Privacy Policy

This privacy policy explains how PearDrop processes personal data.

1. Controller

Geordan Gesink
Haesselackerstraße 3
69198 Schriesheim, Germany
Email: support@realpainpoints.com

2. Overview of Processing

PearDrop provides invite-based file sharing with desktop, mobile, and web clients.

• No account is required to use the app or web client.
• No advertising tracking or analytics SDKs are intentionally integrated.
• Invite links may contain technical identifiers needed to connect peers.

3. Data Processed When Visiting the Website

When you visit peardrop.online, technical connection data is processed by hosting infrastructure.

• IP address
• Date and time of request
• Requested URL and referrer (if sent)
• Browser/user-agent metadata

Legal basis: Art. 6(1)(f) GDPR (legitimate interests in secure and stable operation of the website).

4. Invite Links and Transfer Metadata

Invite links can include technical connection information (for example drive IDs, topics, relay endpoint parameters). These are used only to establish transfer sessions.

• Please treat invite links as sensitive, because anyone with a valid invite may access that shared session.
• The web client and apps process invite links locally to initiate peer-to-peer transfer.

5. Peer-to-Peer Transfers

File transfer is designed to run peer-to-peer between participants. The relay is used for network coordination. Relay operators may process technical connection metadata necessary to operate relay transport.

6. Local Storage and Device Data

• Desktop and mobile apps store local transfer history and selected source paths on your device.
• Web client may keep temporary state in memory while a session is active.
• Downloaded files are stored in user-selected locations on your device.

7. Contact Requests

If you contact us by email, your message and contact details are processed to handle your request. Legal basis: Art. 6(1)(b) GDPR (pre-contractual/contractual communication) or Art. 6(1)(f) GDPR.

8. Recipients

Data may be disclosed to technical service providers where needed for service operation (e.g. hosting/relay providers).

9. Retention

Personal data is stored only as long as necessary for the respective purpose or legal retention duties.

10. Your Rights

Under GDPR, you have the right to:

• access your personal data (Art. 15 GDPR)
• rectification (Art. 16 GDPR)
• erasure (Art. 17 GDPR)
• restriction of processing (Art. 18 GDPR)
• data portability (Art. 20 GDPR)
• object to processing (Art. 21 GDPR)
• lodge a complaint with a supervisory authority (Art. 77 GDPR)

11. Security

We apply appropriate technical and organizational measures to protect data against unauthorized access, manipulation, loss or destruction.

12. Changes to this Policy

We may update this privacy policy to reflect legal, technical or product changes.

Last updated: April 8, 2026.