Privacy
What leaves your computer when you use Sig, and what doesn’t. Plain English, no legalese.
1. Your memory stays on your computer
People, projects, weeks, thoughts — Sig writes them as plain markdown files in the folder you chose during setup. There is no Sig-operated server holding your content. You can open the folder, read the files, copy them, or delete them at any time. If you uninstall Sig, your notes stay on your computer.
2. Your messages go to your chosen AI provider, directly
When you send a message in Sig, your computer talks to your chosen AI provider (for example Claude, ChatGPT, or Gemini). Sig does not proxy, log, or intercept those requests. Your provider keys live in your computer’s secure keychain.
Each provider has its own privacy policy that governs how it handles your message contents. Sig is not a party to that relationship.
3. Optional connections only run when you turn them on
Sig supports optional integrations that are off by default. You enable them, you can disconnect them, and they are clearly listed in the app’s Integrations area. When enabled:
- Slack — Sig reads your message history from Slack’s servers and saves a local copy in your profile folder.
- Team knowledge base — Sig can prepare proposed updates. Every proposal is shown to you for line-by-line approval before anything is sent.
- Voice input — Sig sends the audio to Groq to convert it to text.
4. Anonymous usage events
Sig sends a small set of anonymous events so we can catch crashes, fix bugs, and prioritize product work. These events go to PostHog Cloud EU (eu.i.posthog.com). Nothing leaves the EU region.
What is sent: event names from a fixed allowlist (for example, which skill ran, which provider family answered), Sig version, operating system, and crash details with file paths scrubbed. The full allowlist is shipped with the app and visible in docs/analytics.md.
What is never sent:
- Message content or conversation text
- File contents or file paths
- Prompt text
- Your name, your email, or other personal identifiers
- Specific model names
- Anything from your Sig folder
5. Email and website tracking
If we send you a campaign email (for example, a launch announcement to the early-access list) we record that the email was delivered, opened, and which links you clicked. We also record visits to sig-ai.app that originated from those emails so we can see which messages reach you and which content is useful.
This tracking is server-side; no third-party trackers are loaded. The data flows through PostHog Cloud EU alongside the in-app analytics described above. Tracking metadata (open timestamps, click URLs, IP addresses, user agents) is collected; the contents of replies you send to us are not.
To opt out of future campaign emails, reply to any campaign email and we will remove you from the list.
6. What we don’t do
- We do not sell your data.
- We do not train AI models on your content.
- We do not run advertising or share your data with advertisers.
- We do not have a server-side copy of your captures or notes.
7. Third-party services we rely on
- Your chosen AI provider (Claude, ChatGPT, Gemini, etc.) — receives your messages directly when you send them. Governed by that provider’s own terms.
- PostHog Cloud EU — receives the anonymous usage events described in section 4.
- Groq — if you enable voice input, receives the audio for speech-to-text.
- Slack — if you connect it, Sig reads your history from Slack’s API.
- Your team’s knowledge base provider (for example, GitHub) — if you connect one, Sig sends approved updates there.
8. Children
Sig is intended for use by adults in a professional context and is not directed at children under 13.
9. Changes to this policy
If we change this policy in a way that affects what data is collected or how it’s handled, we will update the “Last updated” date above and, for material changes, notify users in-app or via email if we have one on file from the early-access list.
10. Contact
Questions, requests to delete data we hold (the small allowlisted analytics events), or anything else: privacy@sig-ai.app.