Privacy Policy

Last updated: 11 May 2026

Summary

Thread Doctor has no backend. The developer does not collect, store, process, or have access to any of your data. There is no analytics. There is no telemetry. There are no third-party SDKs that phone home.

The only outbound network traffic Thread Doctor makes is (1) local-network discovery on your LAN, (2) Matter cluster reads via Apple's homed daemon, and (3) — only when you explicitly tap "Analyze network" — a request to the LLM provider you configured, using your own API key.

What stays on your device

• HomeKit accessory list — cached by Apple's HomeKit framework. Thread Doctor has read-only access while running.
• Thread mesh scan results — up to 20 most recent scans, stored in the app's Documents folder. You can delete them anytime via Topology → History → Clear all, or by uninstalling the app.
• Your LLM API key — stored in iOS Keychain with the kSecAttrAccessibleWhenUnlockedThisDeviceOnly attribute. The key is encrypted at rest behind your device passcode, never synced to iCloud, never exfiltrated.
• Provider preference — your selected LLM provider (Anthropic / OpenAI) and model name in UserDefaults.

Outbound network traffic

Always, while the app is running

• mDNS / Bonjour browsing on your local network. Thread Doctor browses _matter._tcp, _matterc._udp, and _meshcop._udp service types to discover Matter devices and Thread Border Routers. This traffic never leaves your LAN. iOS requires your explicit permission for this (the Local Network prompt on first launch).
• Matter cluster reads to accessories paired into your Apple Home. These go through Apple's homed daemon, which routes them to your accessories over your existing Apple Home connection. Thread Doctor never bypasses iOS or makes its own connection to your accessories.

Only when you tap "Analyze network"

Thread Doctor sends a JSON snapshot of your scanned mesh to the API endpoint of your chosen LLM provider over HTTPS. The exact payload is visible in the "Preview outbound payload" sheet before you send it — Thread Doctor adds nothing else.

The data is authenticated with the API key you entered. The developer of Thread Doctor does not have, see, or proxy this request. Once data leaves your device it is governed by your chosen provider's privacy policy:

• Anthropic privacy policy
• OpenAI privacy policy

Third parties

• Apple — HomeKit framework, Matter framework, iOS system services. Governed by your iOS settings and Apple's privacy policy.
• Anthropic — only if you select them as your LLM provider and supply an API key. Processes your "Analyze network" requests.
• OpenAI — only if you select them as your LLM provider and supply an API key. Processes your "Analyze network" requests.
• Cloudflare — hosts this marketing website. The app itself does not connect to Cloudflare. Standard Cloudflare web request logs (IP, user-agent, timestamp) apply to visitors of this site, retained per Cloudflare's policy.

Tracking and analytics

None. Thread Doctor contains no analytics SDKs, no crash reporting beyond Apple's optional system-level crash reporting (which you can disable in iOS Settings → Privacy & Security → Analytics & Improvements), no advertising identifiers, no fingerprinting.

Children

Thread Doctor is not directed at children under 13. The developer does not knowingly collect personal information from anyone, including children.

GDPR / CCPA / data-subject rights

The developer of Thread Doctor does not collect or process any personal data, so the rights granted by GDPR (access, rectification, erasure, etc.) and CCPA have no data for the developer to action. The data you generate by using Thread Doctor lives either on your iPhone (which you fully control via iOS) or at your chosen LLM provider (please contact them directly).

Changes to this policy

If anything material changes, the updated policy will be posted here and the "Last updated" date will be bumped. Substantial changes will also be noted in the app's release notes.

Contact

Questions about privacy? Email hello@threaddoctor.app.