Privacy Policy
Transparency and security first. This page explains how we handle your data.
Last Updated: December 2024
Effective Date: December 2024
Table of Contents
Introduction
This Privacy Policy explains how Parsaa LTDA("Parsaa," "we," "us," or "our"), the company behind the Parsaa AI coding assistant, collects, uses, shares, and protects your personal information when you use our services.
Company Information:
- Legal Name: Parsaa LTDA
- Country: Brazil
- Website: https://parsaa.app
- Privacy Contact: privacy@parsaa.app
This Privacy Policy applies to:The Parsaa macOS application, our website at https://parsaa.app, and all related services (collectively, the "Services").
1. Information We Collect
We collect different types of information to provide and improve our Services.
1.1 Information You Provide Directly
Account Information:
When you create a Parsaa account, we collect:
- Email address
- Full name
- Password (encrypted and hashed - we never store plain text passwords)
- Company name (for Team/Enterprise plans)
- Billing address
Payment Information:
- Payment card information (processed and stored by our payment processor Stripe - we do not store complete card numbers or CVV codes)
- Billing history and transaction records
Support and Communications:
- Information you provide when contacting customer support
- Feedback, survey responses, or feature requests
- Email correspondence with us
1.2 Information Collected Automatically
Usage Data:
We automatically collect information about how you use Parsaa:
- Features used (Command+L chat, Command+K inline edit, autocomplete, agent mode, etc.)
- Frequency and duration of use
- Timestamps of activities
- Project and file types you work with (e.g., Swift, SwiftUI, Objective-C)
- Error messages and diagnostic information
Device and Technical Information:
- Device identifier (for license validation)
- macOS version
- Xcode version
- Parsaa application version
- IP address (temporarily, for security and fraud prevention)
- General location (country/region based on IP - not precise GPS location)
- System preferences and settings
1.3 Information We DO NOT Collect
We want to be crystal clear about what we DO NOT collect:
Your Source Code: We do not permanently store your code or Xcode project files on our servers
Chat History Content: Your chat conversations with the AI are stored locally on your Mac only
Keystrokes: We do not log keystrokes outside of Xcode interactions
Screen Recordings: We do not capture screenshots or record your screen
Files Outside Xcode: We do not access files or applications outside of Xcode
Browsing History: We do not track your web browsing
Credentials or Secrets: We filter and do not transmit API keys, passwords, or other secrets
Personal Files: We do not access your personal documents, photos, or other files
2. How We Use Your Information
We use collected information for the following purposes, based on appropriate legal grounds:
To Provide the Services
Legal Basis: Performance of Contract
- Process your AI coding requests and generate suggestions
- Enable codebase search and semantic analysis
- Provide autocomplete, chat, and other AI features
- Authenticate your account and validate your license
- Deliver customer support
- Process payments and manage subscriptions
To Improve and Develop Services
Legal Basis: Legitimate Interest
- Analyze usage patterns to improve features
- Identify and fix bugs and errors
- Conduct A/B testing for new features
- Develop new AI models and capabilities
- Optimize performance and reliability
- Understand which features users find most valuable
To Ensure Security and Prevent Fraud
Legal Basis: Legitimate Interest and Legal Obligation
- Detect and prevent fraudulent account creation or payment
- Protect against security threats and abuse
- Monitor for violations of our Terms of Service
- Verify user identity when necessary
- Investigate and respond to security incidents
To Communicate with You
Legal Basis: Performance of Contract, Legitimate Interest, or Consent
- Send service-related announcements (account changes, billing issues, security alerts)
- Respond to your support requests and inquiries
- Send product updates and new feature announcements
- Request feedback about your experience
- Send marketing communications (only with your opt-in consent)
To Comply with Legal Obligations
Legal Basis: Legal Obligation
- Respond to legal requests and court orders
- Comply with tax and financial regulations
- Meet data protection and privacy law requirements (LGPD, GDPR, etc.)
- Cooperate with law enforcement when legally required
3. Code Processing and AI Generation
This section is critical for understanding how Parsaa handles your most sensitive data: your source code.
3.1 How Code Processing Works
When you use Parsaa's AI features, here's exactly what happens:
Step 1: You Make a Request
You invoke a Parsaa command (Command+L for chat, Command+K for inline edit, Tab for autocomplete, etc.). You may select code context or Parsaa automatically includes relevant context.
Step 2: Context Collection
Parsaa collects the necessary context: your prompt or question, selected code (if any), current file content (if relevant), surrounding code context, project structure information (if codebase search is enabled).
Step 3: Transmission to Our Server
The prompt and context are sent via HTTPS to our API server at: api.parsaa.app. Server location: United States via Render. Encryption: TLS 1.3.
Step 4: Routing to AI Provider
Our server constructs a properly formatted request. The request is routed to the selected AI model provider (OpenAI, Anthropic, Google, etc.). The AI provider processes your request and generates a response.
Step 5: Response Delivery
The AI-generated response is sent back through our server. The response is delivered to your Parsaa application. The response appears in Parsaa/Xcode.
