Privacy Is Architecture, Not a Toggle
Most apps treat privacy as a settings page. We treat it as a constraint on how the software is built. There's a fundamental difference.
Open any app's settings page. You'll find a section called "Privacy" with toggles: disable analytics, opt out of data sharing, don't send crash reports.
This is privacy theater. The architecture already supports data collection — the toggles just control whether it's active. One update, one dark pattern, one acquisition, and those toggles disappear.
Real Privacy Is Structural
In the Rusty Suite, privacy isn't a feature you can toggle. It's a constraint on the architecture:
- No network permissions means the app physically cannot send data anywhere. Not "we promise we don't" — the operating system enforces it.
- Local SQLite databases mean your data is a file on your disk. Not a row in someone's cloud database.
- No accounts means there's no user profile to correlate, no login to track, no session to monitor.
- No telemetry SDK means there's no code in the binary that could phone home, even if someone wanted it to.
The Test
Here's a simple test for whether an app is actually private: disconnect from the internet and use it for a week.
Every Rusty Suite app passes this test. They work identically offline. There's nothing to phone home to, nothing to sync, nothing that degrades without a network connection.
If an app doesn't work offline, it's not private — it's just pretending.
Why This Matters
Privacy isn't about hiding things. It's about ownership. Your photos in RustyView are your files on your disk. Your wiring diagrams in RustyWires are your data in your SQLite database. Your budget in RustyBudget is your spreadsheet that never leaves your machine.
You don't need to trust us with your data because we never have it in the first place.
That's not a toggle. That's architecture.