Privacy Policy

1. Data We Collect

Information You Provide

When you add SSH connection profiles to mSSH, you provide:

Automatically Collected Information

Device-level biometric data: If you enable Face ID for app lock, iOS's Face ID framework processes your biometric data. This data never leaves your device and is managed entirely by iOS.

Host key fingerprints: When you connect to SSH servers, the server's host key is stored locally on your device for security verification (Trust On First Use).

What We Do NOT Collect

• Analytics or usage data
• Tracking information or user identifiers
• Device information (UDID, Apple ID, etc.)
• Location data
• Browsing history or app activity logs
• Personal identifiers beyond what you explicitly enter
• Contents of SSH terminals or command history

2. How We Use Your Data

Primary Purpose

All data you provide is used solely to enable the core functionality of mSSH:

• Establishing SSH connections to remote servers
• Storing connection profiles for your convenience
• Verifying server authenticity via host key validation
• Providing biometric app lock via Face ID

No Secondary Uses

We do not use your data for:

• Marketing or promotional purposes
• Building user profiles or analytics
• Improving algorithms or machine learning
• Selling, renting, or sharing with third parties
• Any purpose beyond providing the App functionality

3. Data Storage & Security

Local Device Storage

All your data is stored exclusively on your iOS device using Apple's native frameworks:

Encryption Standards

• In Transit: All SSH connections use standard SSH2 protocol with end-to-end encryption.
• At Rest: Sensitive credentials are protected by iOS Keychain's kSecAttrAccessibleWhenUnlockedThisDeviceOnly policy.
• Device Storage: iOS encrypts all app data using FileVault and device-level encryption.

No Server-Side Storage

mSSH does not maintain any servers, databases, or cloud infrastructure (except optional iCloud sync). Your data is yours alone.

4. iCloud Sync (Optional)

mSSH offers optional iCloud synchronization for your connection profiles. This feature is disabled by default.

What Gets Synced

Connection profiles only: Host address, port, and username.

What Does NOT Get Synced

SSH passwords, private SSH keys, Keychain credentials, and any sensitive authentication data are never shared with iCloud.

You can disable iCloud sync at any time in the App settings.

5. Third-Party Sharing

mSSH does not sell, rent, trade, or share any of your personal data with third parties. We do not integrate any third-party SDKs for analytics, tracking, or data collection. The App uses only open-source libraries for SSH protocol support (Citadel) and terminal emulation (SwiftTerm), neither of which collect user data.

6. GDPR & CCPA Compliance

GDPR (European Users)

You have the right of access, erasure, portability, and objection. All data processing is based on performance of contract and your explicit consent.

CCPA (California Residents)

You have the right to know, delete, opt-out, and non-discrimination. mSSH does not sell personal information.

To exercise any rights, contact us at tmtgwdx@gmail.com.

7. Data Deletion

To delete all data stored by mSSH, go to Settings > General > iPhone Storage, find mSSH, and tap Delete App.

8. Security Practices

• Industry-standard SSH2 encryption for all remote connections
• Private keys protected by iOS Keychain with device-only access policies
• Host key verification (TOFU) prevents man-in-the-middle attacks
• Optional Face ID lock adds biometric protection

9. Children's Privacy

mSSH is not directed to children under 13. We do not knowingly collect data from children.

10. Changes to This Privacy Policy

We may update this Privacy Policy periodically. The "Effective Date" at the top will be updated accordingly. Continued use of mSSH after changes constitutes acceptance.