The short version: your files never touch our servers as readable data, and their names don't either. This page is the plain inventory of everything else — the waitlist email, account metadata, and analytics — with no adjectives. For the mechanics behind these claims, read the security model.
Never visible to Cynth. Transfers are end-to-end encrypted between your devices; decryption keys exist only on those devices. When a direct path isn't possible, traffic falls back through a relay that forwards ciphertext only — it cannot read what it carries. There is no upload step and no server-side copy of a transfer. Nothing to breach, subpoena, or lose.
If you join early access, we store the email address you submit and, optionally, the platform you chose and your country (derived from the request, not stored as an IP). That's it. We use it for exactly one thing: to send you one email when Cynth is ready for your platform. No newsletter, no drip campaign, no sharing or selling. Reply "delete" to any message and the address is removed.
Using Cynth across the internet needs a small amount of coordination data on our servers:
This is metadata for pairing and routing — never file content or names. Like any provider, these records are subject to lawful process; the content we never hold is not.
We count page views and waitlist signups server-side only, recording the event type, the page path, the platform chosen, and a coarse country. No cookies, no client-side tracking script, no IP address stored, no user-agent stored. There is nothing to opt out of because there is nothing following you.
We do not use advertising networks, third-party analytics suites, or social tracking pixels.
If this policy changes, the date above changes with it. Material changes to how we handle waitlist email will be told to you in plain language, not buried.
Privacy questions: hello@cynth.app. Security reports: security@cynth.app.