Legal

Privacy Policy

Effective June 2026. NetShell is an SSH client for iPhone, iPad & Mac by Wellington Mukahiwa. The short version: we collect nothing by default, and your data stays on your device.

1. What we collect

By default, NetShell collects no personal data and sends nothing to a NetShell server. There is no account, no advertising, no fingerprinting, and no telemetry running unless you turn it on.

NetShell includes an optional, off-by-default analytics setting. If — and only if — you explicitly enable it, NetShell records anonymous, sanitized product events (for example "a connection was created") to help improve the app. These events never include your secrets, passwords, keys, hostnames, IP addresses, or command output; identifiers and paths are stripped before anything leaves the device. You can turn it back off at any time.

2. Data stored on your device

To do its job, NetShell stores the following locally:

• SSH connection details (hostname, port, username, protocol)
• Terminal themes, color schemes, and display preferences
• Command snippets and snippet folders
• Connection groups and tags
• App settings and preferences
• Server monitoring data, Docker container states, and network scan results

Passwords and private keys are stored exclusively in the iOS Keychain — Apple's hardware-backed, encrypted credential store, gated by Face ID. They are never written to plain files, databases, or logs.

3. iCloud sync

If you have iCloud enabled, NetShell can sync connection metadata (hostnames, ports, usernames, groups, tags, snippets) across your Apple devices using Apple's iCloud Key-Value Storage. This is handled entirely by Apple's infrastructure and encrypted by Apple in transit and at rest.

Passwords and SSH keys are never synced through a NetShell server. Your credentials and keys replicate only across your own Apple ID devices via iCloud Keychain, end-to-end encrypted by Apple. Host (known-hosts) keys stay device-local and do not sync.

4. AI assistant

The AI assistant is optional and user-configured. The on-device Apple Intelligence option runs locally with no account and sends nothing to us. If you instead connect your own provider (Anthropic, OpenAI, or a self-hosted Ollama model), the context you choose to send goes directly from your device to that provider under their terms and is billed to your account. Your API keys are stored in the iOS Keychain. NetShell never proxies or sees this traffic.

5. Third parties

NetShell has no third-party SDKs collecting data by default. The App Store download and any in-app review prompt are handled by Apple under Apple's privacy policy. If you opt into analytics, anonymized events are processed by our analytics provider on our behalf; if you opt into the AI assistant with your own provider, that provider's policy applies to what you send.

6. Your rights & data deletion

Because your data lives on your device, you are in control. Deleting the app removes its local data from that device. You can manage or remove iCloud-synced metadata in iOS Settings → iCloud, and your keys via Settings → SSH Keys. You can disable analytics at any time in the app's settings.

7. Children

NetShell is a developer tool and is not directed at children under 13. We do not knowingly collect data from children.

8. Changes & contact

We may update this policy as the app evolves; material changes will be reflected here with a new effective date. Questions? Reach us at support@netshellssh.com.