Privacy

This Privacy Policy for YourBackup is designed to be as clear and transparent as the service itself. Since our core mission is helping you manage your digital footprint, we believe you should know exactly where every byte of your data goes.

---

Privacy Policy: YourBackup

At YourBackup, we aren’t just another data company; we are a privacy-centric utility. Our goal is to give you back control of your information across the web. This policy explains what we collect, why we collect it, and how we keep it safe.

1. Information We Collect

We collect only the minimum amount of data required to provide our service.

• Account Information: When you sign up, we collect your Username and a hashed version of your Password. If you use the “Remember Me” feature, we store a secure session token.
• Connection Metadata: To power your Central Dashboard, we store the names of the third-party services you link (e.g., Google, TikTok), the Status of those connections (Active/Expired/Error), and the timestamp of your Last Successful Sync.
• Authentication Tokens (OAuth): When you link a service, we store encrypted OAuth tokens. These allow us to fetch your data on your behalf without ever seeing your third-party login credentials.
• User Activity on Connected Platforms: Activity such as browsing history, likes and so forth you performed on the connected platforms. This is used only for your own personal utility of backing up said data.
• Exported Data Archives: If you trigger a “Download Data” request, we temporarily store a portable version of your data until you download it or the retention period expires.

2. How We Use Your Data

We use your information strictly for the following purposes:

• Service Functionality: To display your connection health via our Green/Amber/Red status lights.
• Data Portability: To facilitate the export of your digital footprint into portable formats.
• Security: To monitor for unauthorized access to your YourBackup account.

We do not sell your personal data. We are a utility, not a data broker. Your data belongs to you; we just build the pipes to help you move it.

3. Legal Basis for Processing (GDPR)

Under the GDPR, we process your data based on:

• Contractual Necessity: We need this data to provide the services you signed up for (linking accounts and exporting data).
• Consent: You explicitly give us permission to access third-party platforms when you click “Connect” on a service card.
• Legal Obligation: In rare cases, we may retain specific billing or transaction records to comply with Austrian and EU tax laws.

4. Third-Party Integrations

YourBackup acts as a bridge. When you link a third-party platform:

• We follow that platform’s API rules.
• We only fetch the data categories you have authorized.
• You can revoke this access at any time through our dashboard or the third-party service’s security settings.

5. Data Retention & The “Danger Zone”

We believe in “Right to be Forgotten” as a core feature, not just a legal requirement.

• Active Accounts: We keep your connection metadata and tokens as long as your account is active.
• Account Termination: If you visit the Settings menu and enter the “Danger Zone”, clicking Delete Account triggers an immediate and permanent wipe.
• Immediate Wipe: Once confirmed, we delete all OAuth tokens, connection history, and stored archives. There is no “undo” button for this action because we believe “deleted” should mean deleted.

6. Your Rights

As a YourBackup user, you have the following rights:

• Right to Access: You can see all your connection data on your dashboard.
• Right to Portability: Our “Download Data” button is built specifically to satisfy this right.
• Right to Erasure: Available instantly via the “Delete Account” button.
• Right to Rectification: You can update your profile details in the settings at any time.

7. Where Your Data Lives

YourBackup is based in the EU. Your data is stored on encrypted servers within the European Union (Google Cloud Platform). While using certain third-party connections, data may briefly transit through global networks, but it remains encrypted at all times.

8. Cookies and Tracking

We use essential cookies to keep you logged in and to remember your “Remember Me” preference. We do not use third-party tracking cookies for advertising.

9. Contact Us

If you have questions about your digital footprint or how we handle your data, reach out to our DPO: Email: privacy@yourbackup.app.

Address: YourBackup, Vienna, Austria.

10. Further Reading

• Data Security
• GDPR Records Policy
• Terms of Service

---

Effective Date: April 2026

Last Revised: April 7, 2026