Last updated · May 29, 2026
Privacy.
The short version: AgePony collects nothing. Below is the long version, including the one specific place your device touches the network and what that means.
The short version: AgePony collects nothing. Below is the long version, including the one specific place your device touches the network and what that means.
No accounts. No servers. No telemetry. No analytics. No crash reporters. No advertising. No third-party tracking.
Every byte of your vault — identities, recipients, notes, settings — stays on your device, encrypted at rest. AgePony makes exactly one kind of network request, only when you explicitly ask it to: fetching a GitHub user's public SSH keys so you can encrypt to them.
If that's all you needed to know, you can stop reading here.
Nothing. There is no AgePony server. There is no account creation, no sign-in, no email address gathering. There are no analytics SDKs, advertising SDKs, or third-party crash reporters in the app.
We do not know who is using AgePony. We do not know how often. We do not know what files you encrypt or to whom. We could not tell you any of those things if we wanted to, because the information has never left your device and was never sent to us in the first place.
AgePony stores everything locally in your app's sandbox:
If iOS Backup is enabled on your device, the encrypted vault file may be included in your iCloud Backup. The file remains encrypted, and the Keychain master key is backed up to iCloud Keychain only if you have that enabled. Apple cannot read either.
AgePony makes one type of optional, user-initiated network request: when you type a GitHub username in the recipient picker and tap fetch, AgePony makes an HTTPS request to https://github.com/<username>.keys to retrieve that user's public SSH keys.
GitHub may log this request as part of their normal server operations; see GitHub's privacy statement for details. AgePony itself does not store the request, the response, or any analytics about it.
That's it. No other network requests, ever. No telemetry. No update checks. No license validation. No "phone home" of any kind. You can use AgePony in airplane mode and the only thing that won't work is fetching GitHub keys.
github.com — only when you explicitly fetch a user's public keys via the recipient picker. AgePony has no other relationship with GitHub.
Apple's CryptoKit and LocalAuthentication frameworks — built into iOS. No data leaves your device through these APIs.
That's the entire list. No analytics SDKs, advertising SDKs, third-party crash reporters, or any other external services.
AgePony is rated 4+ in the App Store. It does not collect data from anyone, including children. There are no in-app purchases, no advertising, and no user-generated content visible to other users.
Because nothing about you is ever transmitted to us, there is nothing for us to delete on request — we don't have anything to begin with.
To remove all your AgePony data from your device: open the app, go to Settings, and tap Reset Vault. This deletes the master key from Keychain and removes the encrypted vault file. Alternatively, delete the AgePony app from your device; the orphaned Keychain item can be cleared by reinstalling and tapping "Reset and start over" on the Locked screen.
If this policy changes materially, we'll update the "Last updated" date at the top of this page. There is no email list to notify you, since we don't have your email.
Questions about privacy or this policy: NorseHorse@norsehor.se