|
| 1 | +# ConnectBot Privacy Policy |
| 2 | +**Last Updated: May 1, 2026** |
| 3 | + |
| 4 | +This privacy policy applies to the **ConnectBot** application for Android. ConnectBot is an open-source terminal emulator and SSH client. We value your privacy and aim to be transparent about how data is handled by the application and third-party services. |
| 5 | + |
| 6 | +## 1. Data Collection and Developer Infrastructure |
| 7 | +**ConnectBot developers do not own or operate any servers or services that collect, store, or process user data.** |
| 8 | +* **OSS Builds (e.g., GitHub):** These builds contain no telemetry or tracking. No data is ever transmitted from these builds to the developers or any third-party analytics services. |
| 9 | +* **Google Play Builds:** These builds utilize Google Play Services for distribution and maintenance. While the ConnectBot developers do not collect personal data, Google may process technical data, including pseudonymous identifiers, diagnostics, and usage metrics, as governed by [Google’s Privacy Policy](https://policies.google.com/privacy) and [Google Play’s Data Safety](https://support.google.com/googleplay/answer/11416267) standards. We use the aggregated, de-identified reports provided by the [Google Play Console](https://support.google.com/googleplay/android-developer/answer/9842754) solely to improve app stability and performance. |
| 10 | + |
| 11 | +## 2. Permissions and Device Capabilities |
| 12 | +To provide a functional terminal and SSH experience, ConnectBot requires access to certain device capabilities. |
| 13 | + |
| 14 | +* **Network Access & Connectivity:** Required to transmit and receive data between your device and the remote servers you choose to connect to. This data is sent directly to your specified destination and is never routed through or intercepted by ConnectBot developer infrastructure. |
| 15 | +* **Session Persistence:** Allows ConnectBot to maintain active terminal sessions and SSH tunnels in the background so connections are not interrupted when the app is minimized. |
| 16 | +* **File & Key Management:** Used to facilitate the local shell and to allow the user to manually import or export public keys and configuration files. Depending on your Android version, this may utilize the Storage Access Framework or specific file permissions. |
| 17 | +* **User Interface & Notifications:** Used for haptic feedback and to provide a persistent notification while a session is active. |
| 18 | + |
| 19 | +For a technical list of specific Android permissions required by the current version of the app, please refer to the [AndroidManifest.xml](https://github.com/connectbot/connectbot/blob/master/app/src/main/AndroidManifest.xml) in our repository. |
| 20 | + |
| 21 | +## 3. Data Backup and Storage |
| 22 | +ConnectBot utilizes the standard **Android Backup Service** to allow for data migration between devices. |
| 23 | + |
| 24 | +* **Host Configurations:** Descriptions, hostnames, and port forward settings are included in the system backup by default. |
| 25 | +* **Private Keys:** For security, **private keys are excluded from backups by default.** Users must explicitly opt-in via the application settings if they wish to include private keys in their system backup. |
| 26 | +* **Storage Location:** Backed-up data is stored by Google as part of your Android system backup; it is never sent to or stored by the ConnectBot developers. |
| 27 | + |
| 28 | +## 4. Data Deletion and Account Policy |
| 29 | +ConnectBot does not utilize developer-managed user accounts, cloud-based profiles, or centralized storage. |
| 30 | +* **Remote Server Credentials:** ConnectBot stores the usernames and passwords you provide strictly to facilitate connections to your remote servers. This data is stored locally on your device (and optionally in your system backup, as described in Section 3). The ConnectBot developers have no access to these credentials. |
| 31 | +* **No Developer Accounts:** Because we do not maintain a central user database or accounts on our own infrastructure, there is no personal profile data to delete from our servers. |
| 32 | +* **Manual Deletion:** You may delete all local host configurations and stored credentials at any time by clearing the application data in Android System Settings or by uninstalling the app. |
| 33 | +* **Backup Deletion:** Any credentials stored via the Android Backup Service can be removed by managing your Google Account backup settings. |
| 34 | + |
| 35 | +## 5. Open Source Transparency |
| 36 | +As an open-source project, our code is available for public audit. You can verify our data handling practices by reviewing the source code at: |
| 37 | +[https://github.com/connectbot/connectbot/](https://github.com/connectbot/connectbot/) |
| 38 | + |
| 39 | +## 6. Contact Information |
| 40 | +If you have questions regarding this policy, please contact the developers at: |
| 41 | +**developers@connectbot.org** |
0 commit comments