Privacy Mode on
Training telemetry defaults to privacy mode: outcomes only, not full code trajectories. JRVS training requires explicit opt-in.
No SOC 2 theater. No “military-grade” copy. This page describes how Catalyst works today — local IDE, managed cloud, billing, and privacy defaults — so you can decide if it fits your risk tolerance.
Training telemetry defaults to privacy mode: outcomes only, not full code trajectories. JRVS training requires explicit opt-in.
Editor, terminal, and project files live on disk you control. Closing the app does not leave a hosted workspace full of your repo.
When you run managed cloud models, prompts/context go to Anthropic and/or xAI under our platform keys. Same reality as any hosted agent product.
Most confusion comes from mixing “local IDE” with “cloud agent.” These are different paths.
| Data | Where it lives | Who can see it |
|---|---|---|
| Project files on disk | Your computer (desktop app) | You. Not uploaded unless a cloud agent/request sends context. |
| Cloud agent prompts & context | Sent to model providers for that request | Anthropic / xAI (and OpenAI if enabled) process the request. We meter usage in CBT. |
| Account email, plan, credits | Our Postgres (Fly-hosted API) | NYPTID ops for support/billing; you via dashboard. |
| Card & payments | Stripe | Stripe. We store customer id, payment method id, and card fingerprint for trial abuse prevention — not full PAN. |
| Usage ledger (CBT) | Our Postgres | You (dashboard) and us (billing integrity). Reasons + deltas, not full source trees. |
| Training traces (optional) | Our API storage when consented | Default Privacy Mode: outcomes only. Full trajectories only if you turn Privacy Mode off and opt into JRVS training. |
| Auth tokens | JWT access (short-lived) + refresh on your client | Bearer tokens to our API. Keep the desktop signed-in machine under your control. |
If you use Pro / trial cloud models, treat it like Cursor’s cloud agent or any SaaS LLM: whatever you put in the prompt (and retrieved context) is processed by a model provider. We do not run a zero-knowledge LLM. We do not promise providers never train on API traffic — that is governed by their enterprise/API terms and our account configuration with them.
For secrets (production keys, customer PII dumps, regulated data): prefer local-only work, redacted samples, or wait for enterprise controls (SSO, VPC, customer-managed keys) — those are roadmap, not shipped claims.
Desktop defaults: privacyMode = true, trainingConsent = false.
This is Cursor-shaped: privacy by default, research data only with consent.
The desktop agent can edit files and run terminal commands in your project. That is the product. You control how aggressive it is:
Treat agent shell access like giving a junior engineer a terminal on your machine. Review diffs. Use git. Don’t point it at production credentials without a plan.
Desktop releases publish version metadata (including SHA512 when provided) on the public feed used by the website and in-app updater. Prefer downloads from catalyst.nyptid.com only — not third-party mirrors.
Installer integrity is as good as the feed + TLS to our API/CDN. We are not claiming SLSA L3 or signed Windows Authenticode for every private-beta build yet — check the release notes for the build you install.
Single-region, single-team ops. No multi-region active-active, no customer VPC peering, no on-prem appliance — if you need those, talk to us for Enterprise roadmap rather than assuming they exist.
We’ll update this page when those change. Overclaiming is a security bug.
Email security@nyptidindustries.com with steps to reproduce, impact, and whether you’re okay with coordinated disclosure. Please do not open public issues for active zero-days.
Account / billing: support@nyptidindustries.com. Privacy policy: privacy.html.
Download the IDE free. Start a cloud trial only when you want managed Anthropic + xAI agents.