Your grant strategy, application drafts, and organizational data are sensitive. Omnavar treats them that way.
Everything. By default, no data leaves your computer. There is no account creation, no cloud storage, no server to sync with, and no analytics. The application works entirely offline for all core features.
All stored data is encrypted with AES-256-GCM:
The encryption key is derived from your operating system's secure credential storage (Windows Credential Manager). The key is never stored in a file on disk.
When you search for grants, your search query is sent to the Simpler.Grants.gov API. No organizational data is included in the request.
If you configure a writing provider (Claude, ChatGPT, or Gemini), draft requests are sent to that provider's API with your organization profile and grant details for context. If you enable vault access in Settings, document content may also be included. You control which provider receives this data. Omnavar does not proxy, cache, or log any of this traffic.
When a grant is awarded, you can optionally contribute an anonymous record to a public aggregate. Only the rounded amount and funder type are submitted. A fresh random salt generates a non-reversible pseudonym. No organization name, EIN, grant name, or funder name is ever sent. The record is Ed25519-signed and committed to a public git repository. This is entirely optional and the dialog explains exactly what will be submitted.
Omnavar is open source under AGPL-3.0. The full source code is at codeberg.org/Veydrin/omnavar. Read every line, build it yourself, and confirm that it does exactly what this page says.