SplitTunnel

Privacy Policy

How we handle your data and protect your privacy.

Last updated: March 2026

SplitTunnel collects minimal data for license activation and subscription verification. We do not collect your network traffic, browsing history, or app usage.

What We Collect

Subscription Verification

  • Email address — For account activation and subscription verification

  • Machine identifier — A one-way hash (SHA-256) of your Mac's hardware UUID, used to verify your subscription is activated on this device. The original hardware UUID cannot be recovered from this hash.

  • Subscription status — Whether your subscription is active, trialing, or expired

Activation

Activation link — A unique link sent to your email to activate the app. Links expire after 24 hours.

Periodic Checks

The app silently checks your subscription status when launched (approximately once every 24 hours). This transmits your email address and machine identifier to verify your subscription remains active.

Purchases

Payments are processed by Stripe. We receive your email and subscription status. We never see or store your payment details. See Stripe's privacy policy at stripe.com/privacy.

What We Don't Collect

SplitTunnel does not collect, transmit, or have access to:

  • Network traffic or packet contents

  • Browsing history or DNS queries

  • Which applications you use or when

  • Advertising identifiers or tracking data

  • Location data

How Routing Works

SplitTunnel operates at the network socket level, identifying applications by their macOS code signing identifier. It makes per-application routing decisions for TCP connections, directing traffic either through your VPN or directly to the internet based on your configured rules.

Shared System Services

macOS uses shared system services that handle network operations on behalf of multiple applications. These services are pooled processes managed by the operating system and are not modified or controlled by SplitTunnel in order to preserve the stability and functionality of your computer. These include, but are not limited to:

  • DNS resolution (mDNSResponder) — All applications share the system DNS resolver. SplitTunnel does not modify DNS configuration or route DNS queries on a per-application basis.

  • Certificate validation (trustd) — macOS performs TLS certificate and revocation checks through a shared system daemon, not through individual applications.

  • Push notifications (apsd) — Apple Push Notification Service maintains a single connection for all applications.

  • Background transfers (nsurlsessiond) — macOS may delegate background downloads to a shared system service.

  • Local network discovery (Bonjour/mDNS) — Service discovery for AirDrop, AirPlay, printers, and other local devices uses shared system infrastructure.

  • Time synchronization, captive portal detection, and software update checks — These are handled by system daemons shared across all applications.

Because these services create their own network connections on behalf of applications, their traffic follows the operating system's default routing path regardless of your per-application routing rules.

Independent Application Processes

Some applications use independent helper processes or agents to manage their network connections. These helper processes operate under their own identity, separate from the main application. SplitTunnel surfaces all visible processes for management, but it does not automatically group helper processes with their parent applications. This is intentional — automatically grouping processes could unintentionally block system-critical traffic or shared services. It is your responsibility to identify and configure routing rules for each process you wish to control. You may add processes manually if they are not automatically detected.

Local Data

The following data is stored exclusively on your Mac and is never transmitted to our servers:

  • Your verified email address

  • Routing rules and preferences

  • Application list for routing configuration

  • Diagnostic logs

This data is stored in macOS system preferences (UserDefaults).

Security

All communication between the app and our servers uses HTTPS (TLS encryption in transit).

Data Retention

  • Activation tokens — Automatically deleted upon use

  • Machine identifier hash — Stored on our servers while your subscription is active; removed when you sign out or your account is deleted

  • Subscription data — Managed by Stripe according to their retention policies

  • Local data — Remains on your device until you uninstall the app

Third-Party Services

SplitTunnel uses the following third-party services:

  • Stripe — Payment processing. Receives your email and payment information. See stripe.com/privacy.

  • Resend — Email delivery for activation links. Receives your email address. See resend.com/legal/privacy-policy.

  • Supabase — Database hosting for license and subscription records. See supabase.com/privacy.

  • Vercel — Website hosting and analytics. Collects anonymous usage data (page views, browser type, country). See vercel.com/legal/privacy-policy.

  • Google Analytics — Website analytics. Collects anonymous usage data. See policies.google.com/privacy.

  • Sparkle — In-app update framework. Checks for updates from our servers. No personal data transmitted.

We do not use advertising networks or sell your data to third parties.

System Permissions

SplitTunnel requires the following macOS permissions to function:

  • Network Extension — Required to route application traffic. macOS will prompt for your approval during setup.

  • Network Access — Required to verify your subscription status.

The app does not access your files, camera, microphone, or location.

Your Rights

The only personally identifiable information we store on our servers is your email address. Machine identifier hashes are one-way and cannot be traced back to you or your device. Stripe customer IDs are opaque identifiers managed by Stripe.

You can manage or delete your data at any time:

  • Sign out in the app to remove your email from the device

  • Uninstall the app to delete all local data

  • Cancel your subscription through Stripe's customer portal

  • Contact us via our support page at splittunnel.app/support to request deletion of your email address and all associated server-side data. We will process deletion requests within 30 days.

Data Breach Notification

In the unlikely event that stored email addresses are compromised, we will notify affected users via email within 72 hours of discovering the breach. We will also post a notice on our website describing the nature of the breach and any steps you should take.

Contact

For privacy-related questions or requests, contact us via our support page at splittunnel.app/support.