Privacy Policy
We believe in privacy by design. Here's exactly how we handle your data.
Last updated: February 2026
About Us
Little Bear Apps is an Australian-based software company operating globally online. We build privacy-focused developer tools, MCP servers, and browser extensions. You can reach us at hello@littlebearapps.com.
Our Philosophy
We believe your data is yours. Our tools are designed to run locally where possible, we use privacy-respecting analytics, and we're transparent about everything we collect. Most of our work is open source so you can verify our claims.
Your Choices (Consent System)
When you first visit our website, you'll see a consent banner with two options:
- Accept — We load Plausible Analytics (cookieless, privacy-focused)
- Reject — No analytics are loaded at all
By default, we load Plausible Analytics because it's genuinely privacy-respecting: no cookies, no personal data, no cross-site tracking. You can reject at any time using the consent banner. Your choice is saved for 6 months.
Privacy Signals (GPC/DNT)
We automatically honour your browser's privacy signals:
- Global Privacy Control (GPC) — If enabled, we disable all analytics automatically
- Do Not Track (DNT) — Same as GPC, we respect this legacy signal
When we detect these signals, you'll see a green notice confirming analytics are disabled. No banner will appear because we've already honoured your preference.
What We Collect
Website Analytics (with consent)
If you accept analytics, we use Plausible Analytics, a privacy-focused, EU-based analytics service. Plausible collects:
- Page views and referrer sources
- Device type and browser (general categories only)
- Country-level location (from anonymised IP, which is never stored)
- Session duration
Plausible does not use cookies, does not collect personal data, and cannot track you across websites. All data is aggregated and anonymised. See Plausible's Privacy Policy.
Contact Form
If you use our contact form, you provide your name, email, and message. This is used solely to respond to your enquiry. Your message is sent via Resend (our email delivery provider) directly to our inbox — we don't store submissions in a database.
The form uses Cloudflare Turnstile to verify you're a real person (no CAPTCHAs, no tracking cookies). You'll also receive a confirmation email acknowledging your message. We won't add you to marketing lists without explicit consent.
Theme Preference
We store your light/dark mode preference in your browser's localStorage. This never leaves your device and is not sent to any server.
Third-Party Services
We use the following services to operate this website:
| Service | Purpose | Privacy Policy |
|---|---|---|
| Cloudflare Pages | Website hosting, CDN, security, bot verification (Turnstile) | Link |
| Resend | Transactional email delivery (contact form) | Link |
| Plausible Analytics | Privacy-focused analytics (with consent) | Link |
| GitHub | Open source hosting, discussions | Link |
| Gravatar | Author profile images on blog | Link |
| YouTube Data API | Content analysis via internal developer tools | Link |
| PyPI | Python package distribution | Link |
Third-Party API Data
Some of our internal developer tools access third-party APIs (including Google APIs) to retrieve data for analysis and development purposes. When authenticated via OAuth:
- We access only the data explicitly authorised during the consent flow
- Data is stored securely on Cloudflare infrastructure (encrypted at rest)
- Data is used solely for internal analysis and is not shared with third parties
- YouTube API data is retained in accordance with YouTube's Terms of Service
- Users can revoke access at any time via Google Account Permissions
- To request data deletion, contact privacy@littlebearapps.com
Our use of Google API data adheres to the Google API Services User Data Policy, including the Limited Use requirements.
Our Developer Tools
Our developer tools (Outlook Assistant, PitchDocs, etc.) are designed to run locally on your machine. They do not:
- Send telemetry or usage data
- Require accounts or registration
- Phone home for updates (unless you enable it)
- Access the internet unless explicitly required for functionality
Many of our tools are open source — you can review the code on GitHub to verify our privacy claims.
Cookies & Local Storage
We use minimal browser storage:
- localStorage — Consent choice (6 months), theme preference
- sessionStorage — Tracks if GPC notice was shown this session
- Cookies — Only essential Cloudflare security cookies (not set by us)
We do not use any tracking cookies or advertising cookies.
Your Rights
Under the Australian Privacy Act and GDPR (if you're in the EU), you have rights including:
- Access — Request a copy of data we hold about you
- Correction — Request correction of inaccurate data
- Deletion — Request deletion of your data
- Objection — Object to processing (covered by our consent system)
Since we collect minimal data (aggregated analytics only), most of these rights are satisfied by design. For any requests, email hello@littlebearapps.com.
Australian residents can also lodge complaints with the Office of the Australian Information Commissioner (OAIC).
International Data Transfers
Our services use infrastructure in multiple countries:
- Cloudflare — Global CDN, data processed in nearest edge location
- Plausible — EU-based (Germany)
- Resend — United States (contact form emails)
- GitHub — United States
- Gravatar — United States
All services have appropriate data protection measures. Plausible specifically is EU-based and GDPR-compliant by design.
Children's Privacy
Our services are not directed at children under 13. We do not knowingly collect personal information from children.
Changes to This Policy
We may update this policy as our practices evolve. Significant changes will be noted with an updated date at the top. For material changes, we may provide additional notice.
Contact
Questions about this policy? Email us at hello@littlebearapps.com.
This policy is written in plain language because legal jargon doesn't help anyone. If anything is unclear, please ask.