§ · Privacy
We collect as little data as we can get away with and never sell any of it. This policy covers our paid Stored Transfers. Quick Share is peer-to-peer and end-to-end encrypted, so there's nothing for us to collect in the first place.
Payment information. Whatever Stripe needs to process a charge. We never see your card; Stripe holds the data and sends us a customer id.
Email. If you create an account, we use your email for sign-in (magic links), account recovery, and the occasional product update you didn't specifically ask for. It isn't shared with third parties.
File metadata. For Stored Transfers we keep the file name, size, and type so we can serve the download. When a transfer expires or is deleted, its metadata goes with it. Quick Share files never touch our infrastructure, so there's nothing to keep.
Purpose. Your email exists for account recovery, spam defence, and occasional product updates. File metadata exists to make the transfer work — nothing else.
Third parties. We don't sell or share personal data. Subscriptions keep the service running, not advertising. Without a Download.fyi account we literally can't store any of your data.
How long we keep it. Account data lives while the account does. Transfer data lives until the transfer expires or is deleted. To erase your account, email support@download.fyi.
How we protect it. Quick Share streams files directly between browsers via WebRTC, encrypted client-side with AES-GCM 256. Stored Transfers are encrypted at rest with AES-256.
Access, correct, delete. You can request any of these by emailing support@download.fyi.
One cookie only. A functional session cookie named token for login. No trackers, no analytics cookies, no fingerprinting.
GDPR. EU/EEA users retain all rights under the General Data Protection Regulation, including access, rectification, and erasure.
Updates. We may update this page; changes live here. Continuing to use the service means you're okay with the current version.
Questions? contact@download.fyi.