1. Who Operates Waylith
Waylith Solutions LLC ("Waylith," "we," "us," or "our") operates waylith.com and the Boson desktop and iOS applications. Questions and privacy requests may be sent to office@waylith.com.
2. Information We Collect
We collect information you choose to provide and technical information needed to operate accounts, the website, downloads, support, and Boson cloud synchronization.
- Waylith account information, including your name, email address, account identifier, authentication state, and legal-document acceptance records.
- Messages or contact information you send to Waylith by email or phone.
- Website and download information, including ordinary request metadata, IP address, user agent, security events, and error or performance logs generated by providers.
- Boson account, business, operational, inventory, client, service, invoice, preference, audit, and user-selected image data that you enter into the product.
3. Shared Waylith And Boson Accounts
Waylith and Boson use the same Supabase Auth user pool. An account created on waylith.com can be used in Boson, and an account created in Boson can be used on waylith.com. Supabase enforces one authentication identity per email address.
Passwords are transmitted to Supabase for authentication. Waylith does not receive or store your password in readable form. Browser and Boson sessions may remain on your device so you can stay signed in.
4. Boson Local Storage And Cloud Sync
Boson is local-first. Business records are cached on your device so core records remain available while offline. When you are signed in and connected, records synchronize through the owner-only Supabase schema.
Synchronized records are ordinary JSON data protected by encrypted transport, provider controls, and authorization policies. They are not end-to-end encrypted or field-level encrypted by Boson, and privileged infrastructure or database administrators remain inside the trust boundary. The local cache, durable outbox, and browser session are not encrypted by Boson at the application layer.
5. How We Use Information
- Create, authenticate, secure, and support your Waylith identity.
- Provide the Waylith website, Boson downloads, business tracking, reporting, invoices, preferences, synchronization, and restoration.
- Maintain integrity, prevent abuse, diagnose failures, and protect users and services.
- Respond to support requests, legal obligations, and valid legal process.
6. Providers And Disclosures
We do not sell personal information, use it for cross-app advertising, or use third-party advertising trackers. We share information only with providers needed to operate the services, when you direct us, or when required by law.
- Supabase provides authentication, database hosting, synchronization APIs, operational logging, and account deletion infrastructure.
- Cloudflare and OpenAI Sites provide website hosting, delivery, and network security.
- GitHub hosts Boson release files and may receive ordinary network information when you download an installer.
- Frankfurter provides exchange-rate information to Boson, and Apple processes TestFlight or App Store activity under Apple's own terms.
7. Cookies And Device Storage
Waylith uses device storage for the selected light or dark theme and for Supabase authentication sessions. Infrastructure providers may use strictly necessary cookies or similar technologies for security, load management, and abuse prevention. We do not use advertising cookies.
8. Retention, Deletion, And Your Choices
Account and synchronized product information is retained while your account is active or as reasonably needed to provide and secure the services. Boson provides permanent account deletion in Personal Settings. Because the identity is shared, deleting the Boson account also deletes the underlying Waylith authentication account and synchronized Boson workspaces.
Exports, device backups, other-device caches, and files you downloaded remain under your control and may need to be removed separately. Limited provider logs or backups may remain for a defined period for security, disaster recovery, fraud prevention, or legal compliance.
Depending on where you live, you may have rights to request access, correction, deletion, restriction, or a copy of personal information. Contact office@waylith.com to make a request.
9. Security, International Processing, And Children
Waylith uses encrypted network connections, authenticated requests, owner-based database access controls, and server-only administrative credentials for sensitive backend operations. No system can guarantee absolute security, and you are responsible for protecting passwords, devices, and exported backups.
Waylith and its providers may process information in countries other than where you live. Boson's current Supabase project is hosted in the Asia-Pacific region. The services are intended for business operators and are not directed to children under 13 or the minimum age required by local law.
10. Changes And Contact
We may update this policy as the website, Boson, and our providers change. The effective date identifies the current version. Material changes will be reflected on this page or in the relevant product.
Privacy questions and requests: office@waylith.com · (239) 456-8082 · Waylith Solutions LLC, 30 N Gould St, Ste N, Sheridan, WY 82801, USA.

