Last updated: May 12, 2026

Privacy Policy

At Kreotar, your privacy is the foundation of our architecture. We provide a hybrid productivity ecosystem that combines local browser-based processing with secure, user-approved cloud workflows.

1. Data Sovereignty & Local Processing

The majority of Kreotar tools are designed to process files directly in your browser's local sandbox using WebAssembly and Web Workers. In these scenarios, your source files and processed outputs remain entirely on your device and are never transmitted to our servers. This 'local-first' design provides the highest level of privacy for common file transformations.

2. KreoCloud & Account Data

When you use KreoCloud features, certain metadata and user-selected files are stored securely in your private workspace using our Supabase backend. This data is used exclusively to provide persistence, enabling you to access your projects across different sessions and devices. You maintain full control over this data and can delete your cloud-saved projects or your entire account at any time.

3. Dropbox & Google Drive Imports

Kreotar supports importing files from third-party providers like Dropbox and Google Drive. These imports are explicitly initiated by you and use secure OAuth authentication handled by the respective providers. We only access the specific files you select for import. Once imported, these files are processed according to our standard privacy protocols.

4. Browser Storage (LocalStorage & IndexedDB)

We use browser technologies such as LocalStorage and IndexedDB to store temporary tool states, studio session drafts, and user preferences (like theme and language). This allows for a seamless 'handoff' between tools and studios without requiring a server upload. This data remains on your device unless you clear your browser cache.

5. Cookies, Analytics & Advertising

To support our free-to-use model and improve performance, we use cookies for anonymized usage analytics and personalized advertising through Google AdSense. These partners may collect information about your visits to this and other websites. You can manage your preferences or opt-out through our Cookie Settings or your browser controls.

6. Third-Party Service Providers

We work with a limited number of trusted partners: (a) Supabase for secure authentication and workspace storage; (b) Google Cloud for static asset hosting; and (c) Dropbox/Google for optional cloud imports. We do not sell your personal data to any third parties.

7. Your Rights & Deletion Requests

You have the right to access, correct, or delete your personal data. You can delete your cloud projects directly through the KreoCloud dashboard or request full account deletion by contacting hello@kreotar.com. We comply with global privacy standards, including GDPR and CCPA.