Privacy Policy

Controller

Delicious Solutions SRL is the controller for personal data processed in connection with TokenWarden.

VAT code: RO49386592

Registered address: Sat Buciumi Com. Buciumi, Buciumi, Nr.182, Salaj, Romania.

Local-First Privacy

TokenWarden is designed to keep source code, prompts, model payloads, raw tool output, and generated summaries on your local machine by default. We do not use your source code to train models.

If a future feature asks to share telemetry or diagnostics, that sharing should be optional unless required for a specific hosted service you request.

Personal Data We May Process

We may process account and billing data such as email address, account identifiers, seat identifiers, subscription status, Stripe customer and subscription identifiers, payment status, invoice metadata, license issuance records, machine activation hashes, and support communications.

We may process website and service security data such as IP address, user agent, request metadata, logs, and cookie or similar identifiers where needed to operate, secure, and improve the website.

Data We Do Not Need by Default

By default, Delicious Solutions SRL does not need to receive your source code, full prompts, provider API keys, model payloads, raw command output, local summaries, or local usage database to provide the local plugin functionality.

How We Use Data

We use personal data to create and manage accounts, process subscriptions, issue and verify licenses, manage seats, prevent abuse, maintain security, provide support, comply with legal obligations, and understand whether the product is working as intended.

Legal Bases

Where the GDPR applies, we process data based on contract performance, legitimate interests in operating and securing TokenWarden, compliance with legal obligations, and consent where consent is required.

Service Providers

We may use service providers for hosting, authentication, payments, email delivery, analytics, error monitoring, and infrastructure. Current product architecture may use Supabase for authentication and account storage, Stripe for payments and subscription management, and hosting providers for the website and API routes.

International Transfers

Service providers may process data outside Romania or the European Economic Area. Where required, we rely on appropriate safeguards such as adequacy decisions, standard contractual clauses, or equivalent lawful transfer mechanisms.

Retention

We keep personal data only as long as needed for the purposes described in this policy, including account operation, billing, legal, tax, security, and dispute-resolution requirements. Local TokenWarden data stored on your machine remains under your control unless you choose to share it.

Your Rights

Depending on your location, you may have rights to access, correct, delete, restrict, object to processing, request portability, withdraw consent, and lodge a complaint with a data protection authority.

Security

We use reasonable technical and organizational measures intended to protect personal data. No system is perfectly secure, and you are responsible for securing your own devices, accounts, local files, and provider API keys.

Contact

For privacy requests or legal notices, contact Delicious Solutions SRL by post at Sat Buciumi Com. Buciumi, Buciumi, Nr.182, Salaj, Romania, or by phone at +40722701567.