Please read these Terms of Service carefully before using Pocket Code. These terms cover general app usage, subscriptions and premium plans, usage of artificial intelligence features, and protection of your personal data. The canonical text of these Terms is the English version published at this URL; translations are provided for convenience.
1. Acceptance of Terms
By downloading and using Pocket Code, you agree to these Terms of Service. If you do not agree with these terms, please do not use the application. You must be at least 13 years old to use Pocket Code. If you are between 13 and 16 years old, you must have parental or guardian consent.
2. License
Pocket Code is provided under an open-source license with free basic features. You are granted a non-exclusive, non-transferable license to use the software on compatible Android devices. Some advanced features are available through premium subscription plans (see section 13).
3. User Responsibilities
You are responsible for:
Maintaining the security of your API keys and credentials
Compliance with third-party service terms (OpenAI, GitHub, etc.)
Any code you write and deploy using Pocket Code, including AI-generated code
Backing up your projects
Costs associated with using third-party services (APIs, hosting, etc.)
Keeping your account secure and notifying us immediately of any unauthorized access
4. Prohibited Uses
You may not use Pocket Code to:
Violate local, national, or international laws or regulations
Infringe on intellectual property rights
Distribute malware, viruses, or harmful code
Abuse third-party services integrated with the app
Reverse engineer, decompile, or attempt to extract source code
Fraudulently use subscriptions, free trials, or payment systems
Engage in scraping, abusive automation, or attacks against our services or APIs
5. Intellectual Property
Pocket Code and its content are owned by the Pocket Code team and protected by intellectual property laws. Code you write manually in the app is yours. Code generated by AI features may be subject to licensing limitations from AI providers (see section 14).
6. Disclaimer of Warranties
Pocket Code is provided 'AS IS' without warranty of any kind, express or implied. We do not guarantee that the application will be error-free, uninterrupted, or meet your specific requirements.
7. Limitation of Liability
The Pocket Code team is not liable for any damages arising from your use of the application, including but not limited to: data loss, API costs, deployment issues, damages caused by AI-generated code, or any indirect or consequential damages.
8. Third-Party Services
Pocket Code integrates third-party services (GitHub, GitHub Copilot, OpenAI, Anthropic, Supabase, Render, among others). Your use of these services is subject to their own terms and conditions. We are not responsible for changes, interruptions, costs, or issues with third-party services.
9. Service Modifications
We reserve the right to modify, suspend, or discontinue any part of Pocket Code at any time without prior notice. We will not be liable to you or any third party for any modification, suspension, or interruption.
10. Changes to Terms
We reserve the right to modify these terms at any time. Continued use of the application after changes constitutes acceptance of the new terms. We will notify you of significant changes through in-app notifications, email, or publication on our website at least 15 days in advance.
11. Governing Law
These terms shall be governed and construed in accordance with applicable laws. For users within the European Union, the rights established in European consumer protection legislation and the General Data Protection Regulation (GDPR) are recognized and respected.
12. Dispute Resolution
Any dispute related to these terms will first be addressed by good-faith contact at [email protected]. If it cannot be resolved, EU consumers may bring proceedings in the courts of their domicile (Regulation (EU) 1215/2012, arts. 17–19) and may also submit the dispute to the European Commission's Online Dispute Resolution platform at https://ec.europa.eu/consumers/odr — our email for that platform is [email protected]. For all other users, exclusive jurisdiction lies with the courts of our registered office in Spain, except where mandatory consumer law in your jurisdiction grants you alternative fora.
13. Subscriptions and Premium Plans
Pocket Code operates under a freemium model. Basic features are free, while advanced features require an active subscription.
