Privacy Policy for Mergen Ink

*Last Updated: 01/04/2026*

TL;DR: The Short Version

• 100% Local Storage: All your books, notes, and settings live exclusively on your device.
• No Cloud, No Servers: We do not have servers that receive, process, or store your writing.
• Direct AI Connection: When you use AI features, your device communicates directly with the AI provider (Anthropic, Google, or OpenAI). We never intercept or log these requests.
• Zero Tracking by Default: We do not track you, show ads, or use cookies. We only collect anonymous feature usage if you explicitly opt in.

1. Introduction

Welcome to Mergen Ink ("we," "our," or "us"). We are committed to protecting your privacy and ensuring that you retain complete sovereignty over your creative work. This Privacy Policy explains our practices regarding the Mergen Ink application (available on macOS, Windows, Linux, Android, and iOS) and our website at https://mergen.ink.

For the purposes of the General Data Protection Regulation (GDPR), the Data Controller is Mergen Ink, a company registered in Poland. Because of our strict local-first architecture, we process virtually no personal data. This document outlines exactly how your data is handled and your rights under European law.

2. Data We Collect (And What We Do NOT Collect)

We built Mergen Ink on the principle of data minimization. We only collect what is absolutely necessary, which, by default, is nothing.

When you download Mergen Ink, we record: the platform you downloaded (e.g. macOS), your approximate country (from Cloudflare), the referring domain, and whether the download completed. We do not store your IP address. We use an anonymous cookie to avoid counting the same download twice.

What We Explicitly DO NOT Collect:

• Your Personal Identity: We do not require you to create an account, provide an email address, or give us your name to use the core application.
• Your Writing Content: We never collect, read, scan, or transmit your book content, chapters, notes, or lorebooks to our servers.
• Your Keystrokes: We do not use keyloggers or behavior-tracking algorithms.
• Your API Keys: Your personal API keys for third-party AI providers are never sent to us.

3. Your Writing Data

Mergen Ink servers never receive, store, or process any of your writing content. Because your data never touches our infrastructure, it is physically impossible for us to access your manuscripts, share them with third parties, or lose them in a server data breach. You are solely responsible for backing up your local files.

4. AI Features and Third-Party AI Providers

• Direct Conduit: When you generate text, critique a chapter, or use the master context features, the API call is made *directly* from your device to the AI provider you have selected. Mergen Ink acts strictly as a conduit. These requests never pass through our servers.
• Encrypted API Keys: To use these features, you must provide your own API key. This key is encrypted and stored locally on your device. We cannot see, retrieve, or use your API key.
• Third-Party Policies: Because your device communicates directly with Anthropic, Google, or OpenAI, your use of the AI features is governed by their respective privacy policies and terms of service. We strongly recommend reviewing them to understand how they handle the prompts you send.

5. Anonymous Analytics (Opt-In Only)

To help us improve Mergen Ink, we offer an opt-in anonymous analytics feature. We collect absolutely NO analytics data unless you explicitly check the box to allow it during setup or in the application settings.

• If you choose to opt in, please know:
• What we track: Only feature usage events (e.g., "clicked Export to EPUB," "opened Challenge Panel," "switched to Dark Mode").
• What we NEVER track: We never track the contents of your writing, the text of your AI prompts, or the names of your books.
• Total Anonymity: We do not assign you a persistent User ID. Your session ID is completely ephemeral and resets every single time you launch the application. We cannot link usage data back to you, your device, or your IP address.

Lawful Basis (GDPR): If you opt in to anonymous analytics, our lawful basis for processing this telemetry data is your explicit consent (Article 6(1)(a) GDPR), which you can withdraw at any time in the app settings.

6. Website (mergen.ink)

• When you visit our website at https://mergen.ink, our commitment to privacy continues:
• No Cookies: We do not use tracking cookies, advertising pixels, or invasive third-party scripts.
• Download Tracking: We track basic download metrics (e.g., clicking the "Download for macOS" or "Download for Windows" buttons) purely as an aggregate count to understand platform demand. This tracking involves no personal data and cannot identify you.

7. Third-Party Services

We do not sell, rent, or trade your data. There is no advertising in the Mergen Ink app. The only third-party services involved in your use of the app are the AI providers you explicitly choose to connect via your own API keys. We are not responsible for the privacy practices of these external providers.

8. Data Security

Because your data is stored locally, the security of your manuscripts and API keys depends heavily on the security of your own device. We protect your stored API keys using local encryption standards provided by your operating system. We recommend maintaining strong device passwords, utilizing full-disk encryption (like FileVault or BitLocker), and keeping your operating system up to date to protect your local data.

9. Your Rights (GDPR)

• As an EU-based company (Mergen Ink, Poland), we fully comply with the General Data Protection Regulation (GDPR). Under the GDPR, you possess several fundamental rights regarding your personal data, including:
• The right to access your data.
• The right to rectification (correcting errors).
• The right to erasure ("Right to be forgotten").
• The right to restrict processing.
• The right to data portability.
• The right to object to processing.

*Note: Because we do not collect personal accounts, email addresses, or your writing data, if you contact us to exercise these rights, we will likely have no personal data of yours to provide, correct, or delete. Your data is already fully in your control on your device.*

Right to Lodge a Complaint: If you believe our processing of your personal data violates data protection laws, you have the statutory right to lodge a complaint with a supervisory authority. In Poland, this is the President of the Personal Data Protection Office (Prezes Urzędu Ochrony Danych Osobowych - UODO).

10. Children's Privacy

Mergen Ink is a professional writing tool not directed at children under the age of 16. We do not knowingly collect any personal data from children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us.

11. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our app features or legal requirements. If we make material changes, we will notify you by updating the date at the top of this policy and, where appropriate, providing a notice within the Mergen Ink application or on our website.

12. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or how your data is handled, please reach out to us:

Mergen Ink
Email: [email protected]
Website: https://mergen.ink