Privacy Policy

1.Who we are

SyncLine ("SyncLine", "the app") is developed and published by Praveen Mantapam ("we", "us", "the developer"), an independent software developer. SyncLine is a paid/freemium Windows desktop application distributed through the Microsoft Store.

For any privacy question, you can reach us at mantapampraveen@gmail.com.

2.Scope of this policy

This policy explains how data is handled when you use the SyncLine desktop application. It is important to understand SyncLine's architecture, because it shapes everything below: SyncLine is a local, client-only application. It runs entirely on your device. The developer operates no servers, no backend, and no cloud infrastructure that receives your data.

This policy does not cover the practices of Microsoft or Google, whose services you connect to and use at your own direction. Their handling of your data is governed by their own agreements (see Third-party services).

3.What we do not collect

We want to be unusually direct about this. The developer does not:

• collect, receive, store, or transmit your personal data or the content of your files;
• operate any analytics, telemetry, crash-reporting, or tracking servers;
• maintain any account, profile, or login with us - there is no "SyncLine account";
• use advertising, ad networks, or third-party trackers;
• sell, rent, share, or disclose your data to anyone (we never receive it in the first place).

Because no data ever reaches us, there is no developer-held database of users, files, or activity to breach, subpoena, or monetize.

4.Data processed on your device

To do its job, SyncLine stores certain working data locally on your PC, under %LOCALAPPDATA%\SyncLine. This data never leaves your device except as described in Section 5. It includes:

• An encrypted local database - your sync state and baseline (what SyncLine believes is in sync) plus your activity history. It is encrypted at rest using AES.
• Cached authentication tokens - OAuth tokens for the cloud account(s) you connect, stored in an encrypted cache (Windows DPAPI / MSAL encrypted cache).
• App secrets - sealed using Windows Data Protection (DPAPI), so they can be read only by the same Windows user account on the same device.
• Local log files - rolling diagnostic logs kept on your device to help you troubleshoot. They are not transmitted to us or anyone else.

5.Data sent to your cloud provider

The only data SyncLine transmits over the network is the data required to perform the synchronization you configured: your file content and file metadata (such as names, sizes, and timestamps) are exchanged directly between your PC and the cloud provider you connected - Microsoft OneDrive or Google Drive.

This transfer happens at your direction, only for the folders you explicitly chose to sync, and travels directly between your device and the provider over encrypted connections (TLS). Nothing passes through the developer, because the developer has no servers in that path.

6.Authentication & credentials

Sign-in is interactive and user-delegated. When you connect an account, authentication happens on Microsoft's or Google's own secure consent screens. The app never sees, handles, or stores your password, and it uses no developer-held client secrets. SyncLine receives only the delegated access tokens needed to sync the folders you authorized, and those tokens are cached encrypted on your device (see Section 4).

7.Third-party services

SyncLine's functionality depends on services operated by Microsoft and Google. When you use those services through SyncLine, your use is also governed by their terms and privacy policies, which we encourage you to review:

• Microsoft - OneDrive / Microsoft Graph (synchronization) and the Microsoft Store (app distribution, licensing, and in-app purchase of the Pro add-on). See the Microsoft Privacy Statement.
• Google - Google Drive API (synchronization) and Google OAuth (sign-in). See the Google Privacy Policy.

SyncLine is not affiliated with, sponsored by, or endorsed by Microsoft or Google. Your relationship with those providers, including how they store and process your files and account data, is between you and them.

8.How your data is protected

Even though your data stays with you, SyncLine is built to protect it:

• Encryption at rest - the local database is encrypted with AES; credentials and secrets are sealed with Windows DPAPI and tied to your Windows user account.
• Encryption in transit - all communication with cloud providers uses TLS.
• OS-protected credentials - tokens live in an encrypted cache that only your Windows user can decrypt on your device.
• No servers - there is no central system, so there is no central target.

No method of storage or transmission is perfectly secure, and the security of your device, your Windows account, and your cloud accounts ultimately remains your responsibility.

9.Data retention & deletion

Because all SyncLine data is local, you are always in control of its lifetime:

• Disconnect an account in the app to clear its cached authentication tokens.
• Uninstall SyncLine, then delete the %LOCALAPPDATA%\SyncLine folder, to remove the local database, logs, and any remaining cached data from your device.

Deleting SyncLine's local data does not delete the files already synced to your cloud provider; manage those through OneDrive or Google Drive directly.

10.Children's privacy

SyncLine is a general-purpose productivity tool and is not directed at children. It is not intended for use by anyone under the age of 13 (or under 16 where a higher age applies under local law). We do not knowingly collect personal data from children - and in fact we do not collect personal data from anyone.

11.International data transfers

The developer performs no cross-border transfers of your data, because the developer never receives your data. Your data stays on your device and is sent only to the cloud provider you choose. Any international transfer that may occur as part of that provider's storage of your files is governed by that provider's policies, not by us.

12.Your rights (GDPR / UK GDPR)

If you are in the European Economic Area or the United Kingdom, data-protection law gives you rights over your personal data, including the rights of access, rectification, erasure, restriction, portability, and objection.

The developer is not a data controller or processor of your personal data under the GDPR, because we do not collect or process it - it stays on your device under your control, or is processed by the cloud provider you chose (who acts as the relevant controller/processor for the data you store with them). You can exercise the rights above directly: by managing or deleting your local data on your device (see Section 9), and by contacting Microsoft or Google regarding data they hold. If you have questions about SyncLine specifically, contact us at mantapampraveen@gmail.com.

13.California privacy rights (CCPA/CPRA)

If you are a California resident, the CCPA/CPRA gives you rights regarding your personal information. The developer does not collect, sell, or share ("share" as defined under the CPRA) any personal information, and has not done so in the preceding 12 months. Because we hold no personal information about you, there is nothing for us to disclose, delete, or opt out of selling. You will never be discriminated against for exercising any privacy right.

14.Changes to this policy

We may update this Privacy Policy from time to time - for example, to reflect changes in the app or in applicable law. When we do, we will revise the "Effective date" above and make the updated policy available within the app and/or on our website. Material changes will be communicated through an app or Microsoft Store update. Your continued use of SyncLine after an update means you accept the revised policy.

15.Contact

For any question about this Privacy Policy or your privacy when using SyncLine, contact:

Praveen Mantapam
Email: mantapampraveen@gmail.com