Subscription prices are displayed in the app and renew automatically at the end of each billing period unless cancelled
Free trial periods, if offered, will convert to a paid subscription upon completion unless cancelled beforehand
You can cancel your subscription at any time from Google Play settings. Cancellation takes effect at the end of the current billing period and you will retain access until that date
Refunds are handled through Google Play Store policies. Pocket Code does not process payments directly. EU consumers have a 14-day right of withdrawal under Directive 2011/83/EU; however, per art. 16(m) of that Directive (art. 103.m of Spanish TRLGDCU) the right does not apply once digital content delivery has begun with your prior express consent — by tapping Subscribe you give that consent and acknowledge you lose the withdrawal right
We reserve the right to change subscription prices with at least 30 days notice. You will be notified before the new price takes effect
If you switch to a free plan, you will lose access to premium features at the end of your billing period. Your local projects and data will not be affected
14. Artificial Intelligence and Generated Code
Pocket Code integrates artificial intelligence features (including GitHub Copilot, OpenAI, and other providers) to assist with code generation. By using these features:
AI-generated code is provided 'as is' and it is your responsibility to review it before use
We do not guarantee the accuracy, security, performance, or absence of errors in AI-generated code
You are solely responsible for reviewing, testing, and deploying any AI-generated code in your projects
AI-generated code may contain patterns similar to third-party code with its own licenses. It is your responsibility to verify license compatibility
Conversations and prompts sent to AI providers are processed through their APIs. Please refer to each provider's privacy policy to learn how they handle your data. Pocket Code itself does NOT use your prompts, code or AI responses to train any model, ours or third-party
Important: Always review and test AI-generated code before using it in production. Do not blindly trust generated code for critical applications.
15. Data Protection and GDPR
We are committed to protecting your personal data in accordance with the General Data Protection Regulation (GDPR) and applicable privacy laws.
The legal basis for processing your data is your explicit consent and our legitimate interest in improving the service
We only collect minimal necessary data: anonymized analytics, error reports, and performance metrics. We never access the content of your code
You have the right to access, rectify, delete, port, and object to the processing of your personal data at any time
We retain analytical data for a maximum of 24 months. You can request immediate deletion of your data from the app settings
Some service providers may process data outside the European Union. In such cases, we ensure adequate safeguards are in place as required by GDPR
To exercise your data protection rights, contact our data protection officer at [email protected]
16. Account Termination
The relationship established by these terms may be terminated under the following conditions:
You can delete your account and associated data at any time from the app settings
We reserve the right to suspend or terminate your account if you violate these terms, without prior notice
Upon termination, you will lose access to premium features, cloud-synced data, and server-stored projects
Projects and files stored locally on your device are not affected by account termination
17. Age Restrictions
Pocket Code is designed to be used by individuals with appropriate legal capacity.
You must be at least 13 years old to use Pocket Code. Users under 16 require parental or legal guardian consent
We do not knowingly collect personal data from children under 13. If we discover that a minor has provided data without consent, we will delete it immediately
Privacy Policy
At Pocket Code, your privacy is our priority. This policy transparently explains how we handle your information when you use our website and application, what data we collect, how we protect it, and what rights you have. We do not sell personal data and we do not train AI models — ours or anyone else's — on your code, prompts or files.
1. Information We Collect
We collect different types of data depending on whether you use our website or the Android application:
Website (pocketcodeapp.com):
Pages visited and time on site (Google Analytics)
Device type and browser
Approximate location (country/city)
Referral source (how you arrived at the site)
Android Application (with your consent):
Anonymous usage analytics: features used, navigation flows, and feature popularity (Firebase Analytics). Your code content is never sent
Crash reports: stack traces, device model, and OS information when the app crashes (Firebase Crashlytics)
Push notification token (Firebase Cloud Messaging) so we can deliver the notifications you enable
Authentication data: email address, username (optional), user ID, and sign-in provider (Google, GitHub, or email) managed through Firebase Authentication
Subscription data: your plan status, purchase history, and billing period, managed through RevenueCat. We do not store payment data (cards, bank accounts)
When you first install the app, a consent dialog is shown where you can choose which data categories to share (analytics, crash reports, performance). You can change these preferences at any time from Settings > Privacy.
2. How We Use Your Data
Analytics data is used solely to:
Improve user experience on the site and app
Understand which content and features are most useful
Optimize site and app performance
Make informed decisions about new features and improvements
3. The App and Your API Keys
The Pocket Code Android app does NOT collect or store any of your projects, code, or personal data on our servers. Everything stays on your device.
Important: If you choose to use the AI Copilot feature, you provide your own API keys (OpenAI, Anthropic, etc.). These keys are stored encrypted locally on your device and are NEVER transmitted to our servers. We do not use your prompts, code or AI responses to train any model — and as of 2026 the major providers' API endpoints we call do not use customer prompts for training by default, but you should verify your specific plan with each provider.
