Privacy Policy

StreamDocker ("we", "us") is the operator of this software service. For questions about this policy or to exercise your rights under applicable data protection law, contact us through your dashboard.

We store the minimum required to operate your account:

• Email address and a hashed password (never plain text).
• Optional display name.
• Profiles you create and the per-profile configuration you save.
• Credentials you enter for third-party services (API keys, tokens). These are stored to make the service work for you and are sent only to the corresponding third-party service when you trigger an action.
• Consent log: which version of the Terms and this Privacy Policy you accepted, and when.
• Operational logs (errors, performance counters). Logs never contain credentials, tokens, identifiers or playback URLs.

• Video content. We never proxy, cache, buffer, transcode or restream video.
• Playback URLs, identifiers or hashes.
• Your watch history outside of optional integrations you enable yourself.
• Browsing tracking cookies. We use a single first-party session cookie.

When you connect a third-party service, your device and our server send requests directly to that provider on your behalf, using credentials you supplied. Each third-party service has its own privacy policy — please read them. We are not responsible for what those services do with the requests they receive.

We use a single, strictly necessary first-party cookie to keep you signed in. We do not use advertising or analytics cookies and do not embed third-party trackers on public pages.

Account data and configuration are kept for as long as your account exists. You can delete your account from your dashboard at any time, which removes your profiles, configuration and stored credentials. Consent records and minimal audit logs are kept for up to 24 months for legal accountability.

You have the right to access, rectify, export and erase your personal data, and to object to or restrict its processing. Most of these are self-service from your dashboard. If you believe we are mishandling your data, you may also lodge a complaint with your local data protection authority.

Data is stored encrypted at rest and transmitted over TLS. Passwords are hashed with a modern password-hashing function. Despite reasonable measures, no system is perfectly secure — please use a strong, unique password.

Our infrastructure is located in the European Union. If a third-party service you connect is located outside the EEA, requests to that service will leave the EEA; you accept that transfer when you enable that connector.

We may update this Privacy Policy. When we do, the version above changes and you will be asked to re-accept on next sign-in. Continued use after a re-acceptance prompt means you accept the new version.