Privacy Policy for SYNC Dashboard

Developer and Contact

SYNC Dashboard is provided by the developer identified in the App's Google Play listing or other distribution listing.

For privacy questions or requests, use the developer contact details published with that listing.

Overview

SYNC Dashboard is designed to connect directly to the Home Assistant instance, camera streams, calendar feeds, dashboards, and web content that you choose. In normal use, most App data stays on your device or is sent directly from your device to the services that you configure.

SYNC Dashboard does not operate its own cloud service for normal App functionality.

Information the App Accesses or Stores

1. Home Assistant connection data

The App may store the following on your device so it can reconnect to the Home Assistant instance that you choose:

• Home Assistant server URL
• OAuth access token
• OAuth refresh token
• Token expiry time
• Manually entered long-lived access token

These items are stored locally on the device.

2. App configuration and dashboard data

The App stores configuration data locally on your device, including:

• Dashboard names, icons, layout, grid size, and widget arrangement
• Widget configuration such as entity IDs, selected themes, control settings, web widget URLs, Home Assistant dashboard paths, calendar feed URLs, and camera stream URLs
• Screensaver settings
• Alert settings
• Announcement and text-to-speech settings
• Camera automation settings
• Premium entitlement cache and related product identifiers

Depending on how you configure the App, this configuration may reflect personal or sensitive household information, such as smart home device names, room names, lock or door entities, alarm settings, calendars, and camera source information.

3. Smart home and content data loaded during use

When you connect the App to Home Assistant or other services that you configure, the App may access or display:

• Home Assistant entity names, IDs, states, and attributes
• Camera snapshots and live streams
• Home Assistant dashboard pages
• Calendar data from Home Assistant calendar entities or user-supplied ICS / iCal URLs
• Web pages and media loaded in web widgets

This data is generally retrieved directly between your device and the services that you choose to connect.

4. Backups, exports, and imports

The App can create local JSON backup files that may include your dashboard and settings configuration.

Backup files may include items such as:

• Dashboard layouts
• Widget settings
• Alerts and announcement rules
• Screensaver settings
• Camera widget settings
• User-supplied service URLs used by widgets

Backup files do not intentionally include Home Assistant access tokens. The backup service clears the accessToken field before export.

5. Purchase and entitlement information

On Google Play store-managed builds, the App may query Google Play Billing to:

• Load Premium offers
• Start purchases
• Restore purchases
• Verify entitlement status

The App may locally cache whether Premium is active and the associated product identifier. Payment and transaction processing are handled by Google Play, not by the App developer.

6. Microphone access

On Android, the App requests microphone permission only if:

• You configure a web widget to allow microphone access, and
• The embedded web page requests microphone access

The App does not request Android camera permission for its own camera widgets.

7. Embedded web content and site data

When you use the OAuth login WebView, Home Assistant dashboards, or other web widgets, the embedded service may store its own cookies, local storage, or similar site data according to that service's own privacy practices.

How the App Uses Information

The App uses the information above to:

• Authenticate with the Home Assistant instance that you choose
• Maintain connections to Home Assistant APIs and WebSocket services
• Display dashboards, widgets, camera feeds, calendar data, and web content
• Let you control supported Home Assistant entities
• Discover local Home Assistant instances using mDNS when you open connection settings
• Create, restore, import, export, and share local backups
• Speak automation announcements using platform text-to-speech services
• Verify or restore Premium access on store-managed builds

How Information Is Shared or Transferred

SYNC Dashboard does not sell your personal data.

SYNC Dashboard does not include third-party advertising SDKs.

SYNC Dashboard does not include developer-operated analytics or crash-reporting SDKs at the time of this policy update.

Information may leave your device only in the following ways:

1. Services that you configure

The App may send or receive data directly with:

• The Home Assistant instance that you choose
• Camera stream or snapshot endpoints that you configure
• Calendar feeds that you configure
• Websites or dashboards loaded in web widgets

Those services operate under their own privacy and security practices, which are outside the App developer's control.

2. Google Play Billing

On store-managed builds, purchase and entitlement information is exchanged with Google Play to manage Premium access.

3. User-initiated sharing

If you choose to share a backup file, the file is sent only to the app, person, or service that you select using the Android share sheet.

4. User-initiated imports

If you choose to import a backup file, the App reads the file that you select from local or connected file providers such as Files, Google Drive, or OneDrive.

Permissions

The Android build currently declares or uses the following relevant permissions:

• INTERNET: used to connect to Home Assistant, web widgets, calendars, camera streams, and Google Play services
• ACCESS_NETWORK_STATE: used to determine network connectivity
• CHANGE_WIFI_MULTICAST_STATE: used for local network Home Assistant discovery via mDNS
• RECORD_AUDIO: used only for microphone-enabled web widgets when a page requests microphone access and you grant permission
• MODIFY_AUDIO_SETTINGS: used for audio behavior related to playback and web content
• com.android.vending.BILLING: used for Google Play Billing on store-managed builds

Security

SYNC Dashboard stores most App data locally on the device using app storage.

The App attempts to remove locally stored Home Assistant credentials when you log out. If a refresh token is present, the App also attempts to revoke it with your Home Assistant instance.

Backups are stored locally in the App's documents directory until you delete them, overwrite them, clear App storage, or uninstall the App.

Transport security depends on the services that you configure:

• If you use https:// or wss:// connections, data in transit is generally encrypted by those protocols
• If you use http://, ws://, unsecured local services, or direct RTSP streams, data in transit may not be encrypted

Because the Android app allows cleartext traffic for user-configured services, you should use trusted services and secure endpoints wherever possible.

Data Retention

The App retains locally stored data until one of the following happens:

• You delete or replace the data inside the App
• You log out and remove saved credentials
• You delete backup files
• You clear the App's storage
• You uninstall the App

The App developer does not run a central App backend for normal App usage, so the developer does not maintain a separate server-side retention schedule for the core configuration data described in this policy.

Data stored or retained by Home Assistant, Google Play, Android text-to-speech services, websites, calendar providers, camera providers, or other third-party services is governed by those services' own policies.

Your Choices and Controls

You can:

• Log out to remove saved Home Assistant credentials from the App
• Choose whether to use OAuth or a manually entered Home Assistant token
• Choose whether to enable microphone access for individual web widgets
• Delete local backup files from the App
• Share backups only when you want to
• Clear App storage or uninstall the App to remove locally stored data

The App does not require you to create a separate account with the App developer.

Children's Privacy

SYNC Dashboard is a smart home dashboard application and is not designed specifically for children.

Changes to This Policy

This Privacy Policy may be updated from time to time. When it changes, the "Last updated" date above will be revised.