Privacy Policy
Last updated: April 6, 2026
Asyar ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains what information we collect, how we use it, and the choices you have. By using Asyar, you agree to the practices described here.
1. Information We Collect
Account information (via OAuth)
When you sign in with GitHub or Google, we receive your name, email address, and profile picture URL from that provider. We do not receive or store your password for these services. We only request the minimum scopes needed to identify you.
Subscription information
If you subscribe to a paid plan, we store your subscription status, plan details, and billing period. Payment processing is handled by a third-party payment provider — we never store your full card number or payment credentials.
Desktop app data
The Asyar desktop application stores your settings, extension preferences, and (when cloud sync is enabled) your encrypted settings data on our servers. All data synced to the cloud is encrypted before leaving your device.
Usage data
We may collect anonymous, aggregated usage metrics (such as which features are used most) to improve the product. This data cannot be used to identify you individually.
2. How We Use Your Information
- To create and manage your account
- To authenticate you and issue secure access tokens to the desktop application
- To deliver the features included in your subscription plan
- To sync your settings across devices (only when you have enabled cloud sync)
- To respond to support requests and communications from you
- To send important service-related notifications (security updates, billing changes)
- To improve the product using aggregated, anonymous usage data
We do not sell, rent, or share your personal information with third parties for marketing purposes.
3. Third-Party Services
We use the following third-party services:
- GitHub OAuth — for sign-in. Subject to GitHub's Privacy Policy.
- Google OAuth — for sign-in. Subject to Google's Privacy Policy.
- Payment provider — for processing subscription payments. We share only the minimum information required to complete a transaction.
4. Data Security
Access tokens issued to the desktop application are encrypted at rest using AES-256-GCM with a machine-derived key. Synced data is encrypted on your device before transmission. We use HTTPS for all network communication. We regularly review our security practices and update them as the application evolves.
5. Data Retention
We retain your account data for as long as your account is active. If you delete your account, we remove your personal information within 30 days, except where we are required to retain it for legal or compliance reasons.
6. Your Rights
You have the right to:
- Access the personal data we hold about you
- Correct inaccurate data
- Request deletion of your account and associated data
- Disable cloud sync at any time from the desktop application settings
- Revoke Asyar's OAuth access from your GitHub or Google account settings at any time
To exercise any of these rights, contact us at the address below.
7. Children's Privacy
Asyar is not directed at children under 13. We do not knowingly collect personal information from children under 13. If you believe we have inadvertently collected such data, please contact us and we will delete it promptly.
8. Changes to This Policy
We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date at the top of this page. If the changes are material, we will notify you via email or through the application. Continued use of Asyar after changes take effect constitutes your acceptance of the revised policy.
9. Contact
If you have questions or concerns about this Privacy Policy, please open an issue or discussion on our GitHub repository, or reach us through the contact information listed on asyar.org.