Privacy policy.
Short version: I don't collect anything. Long version below.
Qwentin is a one-person project. I don't run the kind of infrastructure that could collect your data even if I wanted to.
- I never see your project files, prompts, API keys, or file paths.
- No telemetry, analytics, crash reports, or usage pings.
- Purchase PII stays with Paddle. I only receive your email.
- AI traffic goes straight to OpenRouter. I'm not a proxy.
Qwentin Privacy Policy
Effective date: 2026-04-21 Last updated: 2026-04-21
Hi. This is the privacy policy for Qwentin. I wrote it myself, in plain English, because Qwentin is a one-person project and the honest version is short: I don't collect anything. I don't have servers to store your data on even if I wanted to.
In this policy, "I" / "me" means the single developer who builds and distributes Qwentin. "You" means the person using it.
1. What Qwentin is
Qwentin is a desktop application. It runs entirely on your machine. It has no user accounts, no sign-in, and no hosted component for your projects, sessions, or API keys.
2. What I collect
Nothing. No telemetry, no analytics, no crash reports, no install pings, no usage data, no keystroke logging, no "anonymous" counters. There's no opt-in toggle because there's nothing to opt into. If you came here hoping to disable analytics, they don't exist.
The only information that reaches me at all comes from the two narrow interactions below, and even those I've kept to the bare minimum.
2a. If you buy a licence
When you complete a purchase, my payment processor Paddle collects your name, email, billing address, and payment details. I receive from Paddle only the minimum I need to issue your licence key: your email address and the Paddle transaction ID. I never see your card number, billing address, or any other billing PII.
The licence key itself (a signed JWT) and your email live on your device at
~/.qwen/qwentin/license.json. I keep a copy of the (email ↔ licence
key) mapping on my licence server so I can reissue keys on request. That
mapping is the only personally-identifiable data I hold anywhere.
2b. Licence activation
When you activate a licence key in the app, Qwentin sends the key to the licence service (a small Cloudflare Worker) to verify it. No email, no IP, no OS info, no machine metadata beyond what Cloudflare retains as part of standard HTTP logging.
2c. App update checks
The Qwentin auto-updater polls https://releases.qwentin.dev/latest.json to
check for new versions. That's a standard HTTPS GET to a Cloudflare-hosted
static file. Cloudflare may log the request IP as part of standard network
access logging; I don't receive or store IPs myself.
3. What I never collect
- Your chat messages or AI responses
- Your source code or file contents
- File paths on your machine
- Project names or session titles
- Your API key (stored locally, never transmitted to me)
- Tool call arguments or outputs
- Install IDs, operating system versions, app versions, or usage counters
- Crash logs, error reports, or diagnostic dumps
- Usage patterns, keystrokes, or any in-app behaviour
All AI processing happens between your machine and OpenRouter directly. OpenRouter then routes to whichever model provider you picked, for example Alibaba's Qwen, Anthropic, OpenAI, DeepSeek, or Gemini. I'm not a proxy for any of this; those requests never touch any infrastructure I operate.
4. Third parties involved
| Third party | Role | Their privacy policy |
|---|---|---|
| Paddle | Merchant of record for purchases. Collects billing PII on my behalf. | paddle.com/legal/privacy |
| OpenRouter | API broker. Your prompts go from your machine directly to OpenRouter, which forwards to the model provider you selected. | openrouter.ai/privacy |
| Your chosen model provider | Alibaba (Qwen), Anthropic, OpenAI, DeepSeek, a local endpoint, etc. Governed by the provider you pick in OpenRouter's model list. | (See the provider's own policy) |
| Cloudflare | Hosts releases.qwentin.dev and the licence service. Processes update-check and activation requests. | cloudflare.com/privacypolicy |
| GitHub | Hosts release artifacts. Standard GitHub request logging applies. | docs.github.com/.../github-general-privacy-statement |
5. Data retention and deletion
Licence records: The (email ↔ licence key) mapping is retained for as long as the licence is active. To request deletion of this record, email privacy@qwentin.dev. Note that deleting the record invalidates the licence key.
Purchase data: To request deletion of your purchase record (name, email, transaction history), contact Paddle directly using their GDPR request flow at paddle.com/gdpr.
license.json on your device: Lives at ~/.qwen/qwentin/license.json.
You can delete it at any time; doing so resets the app to trial state.
6. Children
Qwentin isn't directed at children under 13. I don't knowingly collect any information from children.
7. Changes to this policy
If I make material changes, I'll update the "Last updated" date at the top. For significant changes, I'll surface a notice on the website and in release notes.
8. Contact
Questions? Email privacy@qwentin.dev. It's just me on the other end, so reply time depends on the timezone, but every message gets answered.
Qwentin is an independent desktop application for Alibaba's Qwen Code CLI. Not affiliated with, endorsed by, or sponsored by Alibaba Group. Qwen and Qwen Code are trademarks of Alibaba Group.