Last updated · 2026-04-12

Privacy Policy

Vector is a local-first SSH client. This policy describes what data Vector handles, where it lives, and what we do (and do not) collect. The short version: we don’t collect anything.

Summary

Vector runs entirely on your device. Hosts, keys, snippets, and session transcripts are stored locally in your platform’s Keychain (iOS / macOS) or Keystore (Android). We operate no servers that your device connects to during normal use. SSH connections are established directly from your device to your hosts — nothing is proxied through us.

Data we collect

None. Vector does not include any telemetry, analytics, crash reporting SDK, advertising SDK, or remote logging. We do not set cookies on this website and we do not maintain user accounts.

On-device storage

The following is stored locally on your device and never leaves it:

  • Host configurations (addresses, ports, usernames, labels)
  • SSH private keys and passphrases (platform secure storage)
  • Known-host fingerprints (trust-on-first-use record)
  • Snippets and saved commands
  • Session transcripts (until you delete them)

Biometric unlock (Face ID, Touch ID, or fingerprint) gates access to the secure store. Deleting the app removes all of this data.

Opt-in feedback

If you send feedback from inside the app, Vector posts your message as a new issue to a public GitHub repository (github.com/nkrebs13/vector-feedback). You see the exact payload before it is sent and can cancel. Do not include secrets in feedback — the repo is public and indexed.

We do not use third-party crash reporters. If the app crashes, nothing is sent anywhere.

Third parties

The only third parties Vector interacts with are Apple and Google for the one-time purchase transaction, which happens entirely inside their respective stores under their privacy policies. We receive no personal information from them beyond an anonymous purchase receipt.

Children

Vector is a developer tool and is not directed at children under 13. We do not knowingly collect any data from anyone, including children.

Your rights (GDPR / CCPA)

Because we do not collect personal data, there is no profile to access, correct, export, or delete on our side. All of your Vector data lives on your device; you control it entirely by managing the app.

Changes to this policy

If this policy changes materially, we will update the date at the top and note the change in the app’s release notes. Past versions are available in the site’s git history.

Contact

Questions: privacy@vector-ssh.com. Security reports: see /.well-known/security.txt.