Privacy Policy — Cloudless Share
Last updated: April 6, 2026
Welcome to the Privacy Policy for Cloudless Share (collectively "we", "us" or "our"). Cloudless Share is a privacy-first file sharing application developed by Prayo, an independent product studio based in India. This policy explains how we handle your data when you use the Cloudless Share mobile application (the "App").
Our Core Privacy Principle
Cloudless Share is designed around a fundamental principle: your files and personal data stay on your device. We do not operate cloud storage for your files. All file transfers happen directly between devices using peer-to-peer (WebRTC) technology. Your photos, videos, documents, and other files are never uploaded to or stored on our servers.
1. Information We Collect
1.1 Information You Provide
- Display name: An optional name you set in Settings so recipients can identify you. This is stored locally on your device and shared only during active transfer sessions.
1.2 Information Processed On-Device Only
The following data is processed entirely on your device and never leaves your phone:
- Photos and media files: Accessed only when you select files to share. We do not upload, scan, or index your media on any server.
- Face recognition data: The App uses on-device machine learning to group photos by faces. All face data is stored locally in a SQLite database on your device and is never transmitted.
- Contacts: If you choose to share contacts, they are read on-device and transferred directly to the receiver via WebRTC. No contact data is sent to our servers.
- File system access: When you browse files, all operations happen locally. No file listings or metadata are transmitted to us.
1.3 Information Collected Automatically
- Firebase Cloud Messaging (FCM) token: Used solely for delivering push notifications about incoming transfer requests. We do not associate this token with any personal identity.
- Basic analytics: We may collect anonymized, aggregated usage statistics (e.g., number of transfers completed) through Firebase Analytics to improve the App. This data cannot identify individual users.
- Crash reports: If the App crashes, anonymized diagnostic data may be sent to help us fix bugs. This does not include your files, photos, or personal content.
1.4 Information We Do NOT Collect
- We do not collect, access, or store the contents of your files
- We do not require or collect email addresses, phone numbers, or account credentials
- We do not track your location
- We do not build advertising profiles
- We do not sell or share personal data with third parties for marketing
2. How We Use Your Information
| Purpose | Data Used | Basis |
|---|---|---|
| Enable peer-to-peer file transfers | Session signaling data (temporary) | Performance of service |
| Deliver push notifications for incoming transfers | FCM token | Performance of service |
| Improve app stability and fix bugs | Anonymized crash reports | Legitimate interest |
| Display advertisements | AdMob SDK (Google's ad network) | Consent / Legitimate interest |
| Understand aggregate usage patterns | Anonymized analytics | Legitimate interest |
3. Peer-to-Peer Transfers and Signaling
When you initiate a file transfer, a lightweight signaling server helps the two devices discover each other and establish a direct connection. Once the connection is established:
- Files are transferred directly between devices via WebRTC DataChannel
- The signaling server does not see, store, or relay your file contents
- Session metadata (session IDs, connection state) is temporary and deleted after the transfer completes
- Optional end-to-end encryption adds an additional layer of security
4. Third-Party Services
| Service | Purpose | Data Shared |
|---|---|---|
| Firebase Cloud Messaging (Google) | Push notifications for transfer requests | FCM device token |
| Firebase Analytics (Google) | Anonymized app usage analytics | Anonymized usage events |
| Firebase Crashlytics (Google) | Crash reporting | Anonymized crash diagnostics |
| Google AdMob | Display advertisements | Ad identifiers (per Google's policies) |
These services are governed by Google's Privacy Policy.
5. Data Storage and Retention
- On-device data (photos, face clusters, settings, transfer history): Stored locally on your device. Deleted when you uninstall the App or clear its data.
- Signaling session data: Temporary and deleted after each transfer session completes or expires.
- FCM tokens: Managed by Firebase and refreshed automatically by the operating system.
6. Data Security
We implement appropriate security measures including:
- HTTPS-only communication between the app and the signaling server
- WebRTC DTLS encryption for all peer-to-peer connections
- Optional end-to-end encryption for file transfers
- On-device processing for all face recognition and ML features
- No persistent storage of file contents on any server
7. Children's Privacy
Cloudless Share is not directed at children under the age of 13. We do not knowingly collect personal information from children. If you believe a child under 13 has provided us with personal data, please contact us so we can take appropriate action.
8. Your Rights
Since Cloudless Share stores virtually all data on your device, you have direct control:
- Access and portability: Your data is already on your device
- Deletion: Uninstall the App or clear its data in Android Settings
- Opt-out of analytics: Disable analytics in your device settings
- Ad preferences: Manage ad personalization in your Google account settings
For users in the EEA, UK, or other regions with data protection laws, you may also exercise your rights under applicable regulations by contacting us.
9. International Data Transfers
The signaling server and push notification services may operate in different countries. However, since no personal files or identifying data are stored on these servers, the privacy impact is minimal. Third-party services (Firebase, AdMob) are governed by Google's own data transfer mechanisms.
10. Changes to This Policy
We may update this Privacy Policy from time to time. If there is a substantial change, we will notify you through the App or on this page. Your continued use of the App after changes constitutes acceptance.
11. Contact Us
If you have questions or concerns about this Privacy Policy or how your data is handled, please contact us:
- Developer: Prayo (independent product studio, India)
- Email: support@prayo.co.in
- Website: prayo.co.in