Step 6: Immediate Deletion
Your code and the AI response are IMMEDIATELY DELETED from our servers. We do not retain any copies. We do not store logs of your code. We do not build datasets from your requests.
3.3 Zero Data Retention Guarantee
We have configured our accounts with ALL AI providers to:
Opt-out of data retention - Providers do not store your requests
Opt-out of model training - Your code is not used to train AI models
Enterprise-grade privacy - We use enterprise API agreements with strict data handling terms
Immediate deletion - Requests are processed and immediately discarded
This applies to all providers we use: OpenAI (GPT-4, o1, o3-mini), Anthropic (Claude 3.5 Sonnet, Claude 4), Google (Gemini Pro)
Summary of Key Privacy Protections
For your convenience, here's a quick summary of our most important privacy commitments:
Your Code is Never Stored - We immediately delete code after AI processing, zero retention on our servers, chat history stored only locally on your Mac
No Training on Your Code - We opt-out of all AI provider training programs, your code is never used to improve AI models, explicit opt-in required if this ever changes
Local Storage First - Codebase embeddings stored on your Mac, chat history never leaves your device, you control local data deletion
Transparent Third-Party Sharing - Clear list of all AI providers, purpose specified for each, no selling of personal information
Strong Security - TLS 1.3 encryption in transit, access controls and monitoring, regular security testing
Global Compliance - LGPD (Brazil), GDPR (EU), CCPA (California), other applicable laws
5. Data Storage and Local Storage
Data Stored on Our Servers
Minimal server storage:
- Account information (email, name, hashed password)
- Subscription and billing records
- License keys and activation records
- Anonymized analytics data
Data Stored Locally on Your Mac
Extensive local storage at ~/Library/Application Support/Parsaa/:
- Complete chat history with the AI
- Codebase embeddings (vector representations)
- User preferences and settings
- Voice input transcripts (if using Agent Mode)
6. International Data Transfers
Your data may be processed in multiple locations:
Data Processing Locations
Our Servers:
- Primary location: United States via Render
AI Providers:
- OpenAI: United States
- Anthropic: United States
- Google: United States and global regions
7. Data Retention
We retain different types of data for different periods based on legal requirements and business needs.
Code and AI Requests
Retention: ZERO
Your code is never permanently stored. AI requests processed in real-time and immediately deleted after response generation.
Chat History
Retention: Indefinite (Local Only)
Stored only on your Mac. We have no access to chat history. You control retention and deletion.
Analytics Data
Retention: 6 months
Usage events and feature interactions in anonymized form. Aggregated statistics may be retained indefinitely.
Billing Records
Retention: 5 years
Required for tax compliance. Invoice records, payment history, and subscription records.
8. Your Privacy Rights
You have important rights regarding your personal data. The specific rights available to you depend on your location.
LGPD
Brazil
GDPR
European Union
CCPA
California, USA
9. Security Measures
We take the security of your information seriously and implement industry-standard safeguards.
Technical Security
- TLS 1.3 encryption for all data transmitted over the internet
- Role-based access control (RBAC) for internal systems
- Multi-factor authentication for administrative access
- Firewalls and intrusion detection systems
Organizational Security
- Security awareness training for all employees
- Data protection and privacy training
- Incident response plan and procedures
- Regular security assessments and testing
11. Children's Privacy
Our Services are not intended for children under the age of 18.
Age Restriction
- You must be at least 18 years old to use Parsaa
- We do not knowingly collect information from anyone under 18
- Our Terms of Service prohibit use by minors
If you are a parent or guardian and believe your child has provided us with personal information, contact us immediately at privacy@parsaa.app
12. Third-Party Services and Links
Third-Party Links
Our website and Services may contain links to third-party websites:
- Apple Developer documentation
- Open-source project repositories (GitHub)
- Educational resources
We are not responsible for the privacy practices of third-party websites. We recommend reviewing their privacy policies before providing information.
Apple Xcode Integration
Parsaa integrates deeply with Apple Xcode:
- Xcode is a product of Apple Inc.
- Apple may collect its own data through Xcode
- We do not control Apple's data practices
- Review Apple's Privacy Policy: https://www.apple.com/privacy/
13. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices.
How We Notify You
For Material Changes:
- Email notification to your registered email address
- In-app notification when you open Parsaa
- Prominent notice on our website
- Advance notice of at least 30 days
For Minor Changes:
- Update of "Last Updated" date
- Changes effective immediately upon posting
- Your continued use constitutes acceptance
14. Contact Information
Privacy Questions and Requests
privacy@parsaa.app
We aim to respond within 24-48 hours
General Support
support@parsaa.app
https://parsaa.app/support
15. Jurisdiction-Specific Information
We comply with data protection regulations worldwide.
LGPD
Brazil
Lei Geral de Proteção de Dados compliance
GDPR
European Union
General Data Protection Regulation compliance
CCPA
California, USA
California Consumer Privacy Act compliance
Document Version: 1.0
Last Updated: December 2024
Effective Date: December 2024
© 2024 Parsaa LTDA. All rights reserved.
Parsaa is a product of Parsaa LTDA, a Brazilian company.