PRIVACY POLICY

Last updated: March 22, 2026

CyberHost ("the App") is a local network web hosting and FTP server application for Android, developed and published by Jamie Barnes ("the Developer"). Your privacy matters — this policy explains exactly what data the App handles and how.

This privacy policy applies to the CyberHost application available on the Google Play Store. By installing and using the App, you agree to the practices described in this policy.

◆ No Data Collection

CyberHost does not collect, transmit, or share any personal data. The App operates entirely on your device and local network. No personal information is ever sent to cloud services or third parties.

In accordance with Google Play's Data Safety requirements, CyberHost declares:

• No data collected — The App does not collect any user data (personal or otherwise).
• No data shared — The App does not share any user data with third parties.
• No data sold — The App does not sell any user data.

The only outbound internet requests are a Play Store version check (sends only the app's package ID) and a public IP lookup via api.ipify.org (sends no data — the service simply returns an IP address). The App also uses the device clipboard when you tap an address to copy it — clipboard data stays entirely on your device and is never read or transmitted by the App.

◆ What the App Stores Locally

All data remains on your device in the App's private storage area:

• Website files — Files you upload via FTP or import from a USB drive are stored in a sandboxed website/ folder within the App's private external storage. These files are only accessible through the App.
• Settings — Your configuration (ports, FTP credentials, IP blocklist, authentication, schedule, bandwidth alerts, and USB preferences) is stored in Android SharedPreferences on your device.
• TLS certificates — If you upload a custom HTTPS/FTPS certificate, it is stored in the App's private storage and used solely for encrypting local network connections.
• Traffic logs — HTTP request logs, bandwidth statistics, connection maps, and response-time data are held in memory only and are discarded when the App closes. They are never written to disk or transmitted anywhere.

◆ USB Drive Access

When a USB OTG drive is connected, you may import website files from the drive to the App or back up your website files to the drive. The App accesses only the mounted USB filesystem — it does not read any other removable media or device storage. USB access is entirely initiated by you (tap to import, export, or format) and never occurs automatically in the background.

◆ Network Activity

CyberHost creates HTTP/HTTPS and FTP/FTPS servers on your local network (LAN) only. Network activity is limited to:

• Serving website files to devices on the same Wi-Fi network.
• Accepting FTP/FTPS connections from devices on the same Wi-Fi network.
• If Network Source mode is enabled, fetching files from a user-specified HTTP URL on the local network.
• When you tap CHECK NOW in Settings → Updates (or on first launch), a single HTTPS request is made to play.google.com to check whether a newer version of the App is available. Only the App's package ID is sent; no personal data is included in this request.
• On launch, a single HTTPS request is made to api.ipify.org to retrieve your device's public IP address for display in the Network Status panel. No personal data is sent — the service simply returns an IP address.

Apart from the optional Play Store version check described above, the App does not make any other connections to the internet, remote servers, or external APIs.

◆ Permissions Explained

• INTERNET — Required to create local TCP server sockets for HTTP/HTTPS and FTP/FTPS.
• ACCESS_NETWORK_STATE / ACCESS_WIFI_STATE — Used to detect your device's local IP address for display in the dashboard.
• WAKE_LOCK — Keeps the servers running when your screen is off.
• FOREGROUND_SERVICE / FOREGROUND_SERVICE_SPECIAL_USE — Required by Android to run the servers as a foreground service with a visible notification. The "special use" type is justified because the App operates HTTP and FTP servers that must remain active to serve content to the local network.
• POST_NOTIFICATIONS — Required on Android 13+ to show the persistent server status notification and bandwidth/system alerts.
• USB_HOST (hardware feature, not required) — Declared so the App can detect USB OTG drives when connected. The feature is marked as optional to avoid filtering out devices without USB host support on the Play Store.

◆ HTTPS / TLS Certificates

CyberHost can optionally serve websites over HTTPS and accept FTPS connections using a TLS certificate you provide. Certificates are stored locally in the App's private storage and are never transmitted. If no custom certificate is provided, the App can generate a self-signed certificate on-device.

◆ No Analytics, Ads, or Tracking

CyberHost contains no analytics SDKs, no advertising frameworks, no crash reporting services, and no tracking code of any kind. The App does not use cookies, device identifiers, or fingerprinting.

Specifically, the App does not collect or process:

• Location data (fine or coarse)
• Contacts, call logs, or SMS
• Photos, videos, or media files outside the App's own storage
• Device identifiers (IMEI, Android ID, advertising ID)
• Usage or diagnostic data
• Financial or payment information

◆ Minimal Third-Party Services

CyberHost uses two external services, both read-only and containing no personal data:

• api.ipify.org — Returns your device's public IP address (displayed in the Network Status panel). No data is sent beyond the HTTPS request itself.
• play.google.com — The App's Play Store listing page is fetched to check for newer versions. Only the app's package ID is included in the URL.

No other third-party services, SDKs, or external dependencies are used. No data is shared with any third party.

◆ Data Security

The FTP server and web server are strictly sandboxed to the App's private website/ directory. Path traversal attempts are blocked and rejected. Your photos, messages, contacts, and other device data are completely inaccessible to the App's servers.

You can optionally enable HTTPS encryption, HTTP Basic Authentication, and IP blocking to restrict and secure access to your hosted website and FTP server.

◆ Data Retention & Deletion

Because CyberHost does not collect any data, there is no data retained on remote servers. All locally stored data (website files, settings, and TLS certificates) remains on your device until you choose to delete it.

You can delete your data at any time by:

• Clearing App data — Go to Android Settings → Apps → CyberHost → Storage → Clear Data. This removes all website files, settings, and certificates.
• Uninstalling the App — Removing CyberHost from your device permanently deletes all associated data from the device.

In-memory traffic logs are automatically discarded when the App is closed — no action is required to delete them.

◆ Your Rights

Since CyberHost does not collect, store, or transmit any personal data to external servers, traditional data-subject rights (access, correction, portability) do not apply. However, you have full control over all data stored locally on your device — you can view, modify, export, or delete your website files and settings at any time through the App or through Android's system settings.

If you are located in the European Economic Area (EEA), United Kingdom, California, or any jurisdiction with data-protection laws, please note that no personal data leaves your device, and therefore no data-processing activities subject to those laws occur.

◆ Children's Privacy

CyberHost is not directed at children under the age of 13 and does not knowingly collect any personal information from children. If you believe a child has provided personal information through the App, please contact the developer — though the App has no mechanism to collect such data.

◆ Changes to This Policy

If this privacy policy is updated, the revised version will be included in a future App update. The "Last updated" date at the top will reflect the change.

◆ Consent

By using CyberHost, you consent to this privacy policy. If you do not agree with this policy, please uninstall the App from your device.

◆ Contact

If you have any questions or concerns about this privacy policy, you can reach the developer at:

• Email: JbTecWiz@outlook.com
• Google Play: Use the developer contact on the CyberHost Play Store listing