What we collect
ZeroLimitFiles is built on a privacy-first architecture. We collect the minimum necessary to operate the service:
- Anonymous session ID: A random identifier generated when you open the app. This is not linked to any personal information.
- Transfer metadata: File size and count (NOT file names or contents) for routing purposes only. This data is automatically deleted within one hour.
- Connection diagnostics: IP address, browser type, and timestamps, retained for 7 days for service reliability.
What we do NOT collect
- File contents: Files transfer directly between your device and the receiver's device. They never pass through or get stored on our servers. We have no way to access, view, or recover transferred files.
- File names: File names are exchanged only between the two peers through the direct encrypted connection.
- Email or phone: No account is required to use the service.
- Tracking cookies: We do not use third-party analytics that profile you.
How transfers work
Your file is encrypted end-to-end using WebRTC's built-in DTLS encryption. The data flows directly from sender to receiver. Our servers only help the two devices find each other (signaling), then step out of the connection.
Third parties
We use Google Firebase for the signaling layer (matchmaking only, no file data). Firebase's privacy policy applies to that limited data exchange.
Your rights
You can stop using the service at any time. Since we don't store personal information, there is nothing to delete on request. For diagnostic logs (IP address), contact contact@polyforgestudios.uk to request deletion within the 7-day retention window.