Notes for IT teams: managed installs
Updated 8 July 2026
This page is for IT admins rolling SalesGhost out to a team. If you're installing for yourself, the install guide is all you need.
Installers
- Windows: SalesGhost ships as an MSI, so it deploys through the tooling you already use for Windows fleets (Intune, SCCM, GPO, and similar). Download the current MSI from the download page.
- macOS: the Mac app is signed and notarized, so it installs and launches cleanly under Gatekeeper on managed Macs. Distribution is the standard drag-to-Applications app bundle.
Requirements: macOS 14.2+ or Windows 10/11.
Updates
The app keeps itself current: updates download in the background and apply when the user restarts the app (a small "Restart to update" pill prompts them, never mid-call). There's no separate updater service to manage.
Permissions to pre-approve
SalesGhost needs two permissions to do its job — hearing both sides of a call:
- Microphone — the user's side of the conversation. Standard OS mic permission; the app prompts on first session.
- System audio capture — the other side of the call. On Windows this works without any permission grant. On macOS it's gated behind System Settings → Privacy & Security → Screen & System Audio Recording → System Audio Recording Only (end-user walkthrough).
On managed Macs, if your MDM policy restricts privacy permissions, users may find the system-audio toggle greyed out. Pre-approving these two permissions via your MDM's privacy-preferences payload saves a support round-trip per user.
Note the scope on macOS: SalesGhost uses Apple's audio-only capture — the "System Audio Recording Only" tab, not full screen recording. The app never records the screen, and the permission you approve reflects that.
Network access
Allow HTTPS traffic to:
- salesghost.app — web app, sign-in, downloads, billing
- api.salesghost.app — the desktop app's API traffic
Sign-in is a hosted flow that opens in the user's default browser and hands back to the app, so browsers on managed machines need to be able to reach salesghost.app and complete redirects.
Data handling, briefly
Questions your security team will likely ask first:
- Transcripts are processed to power the product only — they are not used to train third-party foundation models
- Data is encrypted in transit and at rest
- Hosting is on cloud infrastructure in the US/EU
- A DPA is available on request via support@salesghost.app
For anything beyond that — security questionnaires, procurement reviews, deployment questions we haven't covered here — email support@salesghost.app and we'll get you to the right person.