CirroGuide
Legal

Privacy Policy

This policy explains what data CirroGuide accesses, what it stores, and how it is used.

Effective date: March 23, 2026  ·  Last updated: May 8, 2026

1. Information CirroGuide accesses

When you connect a cloud provider such as Google Drive, Dropbox, or OneDrive, CirroGuide may access file metadata needed to build storage summaries and identify exact duplicates. This can include file names, file sizes, modification times, file paths, provider account email, and provider-specific identifiers.

On iPhone, CirroGuide accesses your Photos library only after you explicitly grant permission. Photo and video metadata (and pixel data for duplicate / blur detection) is read directly on your device. Your photos are never uploaded to CirroGuide servers.

2. How CirroGuide accesses Google Drive

CirroGuide uses the minimum possible Google Drive permissions. It requests only two scopes:

  • drive.metadata.readonly — reads file names, sizes, modification dates, and folder structure to build your storage summary and find duplicates. This scope cannot modify or delete anything.
  • drive.file — reads and deletes only the specific files you explicitly select. It cannot see or touch any other file in your Drive.

CirroGuide deliberately does not request unrestricted Drive access. This means the app can only act on files you directly choose — it cannot scan or modify your entire Drive without your involvement.

Every Google Drive deletion requires your explicit confirmation. When you choose to delete files from Google Drive, CirroGuide opens the official Google Drive Picker — Google's own file-selection interface. You must select the files yourself in the Picker before any deletion can proceed. CirroGuide cannot delete Drive files silently or without that step.

The permissions you grant in the Picker are stored locally on your device and are never shared with CirroGuide servers. If the app is closed mid-cleanup, any unfinished deletions are saved locally and offered for retry next time you open the app — your already-copied files are always safe.

3. File content access

CirroGuide may access file content only when needed for features such as duplicate detection, hashing, or file preview. File previews and temporary working files are stored locally on your device unless otherwise stated.

4. What stays on your device

Duplicate scan caches, preview files, temporary scan state, and device-local provider sessions are stored locally on your device. Signing out of CirroGuide clears local provider sessions on that device.

5. What may sync with your CirroGuide account

CirroGuide may sync lightweight account and dashboard metadata, such as your account profile, connected-provider summaries, reclaimed-space totals, and recent activity timestamps, to support cross-device restore and account continuity.

6. How your data is used

CirroGuide uses accessed data only to provide storage summaries, duplicate cleanup, previews, account sync, and related product features. CirroGuide does not sell your personal data and does not use your data for third-party advertising or cross-app tracking.

7. Diagnostics, analytics, and performance data

To keep CirroGuide reliable, the app collects limited diagnostic and product-usage data via Google Firebase services (Crashlytics, Analytics, Performance Monitoring, Remote Config). This data is linked to your CirroGuide account identifier. No file content, file paths, photo data, or cloud credentials are included in diagnostic reports. Apple advertising identifier (IDFA) is not collected.

8. Authentication and purchase data

CirroGuide uses Sign in with Apple and Sign in with Google for account creation and provider authentication. CirroGuide Pro subscriptions are processed by the App Store (iOS) or Google Play (Android); we receive only the receipt or purchase token needed to confirm your entitlement and do not see your payment-method details.

9. Third-party services

CirroGuide relies on the third-party services listed below. Your use of these services is also subject to their own terms and privacy policies.

  • Google Drive, Dropbox, OneDrive, iCloud Drive (file access you authorize)
  • Google Firebase (Crashlytics, Analytics, Performance, Remote Config)
  • Google Sign-In, Sign in with Apple (authentication)
  • App Store (iOS) and Google Play Billing (subscriptions)

10. Data retention

Locally stored caches and temporary files remain on your device until they are cleared by the app, overwritten, or removed when you sign out. Synced account metadata may remain associated with your CirroGuide account until you request deletion.

11. Security

CirroGuide uses platform and provider authentication flows and stores sensitive local session information using available device-secure storage mechanisms where supported. No security method is perfect, and you should use providers and devices you trust.

12. Contact

If you have questions about this policy, contact support@cirroguide.com.