Introduction
OnyxHome ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we handle your information when you use our personal cloud media streaming platform.
Our Privacy-First Approach
OnyxHome is built on a simple principle: "Your personal cloud that you actually own." Your media library stays on YOUR devices - we never store, access, or analyze your personal media content on our servers. Unlike traditional cloud services, your data never leaves your control.
Information We Collect
Account Information
- Email address
- Display name
- Payment information (processed by our payment partner)
Device Information
- Device identifiers for multi-device sync
- Device type and operating system
- Network configuration (for remote access setup)
Usage Information
- App settings and preferences
- Feature usage statistics (anonymized)
- Streaming quality preferences
What We Do NOT Collect
We explicitly do NOT collect or access:
- Your media files or content
- Media metadata (titles, artists, etc.)
- Viewing or listening history
- Media library structure or organization
How We Use Your Information
We use your information to:
- Provide account authentication
- Enable remote access features (Pro and Family plans)
- Process subscription payments
- Send service-related notifications
- Improve the OnyxHome application
- Provide customer support
Local-First Architecture
OnyxHome operates primarily on your local network. Your media server runs on your own hardware, and media streams directly between your devices. For remote access (Pro/Family plans), we provide secure relay servers only when direct connection is not possible.
Remote Access Security
When remote access is enabled:
- All connections use TLS 1.3 encryption
- Media streams use ChaCha20-Poly1305 authenticated encryption
- Per-stream ephemeral key derivation (keys never reused)
- We cannot decrypt or view your media content
- Connection metadata is logged for security purposes only
Data Security
- ChaCha20-Poly1305 encryption for all media streams
- JWT-based authentication with device verification
- App signature verification (HMAC-SHA256)
- No cloud storage of media or personal content
Data Retention
- Account data: Retained while account is active
- Device tokens: Revoked upon logout or device removal
- Connection logs: 7 days for security purposes
Family Profiles
Family plan profiles are stored locally on your media server. Profile preferences and parental control settings are not transmitted to our servers.
Your Rights
You have the right to:
- Access your account data
- Delete your account and all associated data
- Revoke device access at any time
- Disable remote access features
Third-Party Services
- our payment partner: Payment processing
- Crash reporting: Anonymized error reports only
Children's Privacy
While OnyxHome includes parental controls, the account holder must be at least 18 years old. Family member profiles may be created for users of any age.
Changes to This Policy
We may update this Privacy Policy from time to time. Significant changes will be communicated via email.
Contact Us
For privacy-related questions, please contact us at privacy@mitikasha.com.