EtherFlow

Privacy Policy

Last updated: April 7, 2026

EtherFlow ("the Service") is operated by EtherFlow. This Privacy Policy explains how we collect, use, and protect your personal information when you use our file delivery platform.

1. Information We Collect

We collect the following types of information:

• Account information: Email address and basic profile data provided through OAuth sign-in (Google or GitHub)
• Upload metadata: File names, sizes, delivery settings (expiration, password protection), and timestamps
• Usage data: Delivery tracking events such as downloads, page views, and access logs
• Billing information: Subscription status and plan details (payment card details are handled entirely by Paddle and never stored by us)

2. How We Use Your Information

We use the information we collect to:

• Provide and operate the file delivery service
• Process billing and manage subscriptions
• Send transactional emails (delivery notifications, account alerts)
• Monitor and improve service performance and reliability
• Enforce our Terms of Service and prevent abuse

3. Third-Party Services

We use the following third-party services to operate EtherFlow:

• Cloudflare: Hosting, CDN, Workers runtime, D1 database, and R2 object storage
• Paddle: Payment processing and subscription management (Merchant of Record). Paddle collects and processes your payment information under their own privacy policy.
• Google: OAuth authentication for sign-in
• GitHub: OAuth authentication for sign-in

Each third-party service operates under its own privacy policy. We encourage you to review their policies.

4. Data Storage

Your account data and delivery metadata are stored in Cloudflare D1 (a serverless SQL database). Uploaded files are stored in Cloudflare R2 (object storage). All data is encrypted in transit using TLS. Files are stored in Cloudflare's global infrastructure and are subject to Cloudflare's security practices.

5. Data Retention

• Uploaded files: Automatically deleted when the delivery TTL expires. No files are retained after expiration.
• Account data: Retained while your account is active. Upon account deletion, your personal data is removed within 30 days.
• Delivery metadata: Retained for analytics and audit purposes while your account is active.

6. Your Rights

You have the right to:

• Access: Request a copy of the personal data we hold about you
• Deletion: Request deletion of your account and personal data
• Export: Request an export of your data in a portable format
• Correction: Request correction of inaccurate personal data

To exercise any of these rights, contact us at hello@slnt.dev.

7. Cookies and Local Storage

EtherFlow uses minimal client-side storage. We store your authentication session token in the browser's localStorage to keep you signed in. We do not use third-party tracking cookies or advertising pixels. No personal information is stored in cookies.

8. Children's Privacy

EtherFlow is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If we learn that we have collected data from a child under 13, we will delete it promptly. If you believe a child has provided us with personal information, please contact us at hello@slnt.dev.

9. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email or through the Service. Your continued use after changes take effect constitutes acceptance of the revised policy.

10. Contact

For privacy-related questions or requests, please contact us at hello@slnt.dev.