4. Third-Party Services
When you use integrations in the app, you are subject to their respective privacy policies:
GitHub: For repositories, version control, and GitHub Copilot
Deployment platforms (Render, Vercel, Railway): For application deployment
AI Services (OpenAI, Anthropic, Google): When you use your API key for the copilot
Firebase (Google): Analytics, authentication, crash reporting, and cloud storage
RevenueCat: Subscription and in-app purchase management
5. Data Security
We implement multiple security measures to protect your information:
API keys are stored encrypted on your device using Android Keystore
Communications with third-party services use TLS/SSL encryption
We do not store passwords or credentials on our servers
We perform regular security audits of our code and dependencies, and use StrongBox-backed AES-256-GCM where the device supports it; if a personal data breach occurs we notify the Spanish AEPD within 72 hours per art. 33 GDPR and affected users without undue delay where the risk is high
6. Cookies and Tracking Technologies
Our website uses cookies and similar technologies to enhance your experience:
Essential cookies: required for site functionality (language preference, session)
Analytics cookies: Google Analytics for anonymous usage statistics
You can manage or disable cookies from your browser settings at any time
7. Your Rights
Under data protection legislation (including GDPR for EU users), you have the right to:
Access: request a copy of the data we hold about you
Rectification: correct inaccurate or incomplete data
Erasure: request that we delete your personal data
Portability: receive your data in a structured, machine-readable format
Objection: object to the processing of your data in certain circumstances
Disable cookies and tracking in your browser settings — and lodge a complaint with the Spanish Agencia Española de Protección de Datos (AEPD) at aepd.es. We respond to verified rights requests within 30 days, extendable by two months for complex cases (art. 12(3) GDPR). For users in California (CCPA/CPRA), Brazil (LGPD), the UK (UK GDPR) and other jurisdictions, equivalent rights apply — write to [email protected]
8. Data Retention
We retain your data only for as long as necessary for the purposes described in this policy:
Website analytics data: maximum 24 months, then automatically deleted
App analytics data (Firebase): maximum 14 months, then automatically deleted
Local app data: stored on your device, under your full control. Deleted when you uninstall the app
Crash reports: anonymized and retained for 90 days to improve stability
Authentication data: retained while your account is active. You can request deletion at any time
Subscription data: retained as required by tax legislation and Google Play policies
9. International Transfers
Some sub-processors (e.g. RevenueCat in the US) may process data outside the EU. Transfers are covered by the European Commission's Standard Contractual Clauses (Decision 2021/914) and, where the sub-processor self-certifies, the EU-US Data Privacy Framework (Decision (EU) 2023/1795). A copy of the SCCs in force is available on request at [email protected].
10. Children's Privacy
Pocket Code requires users to be at least 13 years old to use the application, due to community features including messaging and user-generated content. We do not knowingly collect information from children under 13. The app includes an age verification step during onboarding. Users between 13 and 16 must have parental or guardian consent. If you are a parent/guardian and believe your child under 13 has provided us with personal information, please contact us immediately so we can remove it.
11. Changes to This Policy
We may update this privacy policy from time to time. We will notify you of any significant changes by posting the new policy on this page with an updated date, and through in-app notifications for important changes. We recommend reviewing this policy periodically.
Open Source Licenses
Pocket Code stands on the shoulders of giants. We thank the open source community for making this project possible. Below are the licenses of the main libraries we use.
Automatically generated from the source repository on 5/20/2026. 82 components under 14 distinct licenses.
Provides TLS and crypto primitives (libssl.so + libcrypto.so). Bundled both inside the PostgreSQL engine tarball and under assets/nodejs-runtime/lib for the Node.js runtime (libssl.so.3 / libcrypto.so.3). OpenSSL relicensed to Apache-2.0 as of 3.0.
The PostgreSQL binaries and supporting shared libraries are sourced from Termux's Android port (build scripts and patches). Termux build configuration is Apache-2.0; upstream sources are unmodified.
libnode_binary.so is a custom Android build of Node.js (Termux aarch64). It runs the AI provider CLIs (Claude Code, Gemini, Codex) and the on-device dev server / linters. Its dynamically-linked shared libraries ship under assets/nodejs-runtime/lib and are extracted to the app's private files dir at first launch: libz (zlib), libcrypto/libssl (OpenSSL 3 / Apache-2.0), libicui18n/libicuuc/libicudata (ICU), libc++_shared (LLVM libc++ / Apache-2.0 w/ LLVM exception), libcares (c-ares / MIT), libsqlite3 (SQLite / public domain). All are permissive — no GPL/LGPL. The official Node.js LICENSE bundles many third-party components; their notices are reproduced in this app's notice.txt.
