Privacy Policy

Last updated: February 14th, 2026

Overview

API CLI does not collect, store, or process any of your personal data.

This privacy policy explains how the API CLI tool handles your information when you use it to interact with OAuth-enabled APIs.

What We Don't Collect

API CLI is a local command-line tool that runs entirely on your computer. We do not:

• Collect any personal information
• Store your files or data from remote APIs
• Track your usage or behavior
• Use cookies or analytics
• Send data to any third-party services
• Access remote API data beyond what you explicitly request

How API CLI Works

When you use API CLI:

• Authentication: Your OAuth tokens are stored locally on your machine. These tokens are never transmitted to us.
• API Operations: All interactions with remote APIs happen directly between your computer and the API provider's servers. We are not an intermediary.
• Local State: Any mapping files or local state remain on your computer and are never shared.
• Custom Skills: Your SKILL.md files define how to interact with APIs. These are executed locally and can be reviewed for privacy compliance.

Token Server

If you use a token server (run by you or your organization):

• The token server facilitates OAuth authentication with remote APIs
• Tokens are generated by the API provider and passed directly to your local machine
• The token server does not store tokens or have access to your data
• You should review the privacy practices of whoever operates the token server

Remote API Provider's Data Handling

When you authenticate with a remote API provider and use their services, that provider's privacy policy applies to how they handle your data. Examples include:

• Google (if using Google Drive or other Google services): Google Privacy Policy
• Dropbox: Dropbox Privacy Policy
• Other OAuth-enabled services: Check their respective privacy policies

Open Source

API CLI is open source software. You can inspect the entire codebase to verify these privacy claims:

• GitHub Repository

Your Rights

Since we don't collect any data, there is no personal data for us to delete, export, or modify. Your data remains entirely under your control on your local machine and in the remote services you authenticate with.

Changes to This Policy

If we ever change how API CLI handles data (which would require collecting data in the first place), we will update this policy and clearly communicate the changes.

Contact

If you have questions about this privacy policy, please open an issue on our GitHub repository.