Privacy Policy

PCAPAI Desktop · Effective Date: April 13, 2026 · Version 1.0

WLANGeeks ("we", "us", "our") develops PCAPAI Desktop ("the Software"). This Privacy Policy describes what data the Software collects, how it is used, and your choices.

1. Summary

• We do not collect telemetry, analytics, or usage data.
• We do not transmit any data to our servers.
• AI features (optional) transmit data to third-party AI providers you configure and enable.
• Crash logs are stored locally only and never sent automatically.
• License validation is performed locally using cryptographic signatures.

2. Data We Do NOT Collect

The Software does not collect, transmit, or store:

• Personal information (name, email, address)
• Usage analytics or telemetry
• Packet capture contents (your PCAP files never leave your machine unless you use AI features — see Section 4)
• Hardware identifiers (the machine ID used for license binding is a one-way SHA-256 hash stored only on your local machine)
• IP addresses or network metadata about your environment

3. Data Stored Locally

The Software stores the following data on your local filesystem:

Data	Location	Purpose
Settings	OS config directory	Your preferences (theme, columns, etc.)
License file	OS config directory	Your license key for feature activation
API keys	OS keychain	Encrypted storage of AI provider API keys
Crash logs	OS log directory	Debugging information if the app crashes
Analysis files	User-chosen location	.pcapai files you save

Paths: macOS: ~/Library/Application Support/pcapai/ · Linux: ~/.config/pcapai/ · Windows: %APPDATA%\pcapai\

3.1 Crash Logs

Crash logs are written to disk only when the Software encounters an unexpected error. Before writing, the Software automatically redacts:

• API keys and authentication tokens
• Bearer tokens
• MAC addresses

Crash logs are never transmitted automatically. You may choose to attach them to a support request voluntarily.

3.2 Machine Identifier

For license binding, the Software computes a machine identifier (MID) by taking a SHA-256 hash of your hardware ID combined with a salt. This is a one-way hash — the original hardware identifier cannot be recovered from it. The MID is stored only in your local license file and is never transmitted.

4. AI Features and Third-Party Services

4.1 How AI Features Work

The Software includes optional AI-powered analysis features (Network Analyst, General Assistant, Security Analyzer). These features are disabled by default and require you to:

1. Configure an AI provider (OpenAI, Anthropic, OpenRouter, or a local provider like Ollama)
2. Enter your own API key
3. Explicitly initiate an AI conversation

4.2 What Data Is Sent to AI Providers

When you use AI features, the Software sends to your configured AI provider:

• Packet metadata relevant to your query (protocol names, field values, summary information)
• Your analysis questions and conversation history
• Network topology context (SSIDs, BSSIDs, client counts) when analyzing Wi-Fi captures

The Software does not send:

• Raw packet payloads (unless you explicitly ask the AI to analyze specific packet hex data)
• Your license key or machine identifier
• Files from your filesystem (other than the analysis context you request)

4.3 Local AI Providers

When using local AI providers (Ollama, LM Studio), all data remains on your machine. No data is transmitted to any external service.

4.4 Third-Party Privacy Policies

Data sent to third-party AI providers is subject to their respective privacy policies:

• OpenAI: openai.com/policies/privacy-policy
• Anthropic: anthropic.com/privacy
• OpenRouter: openrouter.ai/privacy

We have no control over how these providers handle your data.

5. Geolocation Feature

The optional geolocation feature uses locally stored MaxMind GeoLite2 database files to resolve IP addresses to approximate geographic locations. No data is transmitted to MaxMind or any external service for this purpose. The databases are bundled with the application.

6. Network Tools

The Software includes network diagnostic tools (ping, traceroute, ARP lookup, DNS lookup, Wi-Fi scanner) that interact with your local network. These tools operate directly on your machine using standard operating system APIs. No data from these operations is transmitted to external services.

7. Updates

The Software does not check for updates automatically. When you manually check for updates via the Help menu, your web browser opens the PCAPAI website. Standard web server logs may record your IP address — this is controlled by the web hosting provider, not by us.

8. Children's Privacy

The Software is not directed at children under the age of 13. We do not knowingly collect data from children.

9. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted in the Software's documentation and on our website. Your continued use of the Software after changes constitutes acceptance.

10. Contact

For questions about this Privacy Policy, contact: kevin@wlangeeks.com