Privacy Policy
Last updated: June 10, 2026
- Your files never leave your local network — no server relay, ever.
- We collect only your license key (for validation) and anonymous crash reports (opt-out).
- No analytics. No advertising identifiers. No account required.
- EU users have full GDPR rights — contact us any time.
1. Who we are
GreySpace is developed and published by:
Legal status and registered address to be completed before first public release.
Contact: [email protected]
For any privacy-related inquiry, write to [email protected]. We respond within 30 days.
2. Data we collect — and why
2a. License purchase & validation
When you buy GreySpace Pro, your payment and email are processed by LemonSqueezy (our payment processor) — governed by their Privacy Policy. We do not store your card details or billing address.
Your license key (a random alphanumeric code) is:
- Stored locally on your device only.
- Sent over HTTPS to our license validation API (
api.getgreyspace.com/validate-license) to confirm it is valid. No personal data is included in this request — only the key itself. - Validation logs are retained for 30 days (Cloudflare D1), then auto-deleted.
2b. Crash reports (Sentry) — opt-out available
The app uses Sentry.io to collect anonymous crash reports. This helps us fix bugs.
What Sentry receives when a crash occurs:
- Stack trace (code location of the crash)
- App version, operating system version, device architecture
- Nothing personal: no file names, no file contents, no network addresses, no identifiers linked to you.
Crash data is retained for 90 days on Sentry, then deleted automatically.
To opt out: open GreySpace → Settings → Advanced → toggle off "Send anonymous crash reports".
2c. Website (Cloudflare infrastructure)
This website (getgreyspace.com) is hosted on Cloudflare Pages.
Cloudflare may collect standard web server logs (IP address, browser type, referring URL)
as part of their infrastructure security, subject to
Cloudflare's Privacy Policy.
We use no cookies, no session tracking, no analytics tools (no Google Analytics, no Mixpanel, no advertising pixels of any kind).
3. What we do NOT collect
- ❌ Your files — they travel directly on your local network and never touch our servers
- ❌ Names, phone numbers, addresses, or any personal identifiers
- ❌ Location data or GPS coordinates
- ❌ Contact lists or address books
- ❌ Advertising identifiers (IDFA, GAID)
- ❌ Usage analytics or session recordings
- ❌ Device identifiers (IMEI, serial number)
4. LAN-only transfers
File transfers in GreySpace are point-to-point on your local Wi-Fi or LAN. Data travels directly from one device to another using TCP over your network. No file content is relayed through any external server, cloud service, or GreySpace infrastructure. You are in complete control of what gets transferred.
5. Data processors
| Processor | Purpose | Data shared | Policy |
|---|---|---|---|
| LemonSqueezy | Payment & license management | Email, payment info (at purchase only) | lemonsqueezy.com/privacy ↗ |
| Sentry.io | Crash reporting | Anonymous crash traces (if not opted out) | sentry.io/privacy ↗ |
| Cloudflare | Website hosting & license API | Server-level request logs, license key | cloudflare.com/privacypolicy ↗ |
6. Your rights (GDPR — EU/EEA)
If you are located in the European Union or European Economic Area, you have the following rights under the General Data Protection Regulation (GDPR):
- Right of access — request a copy of data we hold about you
- Right to rectification — correct inaccurate data
- Right to erasure ("right to be forgotten")
- Right to restrict processing
- Right to data portability
- Right to object to processing
To exercise any of these rights, email [email protected]. We will respond within 30 days.
You also have the right to lodge a complaint with your national data protection authority. In France: CNIL (cnil.fr).
Legal basis for processing: legitimate interest (crash reporting, optional) and contract performance (license validation).
7. Children's privacy
GreySpace is not directed at children under 13. We do not knowingly collect data from children. As we collect no personal data during normal use, this is already satisfied by design.
8. Data retention summary
- License validation logs: 30 days (Cloudflare D1, then auto-deleted)
- Crash reports: 90 days (Sentry, then auto-deleted)
- Purchase data: retained by LemonSqueezy per their policy (legal requirement)
- Everything else: not collected, not retained
9. Changes to this policy
If we materially change our data practices, we will update this page and the "Last updated" date above. We will not add tracking or analytics without updating this policy first.
10. Contact
Questions or requests about your data:
[email protected]