We never store your files. Peeza is a conduit: file bytes stream between two devices that are online at the same time, end-to-end encrypted with a key our servers never receive. There is no cloud copy of your files — nothing to store, subpoena, or leak.
To route transfers and run accounts, our relay stores a small amount of metadata — never file contents or encryption keys:
| Data | Why | Kept for |
|---|---|---|
| Account (email, sign-in provider, display name, plan) | your account | while your account exists |
| Session token | keep you signed in | until you sign out |
| Share link (token, room, timestamps) | deliver a one-time link | 7 days, then deleted |
| Your devices (name, OS, version, public key) | "send to my devices" | until you remove the device |
| Directed-send envelope (sealed key, opaque to us) | hold a transfer for an offline device | 7 days, then deleted |
| Connectivity metrics (direct-vs-relay, timings) | improve reliability | anonymous — no account, room, or IP |
Your IP is used only in memory, only for rate limiting (to keep the free relay fair). It is never written to disk and never logged, and it is discarded when the relay restarts.
Paid plans are processed by our merchant of record, who acts as the seller of record and handles billing and applicable taxes. We receive confirmation of your plan, not your full payment details.
Product analytics are off by default and opt-in; if enabled, they contain no identifiers and no file names — only aggregate, day-bucketed counts. Crash reports are never sent automatically; you are shown the report and choose whether to send it, and home-directory paths and file names are scrubbed first. The share site (peeza.link) carries no analytics of any kind.
This marketing website (peeza.app) uses privacy-friendly, anonymous traffic statistics; a cookie banner lets you decline non-essential cookies.
You can access, correct, export, or delete your data — for most users that's an email address and a usage counter. To make a request, email privacy@peeza.app; we respond within 30 days. EU users have a right to a representative and to lodge a complaint with a supervisory authority; where we have no EU establishment we appoint an Article 27 representative (details to be listed here on publication).
The relay runs on cloud infrastructure; we aim to keep EU users' signaling and relay traffic in EU regions. Because files are end-to-end encrypted and never stored, no readable file data crosses any border through us.
We cannot see file contents. Report abuse — including child-safety concerns — to abuse@peeza.app; our only remedy is invalidating a share link, and we preserve and report as required by law. See also Security.
Privacy questions or requests: privacy@peeza.app.