OneSync Privacy Policy
Effective Date: January 1, 2025 | Last Updated: January 1, 2025
📌 Key Summary
OneSync collects minimal information and automatically deletes transmitted data within 7 days.
Currently, no account registration is required, and we do not use ads or tracking.
1. Information Collection and Use
OneSync (the "Service") prioritizes user privacy and collects only the minimum information necessary to provide the service.
1.1 Information We Collect
- Device Information: Device UUID, device model, operating system version
- Session Information: Session code, participation time, connection status
- Transmitted Data: Files and text shared by users (temporarily stored with encryption)
1.2 Information We Do NOT Collect
- Personal identifiable information such as name, email, phone number
- Location data
- Device personal data such as contacts, calendar
- Usage tracking information
2. How We Collect Information
The Service collects information through:
- Automatically generated device UUID on first app launch
- Connection information required when creating or joining sessions
- Files and text directly selected and shared by users
3. Use of Information
| Data Type |
Purpose |
Retention Period |
| Device UUID |
Device identification within session |
Deleted within 7 days after session ends |
| Session Information |
Maintain connection between devices |
Deleted within 7 days after session ends |
| Transmitted Data |
Transfer to other devices |
Deleted within 7 days after transmission |
4. Data Protection
4.1 Security Measures
- End-to-End Encryption: All data encrypted with AES-256 during transmission
- SSL/TLS: All communications protected via HTTPS
- Temporary Storage: No permanent data storage on servers
- Automatic Deletion: All data automatically deleted within 7 days
- Cloud Storage: Secure file management through Cloudflare R2
4.2 Data Storage Location
Temporary data is stored on servers located in Germany (Hetzner Data Center) and automatically deleted after 7 days. File storage is managed through Cloudflare R2.
5. Third-Party Sharing
The Service does not share user personal information with third parties, except in the following cases:
- When required by law
- When requested by law enforcement agencies following legal procedures
6. User Rights
Users can exercise the following rights at any time:
- End Session: Ending a session terminates active connections, and data is automatically deleted within 7 days
- Delete App: Deleting the app removes all local data stored on the device
- Optional Permissions: Permissions such as file access can be selectively allowed or denied
7. Cookies and Tracking Technologies
The Service follows these policies:
- Web version uses only essential cookies for session maintenance
- No tracking cookies for advertising or analytics
- No third-party tracking tools
8. Children's Privacy
The Service does not collect personal information from children under 14.
Children under 14 require parental or legal guardian consent to use the Service.
9. Changes to Privacy Policy
This privacy policy may be updated according to laws, policies, or service changes.
Changes will be announced through in-app notifications, with major changes notified 30 days in advance.
11. Supplementary Provisions
This privacy policy is effective from January 1, 2025.