Back to home

Privacy Policy

Last updated: February 16, 2026

Overview

Robyn ("we", "our", or "the app") is a desktop application for macOS that functions as a personal AI assistant, developed by HelloButter Inc. We are committed to protecting your privacy. This policy explains how Robyn handles your data and applies to all users of the Robyn application and the heyrobyn.ai website.

Data Storage

All your data is stored locally on your Mac. Robyn runs a local server on your machine and stores all user data in a local SQLite database. We do not operate cloud servers for storing user data, do not sync your data to external services, and do not collect or transmit your personal information to us.

Data stored locally includes:

  • Messages from connected services (WhatsApp, Telegram, Gmail, iMessage)
  • Contact information synced from your accounts
  • Calendar events from Google Calendar and Cal.com
  • AI-generated briefings, summaries, and meeting notes
  • Call logs and transcriptions
  • Task lists and to-do items
  • App settings and preferences
  • Authentication tokens for connected services

This data is stored in a local SQLite database at ~/.robyn/ on your Mac and is never transmitted to our servers.

Account & Authentication

Robyn uses Apple Sign-In for account creation and authentication. When you sign in:

  • Your Apple ID identity token is verified locally to create your account
  • We store a minimal user record (user ID, name, email) in the local database
  • Your authentication token is stored securely in the macOS Keychain
  • We do not transmit your Apple ID credentials to any external server

Payment processing: If you subscribe to Robyn, payments are handled by Stripe. We do not store your credit card information. Stripe processes your payment securely and provides us only with a subscription identifier to manage your account. See Stripe's Privacy Policy for details.

Third-Party Services

Robyn connects to the following third-party services when you choose to enable them. Each connection is initiated by you and can be disconnected at any time from the app's Settings.

Google Services (Gmail, Google Calendar, Google Contacts)

When you connect your Google account, Robyn uses the Google OAuth 2.0 protocol to authenticate. Robyn requests access to the following scopes:

  • Gmail (gmail.modify, gmail.send) — Read your emails to display them in the unified inbox, mark emails as read when you view them, and send emails or replies on your behalf when you explicitly request it
  • Google Calendar (calendar.events) — Read your calendar events to display them in the daily briefing and calendar view, and create or modify events when you request scheduling actions
  • Google Contacts (contacts.readonly) — Read your contacts to match names with phone numbers and email addresses for message display and caller identification

How Google data is used:

  • Gmail messages are fetched and stored locally to power your unified inbox and daily briefing
  • Calendar events are fetched and stored locally to show your schedule and generate briefing summaries
  • Contact information is used locally for name resolution across all messaging channels
  • When you use AI features (such as generating a briefing summary or drafting an email reply), relevant content (e.g., email subject lines, calendar event titles) may be sent to AI service providers (Anthropic or OpenAI) for processing. Only the minimum content needed for the specific task is sent. The AI providers do not retain this data beyond the API request.

How Google data is NOT used:

  • Google user data is never used for advertising or marketing purposes
  • Google user data is never sold to or shared with third parties
  • Google user data is never used to train AI models
  • Google user data is never transmitted to our servers or any server we operate

Your Google OAuth tokens are stored locally on your Mac in the macOS Keychain. All Google API requests are made directly from your device. You can revoke access at any time from your Google Account permissions page or by disconnecting Google from Robyn's Settings.

iMessage

With your permission (macOS Full Disk Access), Robyn reads your local iMessage database to display messages in the unified inbox. Messages are read from Apple's local database on your Mac (~/Library/Messages/chat.db). Robyn does not modify or delete your iMessage data. Sending iMessages uses AppleScript automation on your device.

WhatsApp

Robyn connects to WhatsApp using the WhatsApp Web protocol. Your WhatsApp session is established locally on your Mac. Messages are received and stored locally. Robyn can send WhatsApp messages on your behalf when you explicitly request it.

Telegram

Robyn connects to Telegram using the Telegram API (GramJS). Your Telegram session is established locally on your Mac. Messages are received and stored locally.

AI Services (Anthropic, OpenAI)

Robyn uses third-party AI APIs to power intelligent features including daily briefings, email drafts, message summaries, meeting notes, and voice agent conversations. When using these services:

  • Only the specific content needed for the AI task is sent to the API (e.g., an email body to summarize, or a calendar event to include in a briefing)
  • AI API providers (Anthropic, OpenAI) process requests in real-time and do not retain your data beyond the API call, per their data processing agreements
  • Your data is not used by these providers to train their AI models
  • API keys used to access these services are managed securely and not stored on your device in plaintext

ElevenLabs (AI Voice Agents)

If you create AI voice agents, Robyn uses ElevenLabs' Conversational AI platform. Your agent's system prompt and configuration are sent to ElevenLabs to create the agent. During active voice calls, conversation audio is processed by ElevenLabs in real-time. Call transcripts may be stored by ElevenLabs per their data retention policy. See ElevenLabs' Privacy Policy.

