BorgMate is designed to operate entirely on your machine. Here is exactly what it does and does not do.
BorgMate does not collect any information about you, your system, or your usage. There are no analytics SDKs, no crash reporting services, no usage metrics. The application does not phone home.
Your files are never sent anywhere except the backup destination you configure — a local drive, a NAS, or a remote server over SSH. BorgMate calls the borg command-line tool directly on your machine. There is no intermediary service, no cloud relay, and no account required.
The only external connection BorgMate may initiate is an HTTPS request to borgmate.oddbit.io to check for application updates. This happens once on startup and can be disabled entirely in Settings → General → Check for Updates. The request contains no user data — it only fetches a version number and changelog.
Repository passphrases and SSH key passphrases are stored in your operating system's native credential store:
Passphrases are never written to configuration files or log files.
BorgMate stores its configuration, operation journal, and debug logs in your user application data directory. These files never leave your machine. Log files can be configured with a retention period and are automatically cleaned up.
The BorgMate website uses Google Analytics to track page visits and download counts for internal statistics.
No personal information is collected. We do not run advertising, and we do not share data with third parties beyond what Google Analytics itself processes.