Privacy Policy

Effective Date: February 8, 2026
Last Updated: February 8, 2026

Privacy at a Glance

AllClouds is committed to protecting your privacy. We do not sell, rent, or share your personal data with third parties for marketing purposes. Your cloud storage credentials and files remain on your device and the respective cloud providers' servers. We never store your files or authentication tokens on our own servers.

1. Introduction

This Privacy Policy ("Policy") describes how AllClouds ("we," "our," or "us") collects, uses, and discloses information when you use our mobile application (the "App"). By using the App, you agree to the collection and use of information in accordance with this Policy.

2. Information We Collect

2.1 Cloud Service Authentication Data

When you connect your cloud storage accounts (Google Drive, Microsoft OneDrive, Dropbox) to the App, we collect and process:

OAuth Tokens: Access tokens and refresh tokens obtained through industry-standard OAuth 2.0 authentication protocols
Account Identifiers: Email addresses and unique account identifiers associated with your cloud accounts
File Metadata: File names, sizes, types, modification dates, and folder structures

Important: All authentication tokens are stored exclusively in your device's secure encrypted storage (Android KeyStore / iOS Keychain). We do not transmit or store these credentials on our servers.

2.2 Google Drive - Limited Scope Access

For Google Drive integration, we request the https://www.googleapis.com/auth/drive.file scope, which provides restricted access as follows:

We can only access files that were created or uploaded through the AllClouds application
We cannot access your existing personal files, photos, documents, or any other content not created by our App
We access your account's total storage quota metadata (e.g., "10 GB used of 15 GB") solely for display purposes within the App dashboard
Storage quota access does not grant us visibility into the content of files contributing to that usage

2.3 Advertising Data

We use Google AdMob to display advertisements within the App. AdMob may collect:

Device advertising identifiers (IDFA/AAID)
Device type and operating system version
General location data (city/country level)
Ad interaction data (views, clicks)

For detailed information about Google's data practices, please review Google's Privacy & Terms.

2.4 App Usage Data

We may collect anonymous usage statistics including:

App launch frequency and session duration
Feature usage patterns (e.g., file operations performed)
Crash reports and error logs for debugging purposes

3. How We Use Your Information

We use the collected information for the following purposes:

Service Delivery: To provide core functionality including file browsing, uploading, downloading, and management across your connected cloud accounts
Authentication: To maintain secure connections to your cloud storage providers
App Improvement: To analyze usage patterns and improve user experience
Monetization: To display relevant advertisements through Google AdMob
Support: To respond to user inquiries and troubleshoot technical issues

4. Google User Data Policy Compliance

AllClouds' use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Specifically:

We only request access to Google Drive data that is necessary for the App's core functionality
We do not allow humans to read your Google Drive data unless:
- You provide explicit consent for specific support requests
- It is necessary for security purposes (e.g., investigating abuse or bugs)
- Required to comply with applicable law
- For internal operations with strict access controls in place
We do not use Google Drive data for serving advertisements
We do not transfer Google Drive data to third parties except as necessary to provide the App's functionality or as required by law

5. Data Storage and Security

5.1 Local Storage

Authentication tokens and account metadata are stored locally on your device using platform-specific secure storage mechanisms:

Android: Android KeyStore system
iOS: iOS Keychain Services

5.2 Cloud Storage

Your files remain stored exclusively with your chosen cloud service providers (Google Drive, OneDrive, Dropbox). We do not create copies of your files on our servers.

5.3 Security Measures

We implement industry-standard security practices including:

Encrypted storage of sensitive credentials
HTTPS/TLS encryption for all network communications
OAuth 2.0 authentication with PKCE (Proof Key for Code Exchange) where supported
Automatic token refresh to minimize exposure of long-lived credentials
Scope verification to prevent unauthorized access escalation

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

6. Data Retention

We retain your data as follows:

Authentication Tokens: Stored on your device until you disconnect the respective cloud account or uninstall the App
Usage Analytics: Aggregated and anonymized data may be retained indefinitely for statistical purposes
Crash Reports: Retained for up to 90 days for debugging purposes

7. Third-Party Services

The App integrates with the following third-party services, each with their own privacy policies:

Google Drive: Google Privacy Policy
Microsoft OneDrive: Microsoft Privacy Statement
Dropbox: Dropbox Privacy Policy
Google AdMob: Google Ads Privacy Policy

We encourage you to review these policies to understand how these services handle your data.

8. Children's Privacy

The App is not intended for use by children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us, and we will take steps to delete such information.

9. Your Rights and Choices

You have the following rights regarding your data:

Access: You can view your connected accounts and their associated data within the App
Deletion: You can disconnect cloud accounts at any time, which will delete associated tokens from your device
Revocation: You can revoke the App's access to your cloud accounts through your respective cloud provider's security settings

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that differ from those in your country. By using the App, you consent to such transfers.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for legal, operational, or regulatory reasons. We will notify you of material changes by:

Posting the updated Policy within the App
Updating the "Last Updated" date at the top of this Policy
Providing in-app notifications for significant changes

Your continued use of the App after such modifications constitutes your acknowledgment and acceptance of the updated Policy.

12. Contact Information

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: labsnexa638@gmail.com
App Name: AllClouds

13. Legal Basis for Processing (GDPR)

If you are located in the European Economic Area (EEA), our legal basis for collecting and using your information depends on the data and context:

Consent: When you connect cloud accounts, you provide explicit consent for us to access the specified data
Contractual Necessity: Processing is necessary to provide the App's services
Legitimate Interests: We process data for analytics and app improvement, balanced against your privacy rights