Starlie
Privacy Policy
This Privacy Policy explains how Starlie (“Starlie”, “we”, “us”) collects, uses, and protects information when you use the Starlie desktop application for macOS (the “App”) and the website at starlie.app (the “Site”).
Starlie is operated by David Zukhbaia, an individual entrepreneur registered in Georgia. We are the data controller for the limited personal data described below. Questions or requests: david@starlie.app.
1. The short version
- Starlie connects to your Jira instance directly from your Mac. Your Jira content (issues, comments, attachments, user details) is not sent to or stored on our servers.
- Your Jira sign-in tokens are stored locally on your device in the macOS Keychain.
- The App contains no analytics, tracking, or advertising.
- We receive personal data only when you buy a license (handled by our payment provider) or contact support.
2. Data processed inside the App (stays on your device)
- Authentication tokens. When you sign in to Jira Cloud via OAuth 2.0 (or with a Jira Server token), the resulting access and refresh tokens are stored in the macOS Keychain on your computer. They are not transmitted to us.
- Jira data. Issues, boards, comments, attachments, and the names/avatars of Jira users are requested directly from Atlassian and shown in the App. This data is processed on your device and cached locally to make the App fast. It is not uploaded to Starlie.
- Your settings. Preferences, starred issues, notes, and reminders you create are stored locally on your Mac.
- Diagnostic buffer. The App keeps a transient troubleshooting buffer in memory only (capped at 3000 lines). It is never written to disk, never transmitted off your device, and is cleared when the App closes — we do not collect or have any access to it.
3. Data we receive
- Authentication exchange. Sign-in goes through our authentication service at auth.starlie.app, which performs the OAuth token exchange with Atlassian. It handles only the authorization code and tokens for that exchange; it does not receive your Jira business data.
- Purchases. Starlie is sold through the Apple App Store. Payment and billing are handled entirely by Apple; we never receive your card details. We receive only limited purchase and subscription information from Apple needed to deliver the App and provide support.
- Support. If you email us, we receive your email address and the content of your message.
- Updates. The App may check for new versions; this involves a standard request that exposes only basic technical information (such as the current app version).
4. How we use data
- To provide and operate the App and the authentication flow.
- To process purchases, deliver and validate license keys, and provide refunds.
- To respond to support requests.
- To comply with legal and tax obligations.
5. Sub-processors and third parties
We share the minimum data necessary with the following providers:
| Provider | Purpose | Data |
|---|---|---|
| Atlassian | Your Jira data source (you connect your own instance) | Processed directly between your Mac and Atlassian |
| Apple | App distribution, payments and billing (Apple App Store) | Purchase and subscription data (handled by Apple) |
| Starlie auth service (auth.starlie.app) | OAuth token exchange only | Authorization code and tokens (transient) |
6. Where data is stored
Data inside the App stays on your device. Purchase data is processed by Apple through the App Store. Our authentication service is operated on servers in the European Union. Where data is transferred internationally, it is protected by appropriate safeguards such as standard contractual clauses.
7. Retention
Locally stored data remains on your device until you delete it, sign out, or uninstall the App. Order and tax records held by us or Apple are retained as required by law.
8. Your rights
Subject to applicable law (including the GDPR), you may request access to, correction of, or deletion of the personal data we hold about you, and you may object to or restrict certain processing. To exercise these rights, contact david@starlie.app. You also have the right to lodge a complaint with your local data protection authority.
9. Security
Sign-in secrets are kept server-side, not embedded in the App. Tokens on your device are held in the macOS Keychain. Connections to Atlassian, our authentication service, and our Site use TLS encryption.
10. Children
Starlie is intended for professional use and is not directed to children under 16.
11. Changes
We may update this policy from time to time. Material changes will be reflected by updating the “Last updated” date above.
12. Contact
Starlie — David Zukhbaia (individual entrepreneur, Georgia)
david@starlie.app