Privacy Policy

Ripple is designed around privacy by architecture, not policy alone. The desktop application stores your work locally, does not require an account, does not run analytics or telemetry, and does not sync your API collections to our servers — because we do not operate a sync service.

When you use Ripple, the sensitive material is yours: request URLs, headers, bodies, auth tokens, SQL queries, chat history with the on-device assistant, and API responses. That data stays on your machine unless you send it somewhere (for example, to an API you are testing, a Git remote you configure, or a model host you choose to download from).

This Privacy Policy explains how we handle information in:

• the Ripple desktop application (macOS, Windows, and Linux); and
• the Ripple marketing website at rippleai.dev.

“We,” “us,” and “our” refer to the operator of Ripple. “You” refers to anyone who visits the website or uses the application. Your use is also governed by our Terms of Service.

No accounts. No telemetry.

Ripple does not ask you to create an account to use the application. We do not embed analytics SDKs, crash-reporting services, or usage-tracking pixels in the app. We do not fingerprint your device or build advertising profiles from your activity.

Local-first storage

Application data is stored in a SQLite database (ripple.db) in your operating system's application data directory. Team workspace collections may additionally be stored as JSON files in folders you choose on disk. We do not receive copies of this data.

On-device AI (Son of Anton)

If you enable Son of Anton, large language model inference runs locally on your machine via a bundled inference stack. Prompts, responses, and tool-call context are not sent to Ripple's servers for processing. Optional model files are downloaded directly to your device from the sources configured in the app catalog.

Depending on how you use Ripple, local storage may include:

• saved collections, requests, folders, and OpenAPI design documents;
• request and response history, including headers and bodies;
• environment, global, and collection variables (including secrets you mark as such);
• per-collection cookies and auth configuration;
• application settings, UI layout, and tab state;
• Son of Anton chat history and action logs;
• SQL connection profiles and query history;
• mock-server route definitions and load-test configurations.

Secret values and credentials you store in Ripple remain on your device. Where supported, MCP server credentials may be stored in your operating system keychain. You are responsible for securing your device, backups, and any Git remotes or shared workspace folders you use.

Ripple is an API workbench — it makes network connections you initiate. We do not proxy your traffic through Ripple-operated servers.

• API testing. HTTP, WebSocket, SSE, Socket.IO, gRPC, and SQL connections go directly from your machine to the hosts and databases you specify.
• Software updates. The app may check for updates against a manifest URL configured at build time (for example, a self-hosted update server or GitHub Releases API). Update checks do not include your collections or request data.
• Model downloads. If you download an on-device LLM, the file is fetched from the model provider or mirror listed in the catalog.
• MCP servers. If you connect Son of Anton to external Model Context Protocol servers, those connections are between your machine and the endpoints you configure.
• Team workspaces. If you use Git with a workspace folder, pushes and pulls go to the Git remote you configure (GitHub, GitLab, self-hosted, etc.).

What the site collects today

The marketing website is a static site. We do not require login to browse it. We do not currently use first-party analytics or advertising cookies on rippleai.dev.

Hosting and infrastructure logs

Like any website, our hosting and CDN providers may automatically process technical data when you visit — for example, IP address, browser type, requested URL, and timestamp — in server access logs for security and reliability. We use this data only to operate and protect the site, not to track individuals across sessions for marketing.

Email waitlist (when available)

If you choose to join a download or launch waitlist on this website, we will collect the email address you provide and use it only to send product updates related to Ripple availability. You may unsubscribe at any time via the link in those emails.

Future analytics

If we add privacy-respecting analytics to this website in the future, we will update this policy and describe what is collected before it takes effect.

Desktop app. Data persists on your device until you delete it — by removing collections, clearing history, uninstalling Ripple, or deleting ripple.db and workspace folders. We do not retain copies on our servers.

Website. Server logs are retained only as long as needed for security and operations, then rotated or deleted. Waitlist emails are kept until you unsubscribe or ask us to delete them.

Because Ripple stores your work locally and we do not operate a cloud account system for the desktop app, most “access” and “deletion” requests are actions you perform directly in the app or on your filesystem.

If you are in the European Economic Area, United Kingdom, Switzerland, or other regions with privacy laws, you may have additional rights regarding personal data we process — for example, via the website waitlist or support email. To exercise those rights, contact us at gsrnlabs@gmail.com. We will respond within the timeframe required by applicable law.

Ripple is a developer tool not directed at children under 16. We do not knowingly collect personal information from children. If you believe a child has provided us information via the website, contact us and we will delete it.

We may update this Privacy Policy when our products or legal obligations change. We will revise the “Last updated” date at the top of this page. Material changes to how the desktop app handles data will also be communicated through release notes where appropriate.

Questions about this Privacy Policy or Ripple's data practices:

Email: gsrnlabs@gmail.com

See also our Terms of Service.