Privacy Policy

Last updated: —. Version: draft.

Draft — pending legal review. This describes how peeza handles data today, drawn directly from how the software works. It is not yet the binding version and is not legal advice. A French-first version will accompany it before launch.

The short version

We never store your files. Peeza is a conduit: file bytes stream between two devices that are online at the same time, end-to-end encrypted with a key our servers never receive. There is no cloud copy of your files — nothing to store, subpoena, or leak.

What the relay keeps

To route transfers and run accounts, our relay stores a small amount of metadata — never file contents or encryption keys:

DataWhyKept for
Account (email, sign-in provider, display name, plan)your accountwhile your account exists
Session tokenkeep you signed inuntil you sign out
Share link (token, room, timestamps)deliver a one-time link7 days, then deleted
Your devices (name, OS, version, public key)"send to my devices"until you remove the device
Directed-send envelope (sealed key, opaque to us)hold a transfer for an offline device7 days, then deleted
Connectivity metrics (direct-vs-relay, timings)improve reliabilityanonymous — no account, room, or IP

IP addresses

Your IP is used only in memory, only for rate limiting (to keep the free relay fair). It is never written to disk and never logged, and it is discarded when the relay restarts.

Payments

Paid plans are processed by our merchant of record, who acts as the seller of record and handles billing and applicable taxes. We receive confirmation of your plan, not your full payment details.

Telemetry & crash reports

Product analytics are off by default and opt-in; if enabled, they contain no identifiers and no file names — only aggregate, day-bucketed counts. Crash reports are never sent automatically; you are shown the report and choose whether to send it, and home-directory paths and file names are scrubbed first. The share site (peeza.link) carries no analytics of any kind.

This marketing website (peeza.app) uses privacy-friendly, anonymous traffic statistics; a cookie banner lets you decline non-essential cookies.

Your rights

You can access, correct, export, or delete your data — for most users that's an email address and a usage counter. To make a request, email privacy@peeza.app; we respond within 30 days. EU users have a right to a representative and to lodge a complaint with a supervisory authority; where we have no EU establishment we appoint an Article 27 representative (details to be listed here on publication).

Where data is handled

The relay runs on cloud infrastructure; we aim to keep EU users' signaling and relay traffic in EU regions. Because files are end-to-end encrypted and never stored, no readable file data crosses any border through us.

Abuse & safety

We cannot see file contents. Report abuse — including child-safety concerns — to abuse@peeza.app; our only remedy is invalidating a share link, and we preserve and report as required by law. See also Security.

Contact

Privacy questions or requests: privacy@peeza.app.