Why does the rate drop with commitment? What's the catch?

There's no catch. Pre-committed hours are scheduled hours — easier to plan, lower risk on our side, so the unit is cheaper. The savings are real because the math is real.

Who actually does the work?

One person — Isaiah. Every delivery, every revision. If you'd rather hire a team, we'll tell you straight and point you to one.

How long until I see something?

Week one, you see work. Not a deck about work.

What if I want to stop?

Month-to-month. 14 days notice. You leave with every file we built.

Will this work for my industry?

If you have real revenue and want market leadership, yes. If what you need is a one-off ad funnel or a quick logo refresh, a specialist will serve you better — and we'll point you to one.

Can you just do my site once and walk away?

Yes. One-off projects get a custom quote — scoped, fixed price, delivered, done. The tier ladder is for ongoing work; the one-off path is for the operator who needs one thing built right.

Back to The Bridge

The Bridge

Privacy Policy

Effective Date: May 23, 2026Last Updated: May 23, 2026

TL;DR — Your data stays on your Mac. The Bridge processes everything locally. The app collects nothing — no telemetry, no accounts, no data transmission. Our website uses standard analytics (Google Analytics and Meta Pixel) to understand traffic — but the app itself has zero tracking.

1. Introduction

This Privacy Policy describes how KUP Solutions (“we,” “us,” or “our”) handles information in connection with The Bridge, a native macOS application distributed via direct purchase at kup.solutions. Here's our data practice in one line: your data stays on your Mac.

2. What The Bridge Does

The Bridge is a native macOS menu bar application that acts as a local bridge between AI agents (such as Notion AI) and your Mac’s capabilities. It runs a local MCP (Model Context Protocol) server on your machine and provides tools for file management, messaging, screen capture, accessibility automation, and more — all processed locally.

3. Data Processing Model

The Bridge processes all data locally on your Mac. There is no hosted backend, no cloud processing, and no intermediary servers operated by us.

Local-only processing means:

All tool executions happen entirely on your device
No data from tool executions is transmitted to our servers — we operate zero servers
The MCP server runs on localhost and is not network-accessible by default
Your files, messages, clipboard, screen captures, and accessibility data never leave your machine through The Bridge

Three categories of outbound network connections exist, all user-initiated:

1. Notion API

When you configure a Notion integration token, The Bridge communicates directly with the Notion REST API (api.notion.com). This connection is between your Mac and Notion’s servers. We have no access to your Notion data.

2. Stripe API

If you use the optional payment execution tool, The Bridge communicates with Stripe’s API using tokenized payment methods stored in your macOS Keychain. Raw card numbers are never stored.

3. Cloudflare Tunnel (optional)

If you configure a Cloudflare Tunnel for remote access, your MCP traffic routes through Cloudflare’s network. You own and control your tunnel configuration. We do not operate, monitor, or have access to your tunnel.

4. macOS Permissions

The Bridge requests the following macOS permissions (TCC grants) to function. Each is requested individually, and you can deny or revoke any at any time:

macOS permissions requested by The Bridge and their purposes
Permission	Purpose
Full Disk Access	Read Messages history, file operations across filesystem
Accessibility	Inspect and interact with UI elements in other apps
Screen Recording	Screenshots and OCR text extraction
Automation	Control apps via AppleScript (Messages, Chrome, Finder)
Contacts	Search contacts by name, phone, or email

Denying a permission disables the associated tools but does not affect the rest of the application. macOS 15+ requires periodic re-authorization for Screen Recording.

5. What the App Does NOT Collect

No telemetry. The Bridge app does not collect usage statistics, crash reports, or behavioral data.

No account creation. The Bridge does not require an account with us.

No in-app tracking. The app contains no cookies, pixels, fingerprinting, or advertising identifiers.

No data transmission. We operate zero servers that receive data from the Bridge app.

No AI processing. The Bridge does not contain or run AI models. It is a tool bridge — intelligence stays in the AI agent.

6. Website Analytics

Our website at kup.solutions uses the following analytics services to understand how visitors find and interact with our site. These apply only to the website, not to the Bridge application.

Google Analytics 4

We use Google Analytics (Measurement ID: G-85RWQ8F711) to collect anonymized usage data such as page views, referral sources, and general geographic region. Google Analytics uses cookies. You can opt out via Google’s browser add-on (opens in new tab) or by using a browser extension that blocks tracking scripts.

Meta Pixel

We use the Meta Pixel (ID: 1333014864679926) to measure the effectiveness of our advertising and understand website traffic from Meta platforms. The pixel may collect information such as pages visited and actions taken. You can manage your Meta ad preferences at Meta Ad Preferences (opens in new tab).

These analytics tools run only on our website and are not present in the Bridge desktop application. The app itself contains no tracking code of any kind.

7. Security Model

The Bridge implements a 3-tier security gate for all tool executions:

Open

Read-only ops execute immediately

Notify

Write ops trigger a macOS notification

Request

High-impact ops require explicit confirmation

Additional protections:

Auto-escalation — Commands containing rm, kill, sudo, chmod 777, or pipes to sh/bash/eval are automatically blocked or escalated.
Forbidden paths — Write access to ~/.ssh, ~/.gnupg, ~/.aws, .env files, /System, and /Library is denied.
Audit log — Every tool call is recorded locally with timestamp, tool name, input/output summary, and duration. Never transmitted.

8. Credential Storage

If you use the Credential Manager, passwords and payment tokens are stored in your macOS Keychain — Apple’s built-in encrypted credential storage. The Bridge uses standard SecItem APIs and does not implement its own encryption. Payment card numbers are tokenized via Stripe before storage — raw card numbers are never persisted.

9. Auto-Updates

The Bridge uses the Sparkle framework for automatic updates. Update checks may transmit your macOS version and app version. No other data is transmitted. You can disable automatic update checks in Settings.

10. Third-Party Services

Third-party services used by The Bridge and our website
Service	Purpose	Scope
Notion (opens in new tab)	API integration for reading/writing workspace data	App
Stripe (opens in new tab)	Payment processing for direct purchases	App
Cloudflare (opens in new tab)	Optional tunnel for remote MCP access	App
Sparkle (opens in new tab)	Auto-update framework	App
Google Analytics (opens in new tab)	Website traffic analytics	Website
Meta (opens in new tab)	Website traffic analytics and ad measurement	Website
Stripe (opens in new tab)	Payment processing for website purchases	Website

We do not share, sell, or provide your personal data to any third party beyond what is described above. App-level connections are initiated by you and flow directly between your Mac and the third-party service.

11. Children’s Privacy

The Bridge is a developer and productivity tool and is not directed at children under 13. We do not knowingly collect information from children.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page and noted in the app’s release notes. Your continued use of The Bridge after changes constitutes acceptance.

13. Contact

For questions about this Privacy Policy:

Email: isaiah@kup.solutions

Web: kup.solutions

The Bridge Terms of Service