Hoodik
GitHubGitHub·

Privacy Policy

Effective: March 31, 2026

1. Introduction

This privacy policy describes how Hudik d.o.o. ("we", "us", "our") handles information in connection with the Hoodik mobile and desktop application ("App") and the Hoodik self-hosted cloud storage software ("Software"). By using the App or Software, you acknowledge this policy.

2. What Hoodik Is

Hoodik is a self-hosted, end-to-end encrypted cloud storage system. You run the server software on your own hardware. All encryption and decryption happens on your device — the server never has access to your plaintext data, file names, or encryption keys.

We do not operate servers on behalf of users. We build and distribute the software. You provide and manage your own infrastructure.

3. Information We Collect

3.1 The Hoodik App

The App stores the following data locally on your device only:

  • Your server URL and email address (for connecting to your server)
  • Your encrypted private key (encrypted with your password or PIN, never stored in plaintext)
  • Cached encrypted file data for offline access

This data never leaves your device except when authenticating with your own server.

Subscription data: If you purchase a subscription, payment is processed by Apple (App Store) or Google (Google Play). We use RevenueCat, a third-party subscription management service, to manage subscription status. RevenueCat receives:

  • An anonymous app user ID
  • Purchase receipts and subscription status
  • Basic device information (platform, OS version, app version)

RevenueCat does not receive your files, server URL, encryption keys, or any content stored in your Hoodik instance.

No analytics or crash reporting: The App does not include any analytics SDKs, crash reporting tools, or advertising frameworks. We do not track your usage of the App.

3.2 The Hoodik Server Software

The server software runs entirely on hardware you control. We have no access to any data stored on your server. File content is encrypted before it reaches the server — the server stores only ciphertext. The server stores user account information (email, hashed password, public key) as configured by the server administrator.

3.3 This Website

This website is a static site. It does not use cookies, analytics, or tracking of any kind.

4. How We Use Information

The only information we process is subscription data through RevenueCat, used solely to manage your app subscription status. We do not use any information for advertising, profiling, or any purpose beyond providing the service.

5. Third-Party Services

  • RevenueCat — subscription management. Receives anonymous user ID, platform info, and purchase receipts. RevenueCat Privacy Policy.
  • Apple App Store / Google Play — payment processing. Subject to Apple's and Google's respective privacy policies.

No other third-party services are integrated into the App.

6. Data Storage and Security

  • All file data is end-to-end encrypted using RSA-2048 and AEGIS-128L (with support for Ascon-128a and ChaCha20-Poly1305).
  • Your private encryption key never leaves your device in plaintext.
  • Local data on your device is stored in an app-sandboxed SQLite database.
  • PIN/biometric unlock uses Ascon-128a encryption for the private key at rest on-device.

7. Data Retention

  • App data: Stored locally on your device and deleted when you uninstall the App or remove your account.
  • Subscription data: Retained by RevenueCat per their retention policy.
  • Server data: Controlled entirely by the server administrator — that's you or whoever runs your server. We have no involvement.

8. Your Rights (GDPR)

Hudik d.o.o. is based in Croatia (EU). Under GDPR, you have the right to access, rectify, and delete your personal data.

  • For subscription-related data, contact us at hello@hudik.eu.
  • For data stored on your Hoodik server, contact your server administrator (which is likely you).
  • You have the right to lodge a complaint with AZOP (Croatian Personal Data Protection Agency).

9. Changes to This Policy

We may update this policy from time to time. The effective date at the top indicates the latest revision. Continued use of the App after changes constitutes acceptance of the updated policy.

10. Contact

Hudik d.o.o.
Email: hello@hudik.eu (general inquiries)
Email: security@hudik.eu (security matters)

© 2026 Hudik d.o.o.. Built with ❤️ by htunlogic.
GitHubDocker Hub
Privacy Policy·Terms of Service·Imprint