Your Privacy Matters

Istek is developed and maintained by Opsaas ("we", "us", or "our"). We are committed to protecting your privacy. This Privacy Policy explains how we handle your information when you use Istek, our desktop API client application, and when you visit our website.

By using Istek or visiting our website, you agree to the terms of this Privacy Policy. If you do not agree, please do not use the application or website.

1. Built for Privacy from Day One

Istek is built with a fundamental principle: your data belongs to you. We designed the application to work entirely offline, ensuring that your API requests, responses, collections, environments, and secrets never leave your device unless you explicitly choose to sync them.

2. What We Know About You

Desktop Application

The Istek desktop application is designed to operate completely offline. We do not collect any telemetry, usage analytics, or behavioral data from the application.

  • All API requests, responses, and data remain stored locally on your device
  • Collections, environments, and variables are saved in local YAML files
  • Secret variables are encrypted using your system's secure storage
  • No request or response data is ever transmitted to our servers

Update Checker: Istek periodically checks for application updates by contacting GitHub's public API. This check transmits only:

  • Your current application version
  • Your operating system type (macOS, Windows, or Linux)

This information is used solely to determine if a newer version is available and is not stored or processed by us.

Website

When you visit our website (istek.app), we may collect:

  • Basic usage statistics (pages visited, time on site)
  • Browser type and version
  • Device type (desktop, mobile, tablet)
  • Approximate geographic location (country level, derived from IP)
  • Referral source (how you found our website)

3. Why We Need This Information

Website analytics data is used exclusively to:

  • Understand how visitors discover and use our website
  • Improve website content and user experience
  • Identify and fix technical issues
  • Make informed decisions about feature development

4. Where Your Data Lives

Local Application Data

  • All application data is stored locally in your user directory
  • Sensitive data (secrets, API keys) is encrypted using your operating system's secure credential storage (Keychain on macOS, Credential Manager on Windows, Secret Service on Linux)
  • You have complete control to export, backup, or delete your data at any time

Git Sync (Optional)

If you choose to use Git Sync, your collections are exported as YAML files and synced to a Git repository that you control. We never have access to your Git credentials or repository contents.

5. External Connections

Istek integrates with third-party services only when you explicitly configure them:

  • Secret Providers: AWS Secrets Manager, Azure Key Vault, Google Cloud Secret Manager, HashiCorp Vault - credentials and secrets are fetched directly from these services using your own credentials
  • MCP Servers: When you connect to MCP servers, communication happens directly between your device and the server
  • Git Providers: GitHub, GitLab, Bitbucket, or self-hosted Git servers for optional sync functionality

We do not act as an intermediary for any of these connections. All communication is direct between your device and the service.

6. Our Promises to You

  • We do not sell, rent, or share your data with third parties
  • We do not use your data for advertising purposes
  • We do not collect or store your API requests or responses
  • We do not require account creation to use the application
  • We do not track your usage patterns within the application

7. You're in Control

Since application data is stored locally on your device, you have complete control over it:

  • Access: All your data is accessible in the application's data directory
  • Export: Use Git Sync or manual export to backup your data
  • Delete: Uninstall the application and remove the data directory to delete all data

For website analytics data, you may contact us to request access or deletion of any information we may have.

8. See for Yourself

Istek is open source software. You can review our source code at github.com/istekapp/istek to verify our privacy practices. We believe transparency is the best way to earn your trust.

9. Keeping You Updated

We may update this Privacy Policy from time to time. The latest version will always be available on this page. Significant changes will be communicated through our GitHub repository and application update notes.

10. Questions? Reach Out

If you have any questions about this Privacy Policy, please reach out through:

Change History

  • January 16, 2026: Initial version