Privacy

Envy is a local-first developer tool. Everything it does — discovering your Docker containers, resolving *.envy names, issuing certificates, and routing HTTPS — happens entirely on your machine. We do not run a server for your data, we do not have an account system, and we cannot see your containers, domains, or traffic.

TL;DR

• No account, no sign-in, no cloud sync.
• No analytics or usage telemetry.
• Your container list, domains, settings, and license live in files on your machine.
• Envy makes exactly two kinds of outbound connection, described below — both you can see and control.

What stays on your machine

Envy stores its state in your user data directory and never uploads it:

• Configuration — your domains and per-container assignments (config.json).
• App settings — preferences like keep-running and start-at-login (settings.json).
• License — your license key and activation record (license.json, readable only by you).
• Local certificate authority — the private CA used to sign .envy certs. Its key never leaves your machine.

Your container traffic is proxied locally between your browser and the Docker container. It is never sent to us or any third party.

The two outbound connections Envy makes

Neither carries your container names, domains, or any request/response content. After a license is activated, Envy works offline; it only re-validates occasionally.

Payments

Purchases are handled by Polar, our merchant of record. We never see or store your card details. See Polar's privacy policy for how checkout data is handled.

Verifying nothing else is sent

• Network monitor. With Little Snitch / Wireshark / tcpdump, confirm Envy makes no outbound connections beyond the update host and Polar.
• Local DNS only. *.envy lookups are answered by Envy's own resolver and never leave your machine.

Change log

• 2026-06-18. Initial version.