Privacy Policy

Last updated: April 3, 2026

SkyeCONNEX Inc. ("we", "us", "our") is committed to protecting your privacy. This policy describes how we collect, use, and safeguard your information when you use SkyeCONNEX ("the Service").

1. Zero-Knowledge Encryption

SkyeCONNEX is built on a zero-knowledge architecture. This means:

We cannot read your files. All files are encrypted on your device before upload using AES-256-GCM. Only you hold the decryption keys.
We cannot access your passwords. Your User Master Key (UMK) is derived from your password using scrypt and never transmitted in plaintext.
We cannot recover your data. If you lose both your password and recovery key, your data is permanently inaccessible.

2. Information We Collect

Information You Provide

Data	Purpose	Stored
Email address	Account identification, notifications, password reset	Until account deletion
Display name	Shown in the app and shared file notifications	Until account deletion
Password hash	Authentication (bcrypt hashed, never stored in plaintext)	Until account deletion
Phone number (optional)	Account recovery, 2FA	Until account deletion
Country, region, city	Geo-compliance, data residency policies	Until account deletion
Company name, industry	Account management, tier assignment	Until account deletion
Payment information	Processed by Stripe; we do not store card numbers	Managed by Stripe

Information Collected Automatically

Data	Purpose	Retention
IP address	Security, audit logging, geo-detection	90 days
Browser user agent	Session management, security alerts	90 days
File metadata (name, size, type)	File management UI, search, deduplication	Until file deletion
Upload/download timestamps	Activity logs, analytics	Until account deletion
Network traceroutes	SkyeMap visualization of data paths	30 days
Provider health metrics	Connexion health monitoring	30 days

Information We Never Collect

File contents (encrypted before reaching our servers)
Encryption keys or passwords in plaintext
Keystrokes or screen recordings
Contacts, calendar, or other device data

3. How We Use Your Information

Service operation: Authentication, file management, provider orchestration
Security: Detecting unauthorized access, rate limiting, audit logging
Communication: Password resets, security alerts, service announcements
Compliance: Geo-fencing enforcement, data residency policies
Analytics: Aggregate usage statistics (never individual file analysis)

4. Data Storage and Location

Your encrypted file shards are stored across the cloud providers you configure. Metadata and account data are stored on our servers hosted in North America. You can control where your encrypted shards are stored through the Geo-Jurisdiction settings.

5. Third-Party Services

We integrate with the following third-party services:

Cloud storage providers (Dropbox, Google Drive, OneDrive, AWS S3, Azure, GCS) — store your encrypted file shards only
Stripe — payment processing (see Stripe Privacy Policy)
Cloudflare — CDN, DDoS protection, DNS (see Cloudflare Privacy Policy)
Google Analytics — anonymous usage analytics (no PII transmitted)
ip-api.com — IP geolocation for security and registration

We do not sell, rent, or share your personal information with third parties for marketing purposes.

6. Data Retention

Account data: Retained until you delete your account
Encrypted files: Retained until you delete them; trashed files are purged after your retention period
Audit logs: Retained for 90 days (configurable for enterprise accounts)
Session data: Automatically expired after inactivity timeout

7. Your Rights

Depending on your jurisdiction, you may have the right to:

Access your personal data (available from the Settings page)
Correct inaccurate personal data
Delete your account and all associated data
Export your files at any time
Object to processing of your data
Restrict processing in certain circumstances

To exercise these rights, contact us at privacy@skyeconnex.com or use the in-app Settings page.

8. Security

We implement industry-standard security measures including:

AES-256-GCM encryption for all files
scrypt key derivation for password-based key wrapping
Optional post-quantum (ML-KEM-1024) hybrid encryption
Rate limiting and brute-force protection
TLS 1.2/1.3 for all data in transit
Audit logging of all authentication and data access events
Duress/panic mode for high-risk situations

9. Children's Privacy

The Service is not intended for children under 16. We do not knowingly collect personal information from children under 16. If we learn we have collected such information, we will delete it promptly.

10. Cookies

We use essential cookies only:

Session cookie: Maintains your login session (httpOnly, secure, SameSite=Lax)
Theme preference: Stored in localStorage (not a cookie)

We do not use tracking cookies or advertising cookies.

11. International Transfers

Your metadata may be processed in Canada and the United States. Your encrypted file shards are stored in the regions of your configured cloud providers. We ensure all transfers comply with applicable data protection laws.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify registered users of material changes via email. The "Last updated" date at the top indicates the most recent revision.

13. Contact

For privacy inquiries:

Email: privacy@skyeconnex.com
General: info@skyeconnex.com