Privacy Policy

Last updated: December 8, 2025

1. Introduction

TidyTransfer ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our file sharing service at tidytransfer.com.

2. Information We Collect

2.1 Account Information

When you create an account, we collect:

  • Email address
  • Username
  • Display name (optional)
  • Password (stored securely hashed)
  • Apple ID identifier (if you use Sign in with Apple)

2.2 Files and Content

When you upload files, we store:

  • The file content (encrypted at rest)
  • File name and type
  • File size
  • Upload timestamp
  • Expiration settings

2.3 Automatically Collected Information

We may automatically collect:

  • IP address
  • Browser type and version
  • Access times and dates
  • Pages viewed

3. How We Use Your Information

We use your information to:

  • Provide and maintain the file sharing service
  • Process your file uploads and downloads
  • Send you service-related notifications
  • Respond to your inquiries and support requests
  • Detect and prevent fraud or abuse
  • Comply with legal obligations

4. Data Storage and Security

Your files are stored on Amazon Web Services (AWS) S3 with:

  • Server-side encryption at rest
  • Secure HTTPS transfer encryption
  • Access controlled by pre-signed URLs with limited validity

Files are automatically deleted when they expire according to your chosen expiration time.

5. Data Sharing

We do not sell your personal information. We may share data with:

  • Service Providers: AWS for file storage and hosting
  • Legal Requirements: When required by law or to protect our rights
  • File Recipients: When you share files, recipients can access the shared content

6. Your Rights

You have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Delete your account and all associated files
  • Export your data
  • Object to processing of your data

You can delete your account at any time from the Settings page, which will permanently remove all your data and files.

7. Cookies

We use essential cookies only for:

  • Session management (keeping you logged in)
  • Security (CSRF protection)

We do not use tracking or advertising cookies.

8. Data Retention

We retain your data as follows:

  • Files: Until their expiration date (1 hour to 1 month)
  • Account data: Until you delete your account
  • Server logs: Up to 30 days

9. International Transfers

Your data is stored in the EU (AWS eu-west-1 region in Ireland). If you access our service from outside the EU, your data will be transferred to and processed in the EU.

10. Children's Privacy

Our service is not intended for children under 16. We do not knowingly collect personal information from children under 16.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last updated" date.

12. Contact Us

If you have questions about this Privacy Policy, please contact us at:

privacy@tidytransfer.com