Privacy Policy

Last updated: February 23, 2026

TL;DR

Comet collects zero telemetry. Your database credentials, queries, documents, and AI API keys never leave your device. We have no user accounts, no cloud services, and no analytics. The only network requests Comet makes are: connecting to your MongoDB instances (your device to your database), AI requests to your chosen provider (your device to your provider), and periodic update checks (a simple version manifest fetch with no user data).

What We Do Not Collect

Comet does not collect, transmit, or store any of the following on our servers:

  • Usage analytics or telemetry of any kind
  • Database credentials, connection strings, or authentication tokens
  • Query content, results, or document data
  • AI API keys or AI conversation content
  • Personal information (Comet has no user accounts)
  • Device fingerprints, hardware identifiers, or IP addresses
  • Crash reports or error logs

What Comet Does

Comet makes the following network requests, none of which transmit user data:

Update Checks

Comet periodically fetches a version manifest from our update server to check for new releases. This request contains only standard HTTP headers (user-agent, IP address). No user data, device identifiers, or usage information is transmitted. You can disable auto-updates in settings.

Database Connections

When you connect to a MongoDB instance, Comet establishes a direct connection from your device to your database server. This traffic goes directly between your machine and your database — it never routes through our infrastructure.

AI Requests

When you use AI features, requests go directly from your device to your configured AI provider. Comet does not proxy, intercept, log, or store any AI requests or responses. See the "AI Features and Third-Party Providers" section below for details.

Local Data Storage

Comet stores the following data locally on your device in the Tauri application data directory:

  • Connection configurations (server addresses, credentials, connection options)
  • Application state (open tabs, UI preferences, sidebar layout)
  • Query history
  • AI provider settings and API keys

All of this data stays on your device. You can delete it at any time by removing the Comet application data directory.

AI Features and Third-Party Providers

Comet's AI features use a "Bring Your Own Key" model. When you configure an AI provider:

  • API keys are stored locally on your device only — never on our servers.
  • AI requests are sent directly from your device to your provider. Comet acts as a client, not a proxy.
  • AI requests may include database context (collection names, schema samples, query results) to help the AI understand your data. This context goes to your AI provider, not to us.
  • For CLI-based providers (Claude CLI, Codex CLI, Gemini CLI), Comet invokes locally installed tools. Those tools handle their own data transmission and are governed by their own privacy policies.

We recommend reviewing your AI provider's privacy policy to understand how they handle your data:

This Website

The Comet marketing website (handcraftcode.com/comet) is a static site with no analytics, cookies, trackers, or third-party scripts beyond the Tailwind CSS CDN and Google Fonts. We do not collect any visitor data through this website.

Children's Privacy

Comet is not directed at children under 13. We do not knowingly collect any personal information from children, and since Comet collects no personal information from anyone, this is inherently satisfied.

Changes to This Policy

We may update this privacy policy from time to time. Changes will be posted on this page with an updated date. Since Comet has no user accounts, we cannot notify you directly — we recommend checking this page periodically.

Contact

Questions about this privacy policy? Email us at hello@handcraftcode.com.