Plain-language summary
Clovis is designed so your ledger can stay on your machine. The public website does not operate a hosted Clovis account for your transactions, balances, budgets, reports, or imported statements. This policy explains what Clovis Computing controls, what it does not control, and what you should avoid sending through public support channels.
What this policy covers
This policy covers the cloviscomputing.com website, support email, and project communications controlled by Clovis Computing. It does not control GitHub, npm, Cloudflare, AI providers, your MCP client, your terminal, your operating system, your bank, or any other third-party service.
Local-first financial data
Clovis is built around local ledger files and statement imports. We do not automatically receive, host, sync, inspect, sell, or process your ledger, transaction history, statement files, account balances, categories, budgets, reports, backups, account numbers, merchant history, tax records, or financial exports simply because you visit the website, install the package, clone the repository, or run Clovis locally.
Information you choose to send
We may receive information you choose to provide, including support emails, GitHub issue content, pull requests, comments, security reports, screenshots, logs, reproduction steps, package versions, operating-system details, command output, example files, business inquiries, and contact information. Public GitHub issues and pull requests may be visible to anyone.
Do not send private financial records, full bank statements, account numbers, login credentials, API keys, secrets, seed phrases, personal identification documents, tax records, payroll records, client data, medical information, or other highly sensitive data unless we have specifically agreed to a safe private process and you have redacted anything unnecessary.
Website technical data
Like most websites, hosting and security providers may process technical request data such as IP address, browser information, device information, requested URL, referrer, timestamps, and basic security logs. We use this information to serve the website, maintain reliability, troubleshoot issues, and protect against abuse.
We use Cloudflare Web Analytics and related Cloudflare dashboard metrics to understand aggregate page traffic, performance, referrers, request patterns, crawler activity, AI crawler activity, and abuse signals for the public website. These analytics are for operating and improving the website; they are not used to inspect local Clovis ledger files, statements, prompts, account names, account numbers, license keys, balances, budgets, reports, or financial records.
Cookies and similar technologies
The current public website is intended to be a simple static site and does not intentionally place advertising cookies or operate a hosted Clovis user account. Cloudflare Web Analytics may load a performance beacon to measure page views and browser performance. Hosting, security, browser, or third-party link destinations may still use logs, cookies, local storage, or similar technologies under their own policies. If we add account features, payments, hosted services, or marketing tools later, this policy should be updated before or when those features are introduced.
GitHub, npm, and AI providers
GitHub and npm process data under their own policies when you view the repository, open an issue, publish comments, install packages, or use registry services. If you connect Clovis to an AI client or provider, the information sent to that provider depends on your local client, your prompt, your configuration, and the tools you enable.
AI and local tools
Clovis can expose local bookkeeping tools to MCP-compatible clients. Clovis Computing does not automatically receive prompts, model outputs, tool calls, ledger rows, or statement files from your local MCP use. However, your AI client, model provider, operating system, logging tools, or other integrations may process that information depending on your configuration. Review those tools before connecting them to financial records.
How we use information
We use website, support, and project communication information to:
- respond to support requests and project questions;
- operate, debug, secure, and improve the website and project;
- investigate abuse, security reports, or reliability problems;
- triage bugs, reproduce issues, review pull requests, and update documentation;
- communicate about package status, project changes, licensing, or support when you contact us;
- maintain reasonable project and business records; and
- comply with legal obligations when required.
Legal bases where required
Where laws such as GDPR or similar frameworks require a legal basis, we process personal information based on one or more of the following: your consent, performance of a contract or pre-contractual request, legitimate interests in operating and securing the project, compliance with legal obligations, and protection of rights, safety, and security.
Sharing
We do not sell financial data. We may share limited website, support, and project communication information with service providers that help operate the website, email, package distribution, source hosting, security, diagnostics, or legal compliance. We may also disclose information if required by law or to protect the project, users, or others.
Service providers and public platforms
We may use service providers and public platforms for hosting, domain services, email, source control, package distribution, security, diagnostics, and project operations. These providers may process technical, account, or communication data as independent controllers, processors, or service providers depending on the relationship and the applicable law.
No sale of personal information
We do not knowingly sell personal information or share personal information for cross-context behavioral advertising through the public Clovis website. We also do not knowingly sell ledger data, statement data, or financial records.
Retention
We keep support and operational records for as long as needed to respond, operate the project, maintain reasonable records, comply with legal obligations, resolve disputes, and prevent abuse. You control local ledger files stored on your own machine.
Security
We use reasonable administrative, technical, and organizational measures appropriate to a small public software project and the information we control. No website, repository, registry, email account, device, package, model, or network is perfectly secure. You are responsible for securing your own devices, ledgers, backups, credentials, local networks, package installs, AI clients, and files.
International transfers
Website, support, repository, package, email, and infrastructure providers may process information in countries other than where you live. Those countries may have privacy laws that differ from your location. By using the website, support channels, GitHub, npm, or related services, your information may be transferred and processed where those providers and Clovis Computing operate.
Your choices
You can avoid sending private financial data by running Clovis locally, redacting support examples, and choosing what you share in GitHub issues, emails, prompts, and AI-client configurations. You can request support-record access or deletion by emailing us, subject to security, legal, and recordkeeping limits.
Your privacy rights
Depending on where you live, you may have rights to request access, correction, deletion, portability, restriction, objection, withdrawal of consent, or appeal of certain privacy decisions. These rights are subject to legal limits, identity verification, security needs, public GitHub record constraints, open-source project integrity, and retention obligations.
Children
Clovis is not directed to children. Do not use the website, package, support channels, or project resources if you are not old enough to enter into these terms or provide personal information under the laws that apply to you.
Changes to this policy
We may update this policy as Clovis, the website, support channels, paid offerings, or service providers change. The updated date shows when the current version was posted.
Contact
Privacy questions can be sent to support@cloviscomputing.com.