Privacy Policy

Last updated: April 2026

Bouclier.ai processes all data locally on your device. We do not collect personal data. We do not operate servers that receive your data. We have no analytics, no telemetry, and no user accounts.

What Bouclier.ai does

Bouclier.ai is a local network proxy that scans AI API traffic for prompt injection attacks. It intercepts HTTPS connections to a specific set of AI API domains, decrypts them using a locally-generated certificate authority, inspects the request content for injection patterns, and forwards the request to the intended destination.

Intercepted domains

Bouclier.ai only intercepts traffic to these specific domains. All other network traffic is completely untouched:

api.openai.com, api.anthropic.com, api.cohere.com, api.mistral.ai, generativelanguage.googleapis.com, api.together.xyz, api.groq.com, api.perplexity.ai, api.fireworks.ai, openrouter.ai

Organizations using MDM can add additional domains via managed app configuration.

Network connections

  1. AI API forwarding — forwarding your requests to their intended destination. Content may be modified if a prompt injection is detected.
  2. Update check — checking for software updates via appcast.xml hosted on bouclier.ai. Transmits app version, macOS version, CPU architecture, and preferred language. No personal data or request content.
  3. SIEM webhook (enterprise only)— if and only if configured by an organization's IT administrator via MDM, scan event metadata (timestamp, host, pattern, severity) is sent to that organization-controlled endpoint. Never enabled by default. Cannot be configured by the user.

Data stored locally

Stored at ~/Library/Application Support/ai.bouclier.app/:

  • Scan logs — timestamp, source, target host, detection status, pattern IDs, severity, request size. No request body content. Auto-deleted after 30 days.
  • Daily stats — date, requests scanned, injections blocked. Retained 365 days.
  • CA certificate — public PEM file (not sensitive).
  • CA private key — macOS Keychain (encrypted at rest), kSecAttrAccessibleWhenUnlockedThisDeviceOnly. Never written to disk in plaintext.
  • Preferences — proxy port, notifications, launch-at-login. Via UserDefaults.

Data we collect

None. Bouclier.ai has no user accounts, no analytics, no crash reporting, and no usage telemetry.

Data we share

None. The SIEM webhook feature sends metadata to infrastructure controlled by the organization's IT administrator, not to Bouclier.ai or any third party.

Detection method

Deterministic regex pattern matching and heuristic scoring. No AI or ML model is used. No request content is sent to any external service.

Certificate authority

A local root CA is generated on your device during setup, used solely to decrypt AI API traffic for inspection. The private key never leaves your device. Removable at any time via Settings.

Auditing

Enterprise customers can request a full source code audit. Contact us for details.

Contact

Privacy: privacy@bouclier.ai

Support: support@bouclier.ai