Privacy Policy

Last Updated: December 27, 2025

At REPL Made LLC ("we", "us", or "our"), we respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, and safeguard information when you use Overlook, our desktop application for interacting with Large Language Models.

1. Our Privacy Philosophy

Overlook is designed with privacy as a core principle. We believe your conversations, API keys, and usage patterns are yours alone. We have built Overlook to minimize data collection and keep your information on your device whenever possible.

2. Information We Collect

2.1 Data Stored Locally on Your Device

The following information is stored only on your local machine and is never transmitted to our servers:

• Conversations and chat history - All your interactions with LLMs
• API keys and credentials - Your third-party LLM provider API keys (OpenAI, Anthropic, OpenRouter, etc.)
• Server addresses - Local LLM server configurations (Ollama, LM Studio)
• Application preferences and settings - Your customizations and preferences

We have no access to this data. It remains entirely on your device and is not transmitted to REPL Made LLC servers.

2.2 Data Stored on Our Servers

We collect and store only the minimum information necessary to provide you with licensing and support services:

• Email address - Used for license delivery, account management, and customer support
• License key - A unique identifier for your Overlook license
• Device fingerprints (up to 2) - Anonymous hardware identifiers to enforce our 2-device license limit and prevent unauthorized use

That's it. We do not collect usage statistics, analytics, crash reports, or any other telemetry from the Overlook application.

2.3 Payment Information

All payment processing is handled by Stripe, our payment processor. We never see or store your:

• Credit card numbers
• Billing addresses
• Payment details

Stripe collects and processes this information according to their own Privacy Policy. Stripe may share basic transaction information with us (such as your email and purchase confirmation) to enable license delivery.

3. How We Use Your Information

We use the limited data we collect for the following purposes:

• License delivery and management - To send you your license key and manage your subscription
• Customer support - To respond to your inquiries and provide technical assistance
• License enforcement - To verify your license is being used on authorized devices only (up to 2 devices)
• Service announcements - To notify you of important updates, security issues, or changes to our services

We will never:

• Sell your information to third parties
• Use your email for unsolicited marketing
• Share your data except as described in this policy

4. Data Transmitted to Third Parties

4.1 LLM Service Providers

When you use Overlook to interact with LLM services, your prompts and conversations are transmitted directly from your device to the LLM provider you select (such as OpenAI, Anthropic, OpenRouter, or your local Ollama/LM Studio server).

Important points:

• This data does not pass through our servers
• We do not have access to your conversations
• Each LLM provider has their own privacy policy governing how they handle your data
• You are responsible for reviewing and accepting the privacy policies of any third-party LLM services you choose to use

4.2 Stripe (Payment Processor)

As mentioned above, Stripe processes all payments and may collect billing information, payment details, and transaction history. Please review Stripe's Privacy Policy for details.

5. Website Analytics and Cookies

Our website (overlook.chat) does not use cookies or tracking scripts. We do not collect analytics about your browsing behavior on our website.

6. Data Security

We implement appropriate technical and organizational measures to protect the limited data we store:

• Email addresses and license keys are stored on secure servers with encryption at rest
• Access to our systems is restricted to authorized personnel only
• We use industry-standard security practices to protect against unauthorized access

However, no method of transmission over the Internet is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

7. Data Retention

We retain your information for as long as necessary to provide you with services:

• Active licenses - We retain your email, license key, and device fingerprints for the duration of your subscription
• Expired licenses - We may retain license information for up to 12 months after expiration to facilitate renewals
• Refunded licenses - We retain transaction records for accounting and fraud prevention purposes

8. Your Rights

Depending on your location, you may have certain rights regarding your personal data:

8.1 Access and Portability

You have the right to request a copy of the personal data we hold about you. This will typically include your email address, license key, and device fingerprints.

8.2 Correction

You can request that we correct any inaccurate information we hold about you.

8.3 Deletion

You can request that we delete your personal data. Please note that:

• Deletion will result in termination of your license
• You will no longer be able to use Overlook
• We may retain certain information as required by law or for legitimate business purposes

8.4 Objection and Restriction

You can object to or request restriction of certain processing of your data.

8.5 Exercising Your Rights

To exercise any of these rights, please contact us at support@overlook.chat. We will respond to your request within 30 days.

9. Children's Privacy

Overlook is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have inadvertently collected information from a minor, please contact us immediately.

10. International Data Transfers

Your data may be stored on servers located in the United States. By using Overlook, you consent to the transfer of your information to the United States, which may have different data protection laws than your country of residence.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for legal, regulatory, or operational reasons. When we make material changes, we will:

• Update the "Last Updated" date at the top of this policy
• Notify you via email if you have an active license
• Post a notice in the Overlook application

Your continued use of Overlook after changes take effect constitutes acceptance of the updated Privacy Policy.

12. Legal Basis for Processing (GDPR)

If you are located in the European Economic Area (EEA), our legal basis for collecting and using your personal data is:

• Contract performance - Processing necessary to provide you with Overlook services and fulfill our licensing agreement
• Legitimate interests - Fraud prevention, license enforcement, and improving our services
• Legal obligation - Compliance with tax and accounting regulations

13. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act:

• Right to know what personal information we collect, use, and share
• Right to delete your personal information (with certain exceptions)
• Right to opt-out of the sale of your personal information (note: we do not sell personal information)
• Right to non-discrimination for exercising your privacy rights

14. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

REPL Made LLC
Email: support@overlook.chat
Subject Line: "Privacy Inquiry"

15. Data Protection Officer

For privacy-related inquiries from EEA residents, you may contact our data protection representative at the email address above.

16. Summary: What Makes Overlook Private

To summarize our privacy-first approach:

• ✓ Your conversations stay on your device
• ✓ Your API keys never leave your machine
• ✓ We collect only email, license key, and device fingerprints
• ✓ No analytics, tracking, or telemetry
• ✓ No selling of data to third parties
• ✓ Direct communication with LLM providers (we don't intercept)
• ✓ Transparent about what little we do collect