Privacy Policy

Last updated: July 4, 2026

Shipzen ("the App") is a macOS application for managing App Store Connect. It is developed and operated by Sardorbek Rakhimov, an independent software developer ("we", "us"). This policy describes how the App and this website (shipzen.app) handle your data. We built Shipzen local-first on purpose: the less of your data we ever touch, the less can go wrong.

Summary

Data Stored on Your Mac

The App keeps its data on your device:

You can delete all of this at any time by removing the App, its data container (via macOS storage management or ~/Library/Containers), and its Keychain items.

Network Connections the App Makes

The App connects only to the following services, and only when you use a feature that requires them:

The optional MCP server listens on localhost only and is protected by a per-install token. If you connect an external tool (for example an AI client on your Mac) to it, that tool processes your App Store Connect data under its own configuration and policies — review what you connect.

Purchases

Shipzen Pro is sold through the Mac App Store. Payment is handled entirely by Apple against your Apple ID: we never receive your name, email address, Apple ID, payment card, or billing details.

To unlock Pro features and prevent fraud, the App uses RevenueCat, a subscription infrastructure service, as our processor. RevenueCat receives a randomly generated anonymous identifier, App Store purchase receipt and transaction data, and basic app and device information (such as app version and platform). We do not attach your identity to this identifier, and neither we nor RevenueCat can see who you are from it. RevenueCat processes this data to validate purchases and give us aggregate sales statistics, under the RevenueCat Privacy Policy.

Diagnostics and Usage Events

To understand whether the App works reliably and whether its core features get used, the App can report a small set of events to PostHog, an analytics service acting as our processor. These events are deliberately content-free. They are limited to feature milestones (for example, that an account was connected, a first scan was run, or a first save was pushed) and technical measurements (request sizes and counts, the AI provider and model in use, timings, normalized error categories, and the App version), tied to a random install identifier that is not derived from you, your device serial, or your Apple ID.

Diagnostic events never include:

Where a build includes diagnostics, the App tells you on first launch, and you can turn diagnostics off at any time in the App's settings. Disabling stops all reporting and resets the install identifier. Diagnostics are never required for any feature to work. Builds without this capability send nothing.

This Website

shipzen.app is a static site hosted on Cloudflare Pages. Cloudflare, as our hosting provider, processes visitor IP addresses transiently as part of operating and securing its network. The site sets no tracking cookies and uses no advertising or social trackers. If analytics are enabled, we use Cloudflare Web Analytics, which is cookieless and does not fingerprint or identify visitors.

If you join the launch waitlist, we store your email address, the signup time, and which page section you signed up from, solely to tell you when Shipzen is available. Your IP address is used briefly (up to one hour) to rate-limit abuse and is not stored with your email. We do not use waitlist emails for any other marketing, do not share them, and delete them on request or once launch notifications are done.

What We Never Do

Legal Bases and International Transfers

Where the GDPR or similar laws apply, we rely on: performance of a contract (providing the App and processing purchases), legitimate interests (fraud prevention, security, and anonymous diagnostics and usage measurement), and consent (the waitlist). Our processors — RevenueCat, PostHog, and Cloudflare — may process data in the United States and other countries; each commits to lawful transfer safeguards in its own data processing terms.

Your Rights

Most data the App handles is under your direct control on your own device, and you can delete it yourself. For the little we are responsible for — a waitlist email or anonymous purchase and diagnostic records — you can contact us at [email protected] to request access, correction, or deletion, and we will act on it. Note that purchase and diagnostic records are held under random identifiers we cannot link to you, so in some cases we cannot locate data about you precisely because we never had your identity. You may also lodge a complaint with your local data protection authority.

Children's Privacy

Shipzen is a professional developer tool that requires an Apple Developer account. It is not directed at children under 13, and we do not knowingly collect information from children.

Changes to This Policy

If we change this policy, we will publish the revised version here with a new date, and note material changes in the App's release notes. Continued use of the App or website after an update constitutes acceptance of the revised policy.

Contact

Data controller: Sardorbek Rakhimov (Shipzen) — [email protected].