Legal

PhotonFile Logo

PhotonFile - Privacy Policy

Last updated:

By using PhotonFile, you agree to the practices described in this policy.

PhotonFile is privacy-first: no content storage, no tracking scripts, minimal metadata strictly for operations and reliability.

1. What We Don't Do

  • We do not store your files or inspect their contents.
  • We do not sell data, run ads, or use tracking/fingerprinting scripts.
  • We do not maintain personal profiles or accounts tied to transfers.

2. Minimal Operational Data

We collect only what's necessary to operate and secure the Service:

  • Connection metadata (IP address, session ID, retry counts, transfer duration) for routing, diagnostics, and performance.
  • Error/system logs to improve reliability and detect abuse.
  • Payment references (transaction IDs) from third-party processors; we do not store card data.
  • Support messages you send us.

Operational logs are pruned and may be anonymized on a rolling basis.

3. File Transfers

PhotonFile streams data between peers over TLS. Limited transient data may exist in memory during active sessions and is cleared when sessions end. We do not persist file contents to disk.

4. Cookies and Local Storage

No tracking cookies. Temporary session cookies may be used solely to maintain an active transfer and expire when the session ends.

5. Payments

Payments are processed by third parties such as Stripe (PCI-DSS compliant). PhotonFile does not collect or store credit card details. We may retain transaction references for confirmation and accounting.

6. Security

  • TLS-encrypted connections only.
  • Session tokens for peer authentication.
  • Hardened servers and monitoring for unauthorized access.

No system is perfectly secure, but PhotonFile minimizes exposure by avoiding data retention.

7. Data Retention

  • Operational logs (non-content) typically retained 7–30 days.
  • Payment confirmations retained as required by law and accounting.
  • No retention of file contents beyond session lifetime.

8. Your Rights

You may request deletion of support communications and ask what operational data relates to your usage. Contact [email protected].

9. Third-Party Services

We rely on limited providers (e.g., payment processors, network/CDN security). Their policies apply to their services.

10. Updates

We may update this policy. Continued use after changes constitutes acceptance. The current version is posted at /privacy.

11. Contact

Email: [email protected]

11. GDPR

You can find GDPR specific information here GDPR

Back to top