Privacy Policy

Last updated: April 22, 2026

This policy explains what data Sndo (“we”, “us”, “our”) collects when you use our website, the Sndo Mac app, and the Sndo iOS app (together, the “Service”), how we use it, and the choices you have.

The short version. Sndo is a file-sharing front-end for your own cloud storage. Files you share via Sndo are uploaded directly to your Google Drive or Dropbox account — they do not pass through our servers and we do not keep copies. We store only the minimum metadata needed to run your account and generate share links.

1. Who we are

Sndo is operated from the United Kingdom. For any privacy questions you can reach us at privacy@sndoapp.com.

2. Information we collect

Account information

When you sign up, we store:

Your name, email address, and chosen username.
A hashed password (we never store or log plaintext passwords — we use bcrypt).
A randomly generated API key used by the Mac and iOS apps to authenticate on your behalf.

Upload metadata

When you share a file, we store metadata about that share so the recipient's link works:

Original filename and file size.
A random 12-character share token and (if you set one) a password hash for the share.
Which storage provider hosts the file (Google Drive or Dropbox) and the provider-side URL needed to redirect downloads.
Creation time, expiry date, download count, and which branding preset was used.
A reference to the branding preset (colours, logo, footer text) you selected.

What we do not store

Copies of your files. Uploaded files live in your own Google Drive or Dropbox — we hold only a pointer to them.
Google or Dropbox OAuth tokens from the Mac/iOS apps. These tokens are stored in the macOS Keychain or iOS Keychain on your device and are never sent to our servers.
Payment information (the Service is currently free; if this changes we will update this policy before collecting anything).

Technical information

Our web server records standard request logs (IP address, user agent, URL, timestamp) for security and debugging. These logs are retained for up to 30 days and are not used for profiling or advertising.

Cookies

We use one first-party session cookie to keep you signed in to the web dashboard. We do not use third-party cookies, advertising pixels, or cross-site tracking.

3. How we use your information

To create and secure your account.
To generate share links and serve the download pages.
To show you your own upload history in the app and web dashboard.
To respond to support requests.
To detect and prevent abuse (e.g. rate-limiting signups and logins).

We do not sell your data, we do not use it for advertising, and we do not share it with data brokers.

4. Legal basis for processing (UK GDPR)

Under the UK GDPR (and EU GDPR where it applies) we must have a lawful basis for every use of your personal data. For Sndo, those bases are:

Performance of a contract (Art. 6(1)(b)) — creating and maintaining your account, storing your API key, connecting to your Google Drive or Dropbox via OAuth, generating share links, and serving the download pages. These are all necessary to provide the service you signed up for.
Legitimate interests (Art. 6(1)(f)) — keeping security and access logs, rate-limiting signups and logins, and otherwise protecting Sndo and its users from abuse. We balance this against your rights and only keep the minimum data needed for these purposes.
Legal obligation (Art. 6(1)(c)) — retaining limited records where UK law requires us to (for example, responding to a valid legal request, or keeping basic billing records for tax purposes if you are ever on a paid plan).
Consent (Art. 6(1)(a)) — used only for optional things like marketing emails or non-essential analytics, if and when we add them. You can withdraw consent at any time without affecting the core service.

We do not rely on consent for the core service: once you have an account, the processing listed under "Performance of a contract" above is what keeps Sndo working, and cannot be withdrawn without closing your account.

5. Google user data — Limited Use

When you sign in to the Sndo Mac app with Google, we request the drive.file scope. This scope is restricted to files created by Sndo — we cannot see, list, or access any other files in your Drive.

Sndo's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements. In particular:

We use Google user data only to provide the Sndo file-sharing feature you signed up for.
We do not transfer Google user data to third parties except as necessary to run the Service, for security, or to comply with applicable law.
We do not use Google user data for serving advertising.
Humans do not read your Google user data except with your explicit consent, to comply with law, or for security purposes.

You can revoke Sndo's access to your Google account at any time from your Google Account permissions page.

6. Dropbox user data

When you sign in to the Sndo Mac app with Dropbox, we request the App folder scope. This restricts Sndo to a dedicated folder inside your Dropbox — we cannot access the rest of your files.

We use Dropbox data only to upload files you share via Sndo and to generate the share links shown in the app. Dropbox OAuth tokens live on your device only and are never transmitted to our servers.

You can revoke Sndo's access to your Dropbox at any time from your Dropbox connected apps page.

7. Sharing with third parties

We share data only in these situations:

Hosting and infrastructure — our web host and database provider process data on our behalf. They're contractually bound not to use it for anything else.
Google and Dropbox — when you choose to store a file with them, the file and its filename necessarily pass through their APIs.
Legal obligations — if required to by valid legal process. We will push back on overly broad requests and notify you where permitted by law.

8. Data retention

Account data — kept while your account is active. If you ask us to delete your account, we remove your account and upload metadata within 30 days (backups may persist for up to 90 days, after which they are overwritten).
Upload metadata — kept for as long as the share exists. Expired shares are marked inactive; you can delete the underlying metadata from the dashboard.
Server logs — up to 30 days.

9. Your rights

Depending on where you live you may have the right to:

Access the personal data we hold about you.
Correct inaccurate data.
Delete your data ("right to erasure").
Export your data in a portable format.
Object to processing or restrict it.
Lodge a complaint with a supervisory authority (in the UK, the ICO).

To exercise any of these, email privacy@sndoapp.com.

10. Security

Passwords are hashed with bcrypt. Traffic is served over HTTPS. OAuth tokens for Google and Dropbox are stored in the operating-system Keychain on your device, not on our servers. Access to production data is limited to people who need it to run the Service, and is audited.

No system is perfectly secure. If we discover a breach affecting your data we will notify you and the relevant authorities as required by law, within 72 hours of becoming aware where we are subject to GDPR.

11. Children

Sndo is not directed at children under 16, and we do not knowingly collect data from them. If you believe a child has signed up, contact us and we'll delete the account.

12. International transfers

Sndo is operated from the UK. Our sub-processors (hosting, database, Google, Dropbox) may process data outside the UK or EEA. Where required, we rely on appropriate safeguards such as the UK Addendum to the EU Standard Contractual Clauses.

13. Changes to this policy

If we change this policy we will update the "Last updated" date at the top and — for material changes — email registered users before the new terms take effect.

14. Contact

Questions or requests? Email privacy@sndoapp.com.