Privacy Policy

Last updated: March 26, 2026

PingKit ("we", "our", or "the app") is committed to protecting your privacy. This Privacy Policy explains how we handle information when you use PingKit for iOS and PingKit Agent for macOS.

                Summary: PingKit does not collect personal data. All 19 diagnostic tools run entirely on your device — no accounts, no tracking, no analytics. AI features (Guardian subscribers only) send anonymous network data to our AI service at ai.pingkit.app for analysis — never personal information, browsing history, or account details. If you subscribe to PingKit Guardian, monitoring data syncs between your devices via your personal iCloud account — we never see it.
            

Information We Do Not Collect

PingKit does not collect:

Personal identification information (name, email, phone number)
Device identifiers for tracking purposes (no IDFA, no IDFV)
Usage analytics or behavioural data
Advertising data
Telemetry of any kind

We do not operate any servers that receive data from the app. There is no account system, no sign-up, and no login.

Local Data Storage

Both the iOS app and macOS Agent store data locally on your device using Apple's SwiftData framework:

Diagnostic history: Results from ping, traceroute, speed tests, and other network tools are saved locally for your reference.
Discovered devices: LAN scan results including IP addresses, MAC addresses, hostnames, and vendor information are stored on-device.
Saved configurations: Wake-on-LAN devices, HTTP analyzer requests, and saved targets are stored locally.
Purchase status: Your subscription status is managed by Apple's StoreKit and stored securely on your device.

You can delete all local data at any time by uninstalling the app.

iCloud Sync (PingKit Guardian)

If you subscribe to PingKit Guardian, PingKit Agent for macOS syncs monitoring data to PingKit on your iPhone via Apple's CloudKit framework. This data is stored in your private iCloud database — only devices signed into your Apple Account can access it.

Data synced via iCloud includes:

Discovered devices: MAC addresses, IP addresses, hostnames, vendor names, custom names, device categories, and online/offline status
Alerts: New device notifications, outage alerts, latency warnings, and speed drop alerts
Agent status: Whether monitoring is active, device counts, gateway and internet reachability, and latency readings
Latency history: Timestamped latency measurements (retained for 7 days)
Speed test results: Download and upload speeds with timestamps (retained for 90 days)
Network timeline: Event logs such as devices joining or leaving and outage events (retained for 30 days)
Subscription status: Used to verify Guardian access across your devices

This data is encrypted in transit and at rest by Apple. It never passes through any server we operate. We cannot see, access, or retrieve your iCloud data. For details on how Apple handles CloudKit data, see Apple's Privacy Policy.

Push Notifications

PingKit Guardian uses Apple Push Notification service (APNs) to deliver alerts to your iPhone when the macOS Agent detects network events. These notifications are triggered by CloudKit subscriptions — when the Agent writes an alert to your private iCloud database, Apple's infrastructure delivers the notification. No notification data passes through our servers.

External Services Used by Diagnostic Tools

When you use certain diagnostic tools, the app connects directly to third-party services to perform the requested operation. These connections are made from your device, not through our servers:

Speed Test

Speed tests use Cloudflare's public speed test infrastructure (speed.cloudflare.com). Only bandwidth measurement data is exchanged — no personal information is sent.

IP Geolocation

When you use the IP Geolocation or "Locate My IP" feature, the app queries ipapi.co or ipwho.is to retrieve geographic and ISP information for the specified IP address. These services receive the IP address you are looking up.

DNS Lookup and Security Scan

DNS lookups may query Google Public DNS (dns.google) or Cloudflare DNS (cloudflare-dns.com) to resolve domain names and check DNS security. The domain name being queried is sent to these services.

Whois Lookup

Domain and IP ownership lookups query public RDAP servers operated by domain registries (such as Verisign, Public Interest Registry, and others). The domain or IP being queried is sent to these services.

Security Scan

The optional vulnerability check queries Shodan's InternetDB (internetdb.shodan.io), a public and free API that returns known open ports and vulnerabilities for a given IP address. Your public IP address is sent to this service during this check. The security scan also connects to captive.apple.com (Apple's captive portal detection endpoint) and may inspect TLS certificates on google.com to detect MITM interception.

AI Features (Guardian)

PingKit Guardian includes AI-powered features such as the chat assistant, security explanations, remediation guides, scan summaries, and device classification. When you use these features, PingKit sends the relevant network data (such as security findings, device information, or your question) to our AI service hosted on Cloudflare Workers AI.

What is stored:

AI response cache: Responses are cached temporarily (24 hours to 7 days) to improve performance and reduce costs. Cache keys are based on anonymised request hashes, not personal data.
Device classification data: When devices are classified, anonymous network signals (such as device vendor, open ports, and service types) and the AI's classification result may be retained to improve classification accuracy over time. No personal information, device names, or IP addresses are included in this data.
Usage counters: Per-device request counts are tracked to enforce daily and monthly limits. These use Apple's vendor identifier, which is not linked to your personal identity and resets if you reinstall the app.
Feedback ratings: If you rate an AI response (thumbs up/down), the rating is stored anonymously by feature category. No user identifier or response content is stored with the rating.

What is NOT stored: Your chat messages, security scan results, network configuration, personal information, browsing history, or any data that could identify you personally. No personal information (name, email, or account details) is sent to our AI service. Your preferred device language is sent so responses can be provided in your language.

All Other Tools

Ping, traceroute, MTR, port scanning, LAN discovery, Bonjour browsing, SSL inspection, HTTP analysis, and Wake-on-LAN operate entirely on your local network or connect directly to hosts you specify. No third-party services are involved.

Location Permission

PingKit may request "When In Use" location permission on iOS. This is required by Apple to access Wi-Fi network information (such as your network's SSID and signal strength). PingKit does not read, store, or transmit your geographic location. The permission is solely used to retrieve Wi-Fi metadata via Apple's networking APIs.

Third-Party Services

In-App Purchases

Subscriptions are processed entirely by Apple through StoreKit. We do not have access to your payment information. See Apple's Privacy Policy for details.

Crash Reporting

PingKit uses only Apple's built-in crash reporting (available through Xcode). Crash reports contain technical diagnostic data (stack traces, device model, OS version) and are collected by Apple for App Store builds. No personal information or network diagnostic results are included. We do not use any third-party crash reporting services.

Children's Privacy

PingKit is not directed at children under 13. We do not knowingly collect information from children.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

Contact Us

If you have any questions about this Privacy Policy, please contact us at:

[email protected]