PocketForge Privacy Policy

Last updated: April 2026

See also: PocketForge Terms of Service

What Is PocketForge?

PocketForge is an iOS application for IT administrators to monitor and manage VMware vSphere, Nutanix Prism, and Proxmox hypervisor environments. PocketForge connects directly from your device to your servers. WeaveHub does not host your infrastructure and does not receive your infrastructure data.

1. Information We Collect

1.1 Apple User ID

When you start a free trial, PocketForge uses Sign in with Apple to obtain a pseudonymous, app-scoped identifier (the Apple User ID). This identifier is used solely to determine trial eligibility and is sent to the WeaveHub licensing server at licensing.weavehub.app. We do not receive your name or email address through this process.

1.2 App Store Subscription Data

If you purchase a PocketForge subscription, the transaction is processed entirely by Apple through the App Store. WeaveHub receives a cryptographically signed transaction record (JSON Web Signature) from Apple’s StoreKit framework, which we verify through our licensing service. This verification confirms your subscription status and includes:

  • An anonymous transaction identifier assigned by Apple
  • The product identifier of your subscription
  • Transaction timestamps and expiration dates

We do not receive your name, email address, Apple ID, payment method, or billing details through this process.

2. Information Stored Locally on Your Device

The following data is stored exclusively on your device and is never sent to WeaveHub:

  • Connection profiles (hostname, port, username) — stored in SwiftData on your device
  • Server credentials (passwords) — stored in the iOS Keychain, which uses hardware-backed encryption
  • App lock PIN — PBKDF2 hashed and stored in the iOS Keychain
  • Biometric authentication — managed entirely by iOS LAContext; no biometric data is stored by PocketForge
  • Cached infrastructure data (VMs, hosts, alerts, metrics) — held in memory only and discarded when the app is closed

3. Information We Do NOT Collect

PocketForge does not include any analytics, telemetry, crash reporting, or advertising SDKs. We do not collect:

  • Usage analytics, behavioral data, or app interaction history
  • Location data
  • Contacts, health data, photos, or browsing history
  • Advertising identifiers
  • Crash reports or device diagnostics

4. Infrastructure Data

When you use PocketForge to monitor or manage your hypervisor environments, your device communicates directly with your servers over HTTPS. Infrastructure data (VM lists, host metrics, alerts, power actions) travels directly between your device and your servers. WeaveHub does not proxy, intercept, log, or have any access to this traffic.

5. Third-Party Services

PocketForge interacts with the following third-party services:

  • Sign in with Apple — for trial activation identity verification
  • Apple App Store / StoreKit — for subscription purchases and management
  • WeaveHub Licensing Server (licensing.weavehub.app) — for trial eligibility checks and subscription verification

PocketForge does not integrate with any analytics, advertising, or crash reporting services.

6. Data Retention

  • Apple User ID: Retained while your relationship with the service is active, plus 12 months after last use, then deleted.
  • Subscription verification records: Retained for the duration of your subscription plus 90 days, or as required for financial record-keeping.
  • On-device data: Deleted when you remove profiles within the app or uninstall PocketForge.

7. Your Rights

GDPR (EU/EEA/UK)

If you are located in the European Economic Area, United Kingdom, or Switzerland, you have the right to access, rectify, erase, restrict processing of, and port your personal data. To exercise these rights, contact us at Contact Us.

CCPA (California)

California residents have the right to know what personal information we collect, request deletion, and opt out of any sale of personal information. WeaveHub does not sell personal information. Categories of personal information collected: identifiers (Apple User ID) and commercial information (subscription status). To exercise these rights, contact us at Contact Us.

8. Data Security

We implement appropriate technical measures to protect the limited information we process:

  • Server credentials are stored in the iOS Keychain, which uses hardware-backed encryption
  • All network communication uses TLS encryption
  • Subscription verification uses cryptographic signature validation of Apple’s JWS tokens
  • App lock PINs are hashed with PBKDF2 and a random salt before storage

9. Children’s Privacy

PocketForge is not directed to children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided information to us, please contact us and we will take steps to delete such information.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by updating the “Last Updated” date at the top of this page. Your continued use of PocketForge after changes become effective constitutes acceptance of the revised policy.

11. Contact Us

If you have questions about this Privacy Policy or wish to exercise your data rights, contact us at:

WeaveHub Technologies LLC
Email: Contact Us