Legal

Privacy Policy

Effective date: July 4, 2026  ·  Applies to: CloudSweep (iOS & macOS) v1.0+

The short version: CloudSweep collects nothing. No accounts, no servers, no analytics, no tracking, no ads. The duplicate index the app builds — file names, sizes, checksums, dates, visual fingerprints, and thumbnails — is stored only on your device. All duplicate matching runs on-device. Your photos and files leave your device only when you run “Back up to Drive”, and then they go directly to your own Google Drive — never through us.

1. Information We Collect: None

CloudSweep does not collect, store, or share any personal information. Specifically:

2. The Duplicate Index Stays on Your Device

To find duplicates, CloudSweep builds an index of the sources you connect. This index contains file names, file sizes, checksums, dates, visual fingerprints (compact numeric summaries used to detect visually-similar photos), and thumbnails. This index:

3. Photos Library Access

If you grant CloudSweep access to your Photos library (full or limited), the app reads photos and videos to compute checksums and visual fingerprints. All scanning and matching happens on-device. Your photos leave the device in exactly one case: when you run “Back up to Drive”, which uploads the photos you selected directly from your device to your own Google Drive. They are never routed through us, because we have no servers to route them through.

4. Cloud Accounts & OAuth Tokens

When you connect a cloud source (Google, Microsoft OneDrive, or Dropbox), sign-in happens in the system browser directly with that provider — CloudSweep never sees your password. The provider issues the app an OAuth token, which:

When you disconnect a source in Settings, CloudSweep deletes that source's indexed data from your device and revokes the app's access with the provider where the provider supports programmatic revocation.

5. Google User Data

Google Drive and Google Photos Picker connections are rolling out in an upcoming release; the following applies when you connect them.

CloudSweep requests the following Google OAuth scopes, and uses each only for the purpose described:

CloudSweep's use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Google user data is processed entirely on your device. It is never transferred to third parties, never used for advertising, and never read by humans.

6. Microsoft OneDrive & Dropbox

For OneDrive and Dropbox, CloudSweep reads file metadata and thumbnails to detect duplicates, in the same on-device manner as above. When you remove a duplicate on these services, the file is moved to that service's own recoverable trash (recycle bin) — not permanently deleted. The same promises apply: your OneDrive and Dropbox data is never transferred to third parties, never used for advertising, and never read by humans. These providers' own privacy policies govern how they handle the API requests the app sends: Microsoft Privacy Statement, Dropbox Privacy Policy, Google Privacy Policy.

7. Deletions Are Always Recoverable

Every removal CloudSweep performs goes to a recoverable location — Recently Deleted for your Photos library, the recycle bin or trash for cloud services, and the system Trash on macOS. CloudSweep never permanently deletes a file. Recoverability windows (typically around 30 days) are set by each provider.

8. Subscriptions (StoreKit)

CloudSweep Premium is purchased through Apple's App Store. Payment is handled entirely by Apple; we receive no payment details, no card numbers, and no billing address — only a confirmation that a transaction is valid. Apple's privacy policy governs subscription transactions: apple.com/legal/privacy.

9. Children's Privacy

CloudSweep is not directed at children under 13, and the app does not knowingly collect information from children under 13 (it collects no personal information from anyone).

10. Changes to This Policy

If we make material changes to this policy, we will update the effective date above and (where the change is material) surface a notice in the app on next launch. Continued use of the app after changes constitutes acceptance of the updated policy.

11. Contact

Questions about this policy? Contact us at cloudsweep-privacy@marsstudio.app or write to us at MARS Studio, marsstudio.app.