection Principles. This policy tells you what personal data we collect and how we handle it.
2. What We Collect
Data we do NOT collect
We do not collect, store, or have access to:
- Your source code
- Terminal output or command history
- File contents or git history
- Browsing activity through the in-app port proxy
- Any development work or data on your Mac
- Your name, email address, or Apple ID
All traffic between your iPhone and Mac is end-to-end encrypted. When you use the relay for remote access, it sees only ciphertext. It cannot decrypt, inspect, or log the content of your sessions.
Data we do collect
Device pairing data
When you pair your iPhone to your Mac, a relay token (a JWT containing a pair identifier) is created and stored on your devices in the device's secure storage (Keychain). This token is used to authenticate your connection to the relay. We do not store or receive a copy of this token on our servers.
Relay connection metadata
For relay routing, we temporarily hold in memory: the IP address of connecting devices and connection timestamps. This data is used only to maintain active WebSocket sessions between your paired devices. It is not written to disk, not logged, and is discarded when the connection closes. The relay server is stateless—no persistent database of user sessions exists.
Apple subscription data
If you subscribe to Reach Remote, Apple processes your payment. We receive anonymized transaction receipts from Apple to verify your Remote entitlement. We do not receive your payment method, billing address, or Apple ID. Subscription management is handled entirely by Apple.
Anonymous product analytics
We use PostHog to collect anonymous usage events in the Reach iOS app and Reach Server macOS app. This includes things like which features you use (e.g. terminal opened, branch switched, onboarding step completed), which screens you visit, and general product interactions. Analytics data is not linked to your identity—we do not send your name, email, Apple ID, or any personally identifiable information to PostHog. No content from your development environment (code, files, terminal output, git history) is ever included.
You can disable analytics at any time in the app's settings. When disabled, no usage events are sent.
Error and performance reporting
We use Sentry to collect crash reports, error logs, and performance data from the Reach iOS app, Reach Server, and the relay service. This includes stack traces, device metadata (OS version, app version, device model), and performance timing data. Sentry does not receive your name, email, or any content from your development environment. Error reporting helps us identify and fix bugs that affect your experience and is always active.
3. How We Use Your Data
We use the data described above only for these purposes:
| Data | Purpose |
|---|---|
| Relay token | To route encrypted traffic between your paired iPhone and Mac |
| Connection metadata | To maintain active relay sessions; discarded on disconnect |
| Subscription receipts | To verify your Remote entitlement and enable remote access |
| Anonymous analytics | To understand feature usage and improve the product; opt-out available in settings |
| Error and performance reports | To diagnose crashes, fix bugs, and maintain app stability |
We do not use your data for advertising, marketing, or selling to third parties. We do not build user profiles. Analytics are aggregate and anonymous.
4. Data Retention
We retain minimal data by design:
- Relay: Stateless. The relay holds connection metadata only in memory during an active session. No logs of user activity are stored. Data is cleared when the connection ends or the server restarts.
- Subscription status: Cached locally on your devices and verified with Apple's servers. We do not maintain a separate database of subscribers.
- Analytics: Retained by PostHog in accordance with their default retention policies. All data is anonymous and not linked to your identity.
- Error reports: Retained by Sentry in accordance with their default retention policies. Used only for debugging and performance monitoring.
We do not operate our own server-side database of user data.
5. Data Security
We take security seriously:
- End-to-end encryption: All traffic between your iPhone and Mac is encrypted with mutual TLS (mTLS) and pinned certificates. The relay cannot decrypt it.
- Relay as a dumb pipe: The relay forwards WebSocket frames—it does not inspect, buffer, or log payload content.
- Relay tokens: Signed with HMAC-SHA256. Stored only on your devices in Keychain, not on our servers.
- No plaintext user data: No plaintext user data ever reaches Reach's infrastructure.
- EU-hosted services: Both PostHog and Sentry are hosted in the European Union, subject to EU data protection standards.
We use reasonable technical and organizational measures to protect the relay infrastructure. Your development data, however, never leaves your Mac in a form we can access.
6. Third-Party Services
We rely on a small set of third parties for infrastructure and product improvement:
| Service | Role | Data involved |
|---|---|---|
| Apple | App distribution, In-App Purchase, TestFlight | Apple manages subscription and payment data. |
| Google Cloud Platform | Relay hosting (GCP asia-east2) | Infrastructure only. Our relay runs on GCP; no user content is processed by Google. |
| Caddy | TLS termination for the relay | Handles HTTPS/WSS; no data logging. |
| PostHog | Anonymous product analytics (EU-hosted) | Anonymous usage events and screen views. No personally identifiable information. No code, files, or development content. Opt-out available in settings. |
| Sentry | Error and performance monitoring (EU-hosted) | Crash reports, error logs, stack traces, device metadata, and performance traces. No personally identifiable information. No code, files, or development content. |
We do not use advertising networks or data brokers. We do not sell or share your data with third parties for marketing purposes.
7. Your Choices
- Analytics opt-out: You can disable PostHog analytics at any time in the app's settings. When disabled, no usage events are collected. This does not affect the functionality of the app.
- Error reporting: Sentry error and performance reporting is always active. This data is essential for maintaining app stability and is anonymous.
8. Your Rights
Under Hong Kong's PDPO and the six Data Protection Principles, you have the right to:
- Know what data we hold: We hold no personally identifiable data on our servers. Relay tokens are on your devices. Connection metadata is ephemeral. Analytics and error data are anonymous.
- Access and correction: If you believe we hold any personal data about you, contact us at privacy@reach.engineer. We will respond within a reasonable time.
- Deletion: To "delete" your pairing data, unpair your devices in the app. This removes the relay token from your devices. Analytics and error data cannot be attributed to you because it was never linked to your identity.
If you have concerns about how we handle your data, you may also contact the Office of the Privacy Commissioner for Personal Data, Hong Kong (www.pcpd.org.hk).
9. Children's Privacy
Reach is not directed at children under 13. We do not knowingly collect personal data from children under 13. If you are under 13, you may not use Reach. If you are a parent or guardian and believe your child has provided us with personal data, contact us at privacy@reach.engineer and we will take steps to address it.
10. International Users
The relay is hosted in Hong Kong (Google Cloud asia-east2). Connection metadata is processed there. Analytics and error reporting data is processed in the European Union by PostHog and Sentry, respectively. Because we collect minimal data, do not store it persistently on our own servers, and do not link it to your identity, cross-border transfer concerns are limited. If you use Reach from outside these regions, you consent to this processing.
11. Changes to This Policy
We may update this Privacy Policy from time to time. For material changes, we will provide at least 30 days' notice via the app, website, or email (if we have your contact information). The "Last updated" date at the top reflects the effective date.
Your continued use of Reach after the effective date constitutes acceptance of the updated policy. If you do not agree, stop using the Service before the effective date.
12. Contact
For privacy-related questions, requests, or concerns:
We will respond within a reasonable time, typically within 30 days.
© 2026 Reach Technologies Limited. All rights reserved.