Privacy Policy

Transparency and security for your qBittorrent management experience.

Last Updated: February 26, 2026

At qBittorrent WebUI & SFTP (referred to as "the app", "we", or "our"), we prioritize your privacy. This policy outlines how we handle your information with a focus on data minimization and local-first security.

Data Collection

We collect only the absolute minimum information required to provide our services and prevent fraud.

Automatically Collected Data

  • Anonymous Device Identifier: A unique ID generated upon installation for trial and license management.
  • Trial Metadata: Activation date and status to manage the 3-day evaluation period.
  • Transaction Verification: Tokens from Google Play to validate lifetime license purchases.

User-Provided Data

  • Server Credentials: Your qBittorrent server URL, username, and password. (Stored exclusively on your device)
  • Biometric Metadata: If enabled, used via the Android Keystore for local authentication.

How We Use Your Data

  • Service Continuity: Tracking trial periods and honoring lifetime purchases.
  • Security: Implementing rate limiting to protect our backend infrastructure.
  • Fraud Prevention: Validating device authenticity to prevent unauthorized use of premium features.

Storage & Security Architecture

Our architecture is designed to keep your most sensitive data in your control.

Local Storage (Your Device)

Sensitive data like qBittorrent credentials and biometric keys are stored only on your device using industry-standard encryption. We never see or store this data on our servers.

Cloud Infrastructure (Cloudflare Workers KV)

We use secure, encrypted-at-rest storage for anonymized license-related data: Encrypted Transit Encrypted at Rest

  • Anonymized Identifier
  • License Status
  • Rate Limiting Counters

Third-Party Integrations

We strictly limit third-party involvement to essential service providers.

Trusted Partners

  • Google Play Billing: Handles all financial transactions securely.
  • Cloudflare: Provides the secure backbone for our license verification API.
Zero Tracking Policy: We do NOT use Google Analytics, Firebase, Facebook SDKs, or any advertising networks. Your activity remains private.

Your Privacy Rights

You maintain full control over your data:

  • Data Access: View your trial/purchase status within the app.
  • Data Deletion: Uninstalling the app removes all local data. You may contact us to delete your anonymized server-side records.
  • Revocation: Disable biometric or server-access permissions at any time via Android settings.

Contact & Compliance

For any privacy-related inquiries, please reach out to us:

This policy is designed to align with GDPR, CCPA, and Google Play Developer Policies.