GNU Lesser General Public License v2.1 (LGPL-2.1)1 component
Component
Version
Type
URL
TinyCC (TCC)
Linked statically into libpocketcode_tcc.so. Per LGPL-2.1 §6, you have the right to relink against a modified TinyCC. The vendored source is in frontend/core/tcc/tcc-vendor/.
Public Domain (SQLite Blessing) (Public-Domain-SQLite)1 component
Component
Version
Type
URL
SQLite
Ships as libsqlite3.so under assets/nodejs-runtime/lib — a runtime dependency of the bundled Node.js binary (node:sqlite). SQLite is dedicated to the public domain, with no licensing restrictions.
Used by the optional 'Local PostgreSQL' database connection. Binaries ship as both bundled tarball assets and renamed lib*.so files. Sourced from the Termux Android port of PostgreSQL; the original PostgreSQL source is at git.postgresql.org/git/postgresql.git tag REL_18_2. All databases live entirely on the user's device — no PostgreSQL data is sent to any server we control.
Unicode collation and locale handling. Bundled both inside the PostgreSQL engine tarball and under assets/nodejs-runtime/lib for the Node.js runtime (libicui18n.so.78 / libicuuc.so.78 / libicudata.so.78).
The official PostgreSQL JDBC Driver. PocketCode uses it to talk to the embedded local PostgreSQL server over 127.0.0.1 loopback. PgJDBC is BSD-2-Clause — fully compatible with commercial distribution. Replaces a previous shell-out to psql, which transitively depended on GNU readline (GPL-3).
This list includes the main dependencies. For the complete list of dependencies, check the package.json file in our GitHub repository.
Anthropic Claude Code (optional download)
PocketCode integrates Claude Code, a CLI tool owned by Anthropic PBC. Because it ships under a commercial license, it is NOT bundled in the distributed APK. It's downloaded on demand from the public npm registry only with your explicit consent through the install dialog in Settings → API Keys → Claude.
By installing it, you accept Anthropic PBC's legal terms directly:
PocketCode is not a party to that agreement and does not relicense or redistribute the CLI. The downloaded binary stays in the app's private storage and can be removed via the same dialog or by uninstalling the app.
Source code offer: BusyBox (GPLv2)
PocketCode ships BusyBox v1.34.1-meefik as a separate native library (libbusybox.so) inside the Android terminal module. BusyBox is free software under the GNU General Public License version 2 (GPLv2).
GPLv2 §3 obliges us to deliver the complete corresponding source. We satisfy this obligation in two complementary ways:
1. Inside the app (GPLv2 §3(a) — source accompanying the binary)
Every PocketCode APK includes the same source tarball, its SHA-256 and the full GPLv2 text under assets/legal/. To copy them to your Downloads folder, open the app and go to Settings → Open-source licenses → BusyBox source (GPL-2.0) → “Save source to Downloads”. The files land under Download/PocketCode-GPL/ and can be verified with sha256sum -c busybox-source-1.34.1-meefik.tar.gz.sha256.
No internet connection required — the source travels with the binary.
2. From this website (GPLv2 §3(b) — written offer)
The same package is permanently hosted here, byte-for-byte identical to the one bundled in the APK:
SHA-256 sums of all of the above and of the shipped binaries
This offer is valid for at least three (3) years from the date the corresponding binary was last distributed, per GPLv2 §3(b). Alternatively you may request the source on physical media by writing to [email protected].
Right to modify and relink (LGPL-2.1 §6)
PocketCode incorporates components under the GNU Lesser General Public License version 2.1. Per LGPL §6, you have the right to modify the LGPL library and to relink PocketCode against the modified version.
Tiny C Compiler (TCC) — vendored source unmodified at frontend/core/tcc/tcc-vendor/ in the public repo
To exercise this right, download the upstream sources or our public repository and follow the build instructions documented upstream. PocketCode does not expose proprietary interfaces that would prevent relinking against a modified version.