Skip to main content
Back to Privacy

ENVO-App Privacy Policy

Last updated: March 2026

The Short Version

ENVO-App does not collect, store, or transmit any personal data to ENVO Studios or any third party. The app connects exclusively to your own self-hosted server infrastructure.

1. Data Collection

ENVO-App does not collect any personal data. The app is a client that connects directly to your own self-hosted ENVO-Home server over your local network or through an encrypted WireGuard VPN tunnel.

We have no servers that receive your data. We have no analytics endpoints. We have no user databases. All communication occurs exclusively between your device and your own server hardware.

2. Permissions Used

ENVO-App requests the following device permissions, each for a specific purpose:

Camera

Used exclusively for QR code scanning during initial server setup. No photos or videos are captured or stored by the app. Camera access is only activated when you explicitly open the QR scanner.

Local Network

Used to discover and communicate with your ENVO-Home server on your local home network. No data is sent outside your network.

VPN

Used to establish an encrypted WireGuard VPN tunnel for secure remote access to your home server when you are away from your local network. The VPN connects directly to your own server — no relay or proxy servers are involved.

Face ID / Touch ID

Used for optional biometric app lock. Biometric data is handled entirely by Apple's Secure Enclave on your device. ENVO-App never accesses, stores, or transmits biometric data. This feature is entirely optional.

3. Third-Party Services

ENVO-App contains zero third-party SDKs, analytics libraries, advertising frameworks, or tracking code of any kind.

The app connects only to services running on your own self-hosted infrastructure, which may include Jellyfin, Immich, Nextcloud, Home Assistant, Frigate, and other services you choose to run. These are open-source projects governed by their own respective privacy policies and licenses. ENVO Studios does not operate or have access to any of these services on your behalf.

4. Analytics and Tracking

ENVO-App implements absolutely no analytics, telemetry, crash reporting, or usage tracking. We do not use Apple's App Analytics, Firebase, Sentry, Amplitude, Mixpanel, or any other analytics service.

  • No crash reporting SDKs
  • No usage analytics
  • No advertising identifiers
  • No fingerprinting or device profiling

5. Data Storage

All data stored by ENVO-App resides exclusively on your device:

  • Preferences — Stored locally using MMKV, an encrypted key-value store on your device
  • Credentials — Stored in the iOS Keychain / Android Keystore via expo-secure-store, protected by hardware encryption
  • VPN Configuration — WireGuard keys are stored securely on-device and are never transmitted to ENVO Studios

6. Data Sharing

We do not share any data with any third party because we do not collect any data. No data leaves your device except to communicate with your own self-hosted server. There are no exceptions to this policy.

7. Children's Privacy

ENVO-App does not knowingly collect personal information from children under the age of 13. Since the app collects no personal data from any user, no special provisions for children's data are necessary.

8. Changes to This Policy

We may update this privacy policy from time to time. Changes will be posted on this page with an updated date. Our commitment to collecting zero data will not change.

9. Contact

If you have questions about this privacy policy, contact us at privacy@envostudios.com.

ENVO Studios
envostudios.com