1. Introduction

Welcome to X Engine Terminal ("we," "our," or "us"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our terminal application.

2. Information We Collect

2.1 Authentication Information

When you authenticate using Google or GitHub OAuth, we collect:

• Your name and email address
• Your profile picture (if available)
• Your unique user identifier from the authentication provider
• Authentication tokens (stored securely using OS-level credential storage)

2.2 Application Usage Data

We collect the following usage data locally on your device:

• Terminal session information (stored locally)
• SSH connection configurations (stored locally and encrypted)
• Application settings and preferences
• Usage analytics (total sessions, tabs created, commands executed) - stored locally only

2.3 API Tokens

If you choose to provide API tokens (GitHub Personal Access Token, Gemini API Key), these are stored securely using OS-level credential storage (keytar) and are never transmitted to our servers. These tokens are used only for the functionality you explicitly enable.

3. How We Use Your Information

We use the information we collect to:

• Authenticate and identify you within the application
• Provide and maintain the terminal service
• Store your SSH session configurations locally
• Enable GitHub integration features (git operations)
• Enable AI-powered features (link autocomplete, chat assistant) using your provided Gemini API key
• Improve user experience and application functionality
• Display your profile information in the application interface

4. Data Storage and Security

4.1 Local Storage

Most of your data is stored locally on your device:

• Application settings and preferences
• SSH session configurations
• Usage analytics

4.2 Secure Credential Storage

Sensitive information (authentication tokens, API keys, SSH passwords) is stored using OS-level secure credential storage (keytar), which provides encryption and protection against unauthorized access.

4.3 Data Transmission

When you use OAuth authentication, your authentication data is transmitted directly to:

• Google OAuth servers (for Google authentication)
• GitHub OAuth servers (for GitHub authentication)

We do not intercept or store your OAuth credentials on our servers. Authentication tokens are stored locally on your device only.

5. Third-Party Services

5.1 Google Services

When you authenticate with Google, your data is handled according to Google's Privacy Policy. We use Google OAuth solely for authentication purposes.

5.2 GitHub Services

When you authenticate with GitHub or use GitHub tokens, your data is handled according to GitHub's Privacy Policy. We use GitHub OAuth and API tokens for authentication and git operations.

5.3 Google Gemini API

If you provide a Gemini API key, your terminal commands and queries may be sent to Google's Gemini API for AI-powered features. This is done using your own API key, and we do not have access to this data.

6. Data Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following circumstances:

• With Your Consent: When you explicitly authorize us to share information
• Service Providers: With third-party services (Google, GitHub) as necessary for authentication and functionality
• Legal Requirements: When required by law or to protect our rights and safety

7. Your Rights and Choices

You have the right to:

• Access your personal information stored in the application
• Delete your authentication tokens and logout
• Remove stored SSH session configurations
• Delete stored API tokens (GitHub, Gemini)
• Clear local usage analytics
• Uninstall the application, which will remove all locally stored data

8. Cookies and Tracking

X Engine Terminal does not use cookies or web-based tracking technologies. All data is stored locally on your device or transmitted only to the authentication providers you choose.

9. Children's Privacy

Our application is not intended for users under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. When you use OAuth authentication, your data may be processed by Google or GitHub servers located in various countries. By using our application, you consent to such transfers.

11. Data Retention

We retain your information for as long as necessary to provide our services:

• Authentication tokens: Until you logout or uninstall the application
• SSH session configurations: Until you delete them or uninstall the application
• Usage analytics: Stored locally until you clear them or uninstall the application

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. You are advised to review this Privacy Policy periodically for any changes.

13. Contact Us