Privacy.

Last updated 2026-05-13

Orchid is a desktop data IDE. Most of what you do happens entirely on your machine. This page describes the data we do see, what we do with it, and how to remove it.

What stays local

Your project files (.orchid notebooks, dashboards, configs).
Connection credentials — stored in your OS keychain, never transmitted to us.
Query results and notebook outputs, until you choose to publish them.

What we receive

Account info — email and authentication tokens via Supabase Auth.
Anonymous telemetry — crash reports, feature usage counters, version pings. No file contents, no query text, no credentials.
Published content — when you click Publish, the notebook or dashboard you publish is uploaded and stored on our servers.
Agent traffic — when you use the AI agent, your prompts and the cells you ask about are sent to the model provider you've selected (Gemini by default; Anthropic or OpenAI if you bring a key).

Model providers

We send agent prompts to Google (Gemini), Anthropic (Claude), or OpenAI (GPT) depending on your settings. We have zero-retention agreements with each provider — your prompts are not used to train their models.

Third parties

Supabase — authentication, account database.
Vercel — hosting for orchidide.com and published views.
Stripe — payments (only if you upgrade to a paid plan).

Your rights

You can export everything we have on you (a JSON of your account, published views, and usage counters) or delete your account entirely from your account settings. Deletion is permanent and takes effect within 30 days.

Questions — privacy@orchidide.com.