Privacy Policy

Last updated: February 2026

1. Introduction

PiDash ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use the PiDash mobile application ("the App"). PiDash is designed with a privacy-first architecture — your device data stays between your phone and your Raspberry Pi.

2. Our Architecture: How Your Data Flows

PiDash acts as an SSH client that communicates directly with your Raspberry Pi or Linux device. Understanding this architecture is key to understanding our privacy model:

  • Phone ↔ Your Raspberry Pi (direct): All system data, terminal sessions, file transfers, and Docker commands travel directly between your phone and your device over SSH/SFTP. PiDash never proxies, relays, or intercepts this traffic.
  • Phone ↔ PostHog: Anonymous error reports and performance metrics are sent to PostHog to help us identify and fix crashes. No personally identifiable information or device data is included.
  • Phone ↔ RevenueCat: When you subscribe to PiDash Pro, RevenueCat manages your subscription. It receives purchase receipts and device metadata for validation purposes only.

3. Information We Collect

Anonymous Error Tracking

We use PostHog to collect anonymous crash reports and performance metrics to help us identify and fix issues. The following data may be collected:

  • Device model and operating system version
  • App version and build number
  • Crash stack traces and error messages
  • Performance metrics (app startup time, screen render times)

All error reports are anonymized and do not include your name, email, SSH credentials, or any data from your Raspberry Pi. We do not use this data to track you across other apps or websites.

Subscription Data

When you subscribe to PiDash Pro, RevenueCat receives purchase receipts from the App Store. RevenueCat also automatically collects your device model, OS version, app version, and country/region for purchase validation and analytics. RevenueCat does not receive any of your Raspberry Pi data or SSH credentials.

What We Do NOT Collect

We want to be explicit about data we never collect, store, or have access to:

  • Your SSH credentials (stored only in your device's native keychain)
  • Your Raspberry Pi hostname or IP address (stored only on your device)
  • Your terminal session content or command history
  • Your files, file contents, or file transfer data
  • Your Docker container configurations or logs
  • System stats from your Raspberry Pi (CPU, memory, etc.)
  • Location data, contacts, photos, or other device data

4. Tracking & Cross-App Data

PiDash does not track you across other companies' apps or websites. We do not participate in ad networks, retargeting, or cross-app tracking of any kind. We do not use Apple's IDFA (Identifier for Advertisers) or any equivalent advertising identifier. Accordingly, the App does not present an App Tracking Transparency (ATT) prompt because no cross-app or cross-site tracking occurs.

5. Legal Basis for Processing (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, we process your personal data on the following legal bases:

  • Legitimate interest: Anonymous error tracking via PostHog is collected to improve the App's stability and performance. These reports are anonymized and do not include personally identifiable information (Art. 6(1)(f) GDPR).
  • Contractual necessity: Subscription management via RevenueCat is necessary to fulfill your purchase and provide access to paid features (Art. 6(1)(b) GDPR).

6. SSH Credential Storage & Security

Your SSH credentials are the most sensitive data the App handles. Here is exactly how we protect them:

  • Stored exclusively in your device's native encrypted keychain using Expo Secure Store (iOS Keychain) with WHEN_UNLOCKED_THIS_DEVICE_ONLY access level
  • Used only at the time of each SSH connection to authenticate
  • Never written to AsyncStorage, logs, crash reports, or any unencrypted location
  • Never transmitted to PiDash servers, PostHog, RevenueCat, or any third-party service
  • Never synced across devices — you must re-enter credentials on each device
  • Immediately deleted from secure storage when you remove a device

7. Device Data

Your Raspberry Pi information (name, hostname, port, credentials) is stored entirely on your phone. Hostnames and names are kept in local device storage (AsyncStorage). SSH credentials are stored in encrypted device storage (iOS Keychain). None of this data is sent to PiDash servers or any third party.

8. Third-Party Services

The App integrates with the following third-party services:

  • PostHog: Anonymous error tracking and performance monitoring. Receives crash reports and device metadata. Does not receive your name, email, or any Raspberry Pi data.
  • RevenueCat: Subscription and in-app purchase management. Receives purchase receipts and device metadata for purchase validation.
  • Apple App Store: App distribution and payment processing.

We require that each third-party service provider maintains data protection standards that are the same as or equivalent to those described in this Privacy Policy.

9. Data Sharing

We do not sell, trade, or rent your personal information to third parties. We do not share your data with third-party AI services. Your data is shared only with the third-party services listed above, solely for the purpose of providing the App's functionality. We may disclose your information if required by law or to protect our legal rights.

10. Data Retention & Deletion

All Raspberry Pi data displayed in the App is fetched on-demand and cached locally on your phone only. We do not retain any of your device data on our servers.

When you remove a device or clear app data, the following data is immediately removed:

  • All SSH credentials from device secure storage
  • PIN hash and biometric authentication flags
  • All device configuration from device storage
  • All cached system stats and terminal history

11. App Lock & Biometrics

The App offers optional PIN and biometric (Face ID / Touch ID) authentication for additional security. Your PIN is stored as a hash in device secure storage — never in plain text. Biometric data is handled entirely by your device's operating system and never touches the App.

12. Your Rights

You have the right to:

  • Access the personal information we hold about you
  • Request correction of inaccurate information
  • Delete all your data at any time by removing devices from the App
  • Remove individual devices and their associated data from your phone

Additional rights for EEA/UK residents (GDPR): You also have the right to data portability, the right to restrict or object to processing, and the right to lodge a complaint with your local data protection authority.

Additional rights for California residents (CCPA/CPRA): You have the right to know what personal information we collect, the right to delete your data, and the right to opt out of the sale or sharing of personal information. We do not sell or share your personal information as defined under the CCPA.

13. Children's Privacy

The App is not intended for use by children under the age of 13 (or 16 in the EEA). We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child under the applicable age, we will take steps to delete such information.

14. International Data Transfers

PostHog processes app analytics data in the United States. RevenueCat processes data in the United States. Your Raspberry Pi data travels directly between your phone and your device and is not subject to transfer through our infrastructure. For data transferred outside the EEA, appropriate safeguards (such as Standard Contractual Clauses) are in place in accordance with applicable data protection laws.

15. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the updated policy within the App or on our website. Your continued use of the App after changes constitutes acceptance of the updated policy.

16. Contact Us

If you have any questions about this Privacy Policy, our data practices, or wish to exercise any of your rights, please contact us at support@pidash.app.

17. Summary

In short: PiDash is an SSH client for your Raspberry Pi. Your SSH credentials never leave your device's keychain. Your Pi's hostname stays on your device. Your system data, terminal sessions, and files never touch our servers. We use PostHog for anonymous error tracking and RevenueCat for subscriptions. We do not track you across apps or websites. When you remove your data, everything is gone.