Privacy — short because there's nothing to collect.

Summary

Callahan is local-first software. By default, no data leaves your machine. If you configure an AI provider (Anthropic, OpenAI, etc.), their terms apply to the requests you send. This website collects minimal, anonymous analytics.

What the software collects

Nothing, by default. The Callahan binary does not make outbound network requests except to:

• Git remotes you explicitly configure.
• AI providers you explicitly configure (see §04).
• Container registries you explicitly pull from.

There is no built-in analytics, no crash reporter that activates silently, and no update check unless you run callahan update.

Telemetry (opt-in)

If you enable telemetry with CALLAHAN_TELEMETRY=1, the client sends anonymised usage counters — commands invoked, durations, OS, Callahan version. It does not send repository contents, file paths, secrets, or logs. Telemetry can be disabled at any time.

AI providers

When you configure a cloud AI provider, the prompt and context Callahan constructs are sent to that provider using your API key. Providers have their own retention policies — review them before enabling. To keep everything local, configure Ollama instead.

This website

callahanci.com is a static site hosted on Vercel. It uses first-party, privacy-respecting analytics that record only aggregate page views — no cookies, no cross-site tracking, no IP-based profiles. The full data set is a daily count per page.

Your rights

Because the software keeps no personal data, there is nothing to export, correct, or delete on our side. For data held by AI providers you enabled, contact them directly. For website analytics (which are anonymous in aggregate) we cannot identify individual records.

Contact

Questions or security reports: open an issue on GitHub, or use the address listed in SECURITY.md. We respond to security reports within 72 hours.