Privacy Policy
Effective date: July 4, 2026 · Applies to: CloudSweep (iOS & macOS) v1.0+
1. Information We Collect: None
CloudSweep does not collect, store, or share any personal information. Specifically:
- No account registration is required, and there are no accounts on our side.
- No name, email, or contact information is collected.
- We operate no servers that receive your data — your files never touch our infrastructure.
- No analytics, telemetry, or tracking SDKs are included in the app.
- No advertising, and no advertising identifiers (IDFA).
- No device identifiers, push tokens, or fingerprints are collected by us.
2. The Duplicate Index Stays on Your Device
To find duplicates, CloudSweep builds an index of the sources you connect. This index contains file names, file sizes, checksums, dates, visual fingerprints (compact numeric summaries used to detect visually-similar photos), and thumbnails. This index:
- Is stored only on your device.
- Is never uploaded to us or to any third party.
- Is deleted for a given source when you disconnect that source, and deleted entirely when you delete the app.
3. Photos Library Access
If you grant CloudSweep access to your Photos library (full or limited), the app reads photos and videos to compute checksums and visual fingerprints. All scanning and matching happens on-device. Your photos leave the device in exactly one case: when you run “Back up to Drive”, which uploads the photos you selected directly from your device to your own Google Drive. They are never routed through us, because we have no servers to route them through.
4. Cloud Accounts & OAuth Tokens
When you connect a cloud source (Google, Microsoft OneDrive, or Dropbox), sign-in happens in the system browser directly with that provider — CloudSweep never sees your password. The provider issues the app an OAuth token, which:
- Is stored only in your device's Keychain.
- Is sent only to that provider's own API, and never to us.
When you disconnect a source in Settings, CloudSweep deletes that source's indexed data from your device and revokes the app's access with the provider where the provider supports programmatic revocation.
5. Google User Data
Google Drive and Google Photos Picker connections are rolling out in an upcoming release; the following applies when you connect them.
CloudSweep requests the following Google OAuth scopes, and uses each only for the purpose described:
drive.metadata.readonly— read file metadata from your Google Drive: names, sizes, checksums, and thumbnails. This is used solely to detect duplicates. File contents are never read under this scope.drive.file— create files that the app itself uploads — specifically, the “CloudSweep Backups” folder used by the “Back up to Drive” feature. This scope cannot read your other Drive files.photospicker.mediaitems.readonly— read only the Google Photos items you explicitly pick in the Google Photos picker, so they can be checked for duplicates.
CloudSweep's use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.
Google user data is processed entirely on your device. It is never transferred to third parties, never used for advertising, and never read by humans.
6. Microsoft OneDrive & Dropbox
For OneDrive and Dropbox, CloudSweep reads file metadata and thumbnails to detect duplicates, in the same on-device manner as above. When you remove a duplicate on these services, the file is moved to that service's own recoverable trash (recycle bin) — not permanently deleted. The same promises apply: your OneDrive and Dropbox data is never transferred to third parties, never used for advertising, and never read by humans. These providers' own privacy policies govern how they handle the API requests the app sends: Microsoft Privacy Statement, Dropbox Privacy Policy, Google Privacy Policy.
7. Deletions Are Always Recoverable
Every removal CloudSweep performs goes to a recoverable location — Recently Deleted for your Photos library, the recycle bin or trash for cloud services, and the system Trash on macOS. CloudSweep never permanently deletes a file. Recoverability windows (typically around 30 days) are set by each provider.
8. Subscriptions (StoreKit)
CloudSweep Premium is purchased through Apple's App Store. Payment is handled entirely by Apple; we receive no payment details, no card numbers, and no billing address — only a confirmation that a transaction is valid. Apple's privacy policy governs subscription transactions: apple.com/legal/privacy.
9. Children's Privacy
CloudSweep is not directed at children under 13, and the app does not knowingly collect information from children under 13 (it collects no personal information from anyone).
10. Changes to This Policy
If we make material changes to this policy, we will update the effective date above and (where the change is material) surface a notice in the app on next launch. Continued use of the app after changes constitutes acceptance of the updated policy.
11. Contact
Questions about this policy? Contact us at cloudsweep-privacy@marsstudio.app or write to us at MARS Studio, marsstudio.app.