Telnyx (Phone Numbers & Voice Calls)

If you enable AI phone calls, Robyn uses Telnyx for telephony services. Telnyx provides phone numbers and routes voice calls. Call audio is processed in real-time through Telnyx's network. Call records (duration, phone numbers) are stored by Telnyx per their service terms. See Telnyx's Privacy Policy.

Cal.com (Scheduling)

If you connect Cal.com, Robyn reads your upcoming bookings to include them in daily briefings and calendar views. Your Cal.com API key is stored locally. Booking data is fetched directly from Cal.com's API and stored locally.

Todoist (Task Management)

If you connect Todoist, Robyn reads and manages your tasks to include them in daily briefings and the task view. Your Todoist API token is stored locally. Task data is fetched directly from Todoist's API.

Data We Collect

We do not collect any personal data. Robyn does not have analytics, tracking, or telemetry. We do not know who uses the app, how they use it, or what data they process.

The only network request Robyn makes to our infrastructure is to a secure key server (hosted on Cloudflare Workers) to retrieve API configuration at app startup. This request does not transmit any user data — it only authenticates the app installation and returns service configuration.

Data Sharing

We do not sell, rent, share, or transfer your personal data to any third parties for their own purposes. The only data that leaves your Mac is:

  • Messages you choose to send through connected services (Gmail, WhatsApp, Telegram, iMessage)
  • Content sent to AI APIs for processing (briefing summaries, email drafts, meeting transcription) — only the minimum content needed for the specific task
  • Voice call audio routed through Telnyx and ElevenLabs during active AI voice calls
  • Agent configuration sent to ElevenLabs when creating or updating AI voice agents
  • Payment information processed by Stripe when subscribing

All of these are direct connections from your Mac to the respective service — they do not pass through our infrastructure.

Data Retention

Since all data is stored locally on your Mac, data retention is under your control:

  • Local data — Stored indefinitely until you delete it or uninstall the app
  • Google OAuth tokens — Stored in macOS Keychain until you disconnect Google from Settings or revoke access from your Google Account
  • Cached Google data — Gmail messages and calendar events are stored locally and refreshed periodically. You can clear all cached data from Settings
  • AI service data — Not retained by AI providers (Anthropic, OpenAI) beyond the duration of each API request
  • Voice call data — Call logs stored locally. Call audio is not stored locally; it is processed in real-time by Telnyx/ElevenLabs

Data Deletion

Since all data is stored locally on your Mac, you have full control over it:

  • Disconnect any service at any time from Settings to stop data collection from that service
  • Delete your local database by removing the ~/.robyn/ directory
  • Uninstalling the app and removing ~/.robyn/ deletes all app data from your Mac
  • Revoke Google access from your Google Account permissions page to immediately revoke Robyn's access to your Google data
  • Contact us at [email protected] to request deletion of any data associated with your Stripe subscription

Security

Robyn uses macOS security features and industry best practices to protect your data:

  • OAuth tokens and authentication credentials are stored in the macOS Keychain
  • All connections to third-party services use TLS encryption
  • The app is code-signed and notarized by Apple for integrity verification
  • API keys for third-party services are retrieved securely at runtime and are not stored in the application binary
  • Per-user data isolation ensures each user's data is stored separately in their own database

macOS Permissions

Robyn may request the following macOS permissions, each of which you can grant or deny:

  • Full Disk Access — Required to read your local iMessage database and phone call history. Without this, iMessage and native call log features are unavailable.
  • Notifications — Used to send you local notifications for briefings, incoming messages, and scheduled reminders
  • Contacts — Used to read your macOS Contacts for name matching across messaging channels

All permissions can be managed in macOS System Settings > Privacy & Security.

Children's Privacy

Robyn is not intended for use by children under the age of 13. We do not knowingly collect any data from children. If you believe a child under 13 has used Robyn, please contact us at [email protected].

Google API Services User Data Policy

Robyn's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Limited Use Disclosure:

Robyn's use of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements. Specifically:

  • Limited use: Robyn only uses Google user data to provide and improve the user-facing features described in this privacy policy (unified inbox, calendar view, daily briefings, contact matching, and AI-assisted email drafting)
  • No transfer to third parties: Robyn does not transfer Google user data to third parties except (a) as necessary to provide the service (e.g., sending minimal content to AI APIs for summarization at the user's request), (b) with the user's explicit consent, (c) for security purposes, or (d) to comply with applicable law
  • No advertising: Robyn does not use Google user data to serve advertising, including retargeting, personalized, or interest-based advertising
  • No human reading: Robyn does not allow humans to read Google user data unless (a) the user provides affirmative consent for specific messages (e.g., asking for tech support), (b) it is necessary for security purposes (e.g., investigating abuse), or (c) it is required to comply with applicable law
  • No AI training: Google user data is not used to develop, improve, or train generalized AI or machine learning models

Changes to This Policy

We may update this privacy policy from time to time. Changes will be posted on this page with an updated revision date. If we make material changes that affect how we handle Google user data, we will provide notice through the app. Your continued use of Robyn after changes constitutes acceptance of the updated policy.

Contact

If you have questions about this privacy policy or how Robyn handles your data, contact us at:

HelloButter Inc
Email: [email protected]
Website: heyrobyn